Om Venugopal

Om Venugopal

Cybersecurity Engineer | Penetration Testing |

About

I am a cybersecurity professional with a Master's in Cybersecurity from the University of Maryland. I specialize in application security, network security, penetration testing, and digital forensics, with hands-on experience in tools like Nessus, Splunk, and Metasploit. My passion lies in securing digital ecosystems and continuous learning to stay ahead of emerging threats.

Skills

Technical Skills

  • Network Security, Penetration Testing
  • Threat Modelling, Digital Forensics, Incident Response
  • Vulnerability Management, Compliance

Tools & Technologies

  • Programming Languages: Python, BASH, Shell Scripting, SQL, C, JavaScript
  • Tools: Nmap, Wireshark, Nessus, CrowdStrike Falcon, Splunk, Orca Security, IBM Qradar
  • Exploitation Framework: Burp Suite, ZAP, Metasploit, MITRE ATT&CK
  • Technologies: AWS, Docker, Kubernetes, Azure, GCP, WAD

Certifications

  • CompTIA Security+
  • Jr. Penetration Tester (TryHackMe)

Experience

Security Consultant

IBM Dec 2023 - present

  • Conducted comprehensive penetration testing of web applications and APIs within strict project timelines, utilizing frameworks like OWASP Top 10 and aligning findings with CVSS 4.0 for risk prioritization.
  • Performed API security assessments to identify vulnerabilities, such as broken object-level authorization, ensuring robust API security and minimizing potential attack vectors.
  • Executed automated and manual security assessments using tools like Burp Suite and Nessus, delivering detailed reports on high-impact vulnerabilities to stakeholders

Network Security Analyst

The New York Public Library (2022)

  • Spearheaded phishing awareness campaigns and implemented security measures to achieve PCI-DSS compliance.
  • Leveraged EDR, and SIEM tools to identify and mitigate dormant vulnerabilities, saving 40 man-hours weekly.
  • Uncovered and investigated a Bitcoin mining crime, preventing resource misuse and fortifying network security

Quality Management Specialist

PwC, Bangalore (2021)

  • Executed security assessments for large-scale enterprise applications.
  • Created cybersecurity test strategies and incident response protocols.

Projects

Contact