Chethan Sagarla

Penetration tester with 3.5 years of experience in Penetration Testing,Web Application Security,OWASP,Burp Suite,Appscan,Metasploit,Nessus,Kali Linux,Acunetix,WireShark,Network Security,Cyber Security,Vulnerability Assessment,Information Security

Talent

HyderabadMember since 9 May 2026

Secure SDLC ImplementationOWASP Top 10SANS 25pentesterpenetration testercyber securitysecurity analyst

Hire this person

Send a job offer directly to this candidate

Secure SDLC ImplementationOWASP Top 10SANS 25pentesterpenetration tester

About

Security Analyst with 3.5+ years of hands-on experience in Web, Mobile, API, and Infrastructure Security Assessments. Specializes in Vulnerability Assessment & Penetration Testing (VAPT), Secure SDLC, and exploitation of security weaknesses using both manual and automated techniques. Experienced in analyzing security gaps, validating vulnerabilities, and collaborating with engineering teams to drive remediation.

Strong understanding of OWASP Top 10, SANS 25, threat modeling, authentication/authorization security, and risk assessment. Adept at writing detailed technical and executive-level reports.

Experience

Technical Analyst at Nucleus Business Solutions (2021-08 – 2024-12)

Performed manual and automated penetration testing on business-critical web applications.
Conducted infrastructure and network security assessments including service enumeration and vulnerability analysis.
Identified and validated vulnerabilities such as XSS, SQL Injection, CSRF, IDOR, authentication/authorization bypass, and cryptographic flaws.
Executed controlled exploitation using manual methods and exploit frameworks.
Eliminated false positives by validating automated scan findings.
Created detailed technical reports with PoC evidence, business impact, and remediation guidance.
Collaborated with development, DevOps, and network teams to support remediation.
Managed vulnerability lifecycle and ensured closure before release.
Led Secure SDLC implementation across multiple product teams.
Performed penetration testing for digital and customer-facing web applications.
Evaluated applications against OWASP Top 10 and secure configuration best practices.
Conducted security reviews across authentication, authorization, session management, input validation, and data protection.
Provided security consulting, risk assessment, and remediation support to engineering teams.
Validated findings from third-party vendors and external assessors.
Investigated application-level security incidents with incident response teams.

Education

Bachelor of Science – Shashank Degree College (2013-06 – 2016-04)

Skills

Web Application SecurityOWASPBurp SuiteAppscanMetasploitNessusKali LinuxAcunetixWireSharkNetwork SecurityCyber SecurityVulnerability AssessmentInformation Security