Moin Akhtar

Cybersecurity Engineer with 2.5+ years of experience specializing in penetration testing, offensive security, and SOC operations across web and network environments. Proven ability to simulate real world attack scenarios, identify critical vulnerabilities, and strengthen systems through risk driven remediation and security hardening. Brings a hybrid red team + blue team mindset, combining adversarial testing with SIEM-based monitoring (Wazuh) to enhance threat detection, reduce attack surface, and align with modern zero trust and defense in depth strategies.

Penetration Tester at DuoLabz (2024-08 – Present)

Led end-to-end penetration testing engagements, identifying and exploiting critical vulnerabilities across applications and infrastructure

• Led end-to-end penetration testing engagements, identifying and exploiting critical vulnerabilities across applications and infrastructure
• Simulated real world adversarial attack scenarios to evaluate system resilience and uncover high risk attack paths
• Translated technical findings into risk prioritized remediation strategies, improving overall security posture
• Integrated offensive security insights with SOC operations, enhancing detection capabilities and alert accuracy
• Actively monitored and analyzed logs using Wazuh (SIEM/XDR) to identify suspicious activities and security anomalies
• Investigated system events to detect indicators of compromise (IOCs) and support incident response efforts
• Contributed to attack surface reduction and system hardening through continuous security assessments
• Delivered high quality reports enabling stakeholders to make informed, risk based security decisions

Jr. Penetration Tester at Powersoft19 (2023-01 – 2024-06)

Conducted structured web and network penetration tests to identify and validate exploitable vulnerabilities

• Conducted structured web and network penetration tests to identify and validate exploitable vulnerabilities
• Simulated attack scenarios to demonstrate real-world impact and exploitation feasibility
• Provided clear, actionable remediation guidance to improve application and infrastructure security
• Assessed systems against OWASP Top 10 and common security misconfigurations
• Identified weaknesses in authentication, authorization, and data protection mechanisms
• Collaborated with teams to improve security posture and reduce attack surface exposure
• Gained exposure to SOC workflows and security monitoring practices, supporting defensive strategies
• Documented findings with a focus on risk prioritization and practical resolution

Cyber Security Internship at PNY (2022-02 – 2022-11)

Developed foundational expertise in ethical hacking, penetration testing, and network security

• Developed foundational expertise in ethical hacking, penetration testing, and network security
• Performed vulnerability assessments in controlled environments simulating real world attack techniques
• Gained hands on experience identifying common web and network security flaws
• Built understanding of security monitoring, logging, and basic incident analysis
• Learned core concepts of SOC operations and defensive security practices
• Practiced documenting vulnerabilities with risk-based analysis and remediation approaches
• Strengthened knowledge of network protocols, system security, and attack vectors
• Established a strong base for transitioning into professional cybersecurity roles

Bachelor of Software Engineering in Software Engineering – Superior University, Lahore (2019-09 – 2023-07)