Kumar Ashwin

Kumar Ashwin

Securing Thoughts

Security Consultant @ Payatu

Hola! 👋

Ashwin is a meticulous newbie in the world of cyber-security, crashing in with a brain focusing on capturing the flags. The young enthusiast believes in gaining knowledge by sharing it, simplicity being the key to interact with like-minded individuals.

He contributes to communities such as null and Developer Circle: Pune. He has been leading/managing null Study Groups for seven different security domains and have been working with Payatu as a security consultant. He holds industry certifications such as CEH Practicals and MTA: Security Fundamentals.

He often writes about his experience on his blog and his social footprints can be tracked on twitter mostly.

He is surely the social being you will find at a snooker table dominated by a geeky conversation!

Interests
  • Web/API Pentesting
  • Cloud & Cloud Native Security
  • DevSecOps
  • Building & Breaking Stuff

Experience

 
 
 
 
 
Security Consultant - Program Manager
May 2022 – Present Pune
  • Manages entire delivery process of all the projects in the company ensuring the quality of work is being delivered to the customer.
  • Acts as first point of contact for customers to resolve any issues.
  • Technical Lead for Projects.
  • Coordinating with different departments like HR, Marketing, Finance to get the best for the consultants and customers.
 
 
 
 
 
Security Consultant
Jul 2021 – Present Pune
  • Performed penetration testing on a wide range of web technologies to identify critical vulnerabilities affecting the business, such as Content Manipulation and SQL Injection.
  • Experienced in working with automated and manual penetration testing methodology to deliver quality results.
  • Performed cloud configuration review and penetration testing to find critical misconfiguration in client’s infrastructure.
  • Automated workflows and created DevSecOps pipelines and performed penetration testing on CI/CD pipelines to find vulnerabilities.
  • Worked on in-house open-source projects like https://securecode.wiki and https://cybersecwiki.com to contribute to infosec community.
  • Hosted and managed Payatu Hiring CTF, contributed to creating challenges, hosting, and maintaining infrastructure, moderating Discord, etc. post that taking interviews of the top candidates to hire them.
 
 
 
 
 
Security Consultancy Intern
Jan 2021 – Jun 2021 Pune
  • Working with clients to pentest web applications.
  • Developed front-end solution to make the secure code wiki public - securecode.wiki and also created its CI/CD pipeline.
  • Research on real time scenarios and tools.
 
 
 
 
 
Software Development Intern
RevMeUp
Jun 2020 – Aug 2020 Remote
  • Developed an admin panel to monitor and manage data and requests from the mobile application.
  • Tech Stack used: HTML/CSS, Bootstrap, NodeJS and MongoDB

Community

Volunteering work in different tech communities.

 
 
 
 
 
Podcast Host & Speaker - null चर्चा
Jun 2022 – Present Pune, India
Started null चर्चा (pronounced ‘charcha’), a video podcast, is an initiative by null - The Open Security Community where security experts get together to discuss a wide range of topics related to cybersecurity ranging from offensive to defensive security.
 
 
 
 
 
Chapter Lead
May 2022 – Present Pune, India
Started null Pune Chapter Monthly Meetups and other types of meetings like null Humla, Puliya and workshops along with concepts like news bytes and networking hour.
Organizing monthly events, arranging venues, inviting speakers, and other duties are among the responsibilities.
 
 
 
 
 
Crew member
Jul 2021 – Present Remote
  • Developed pre-CTF challenges for Social Media and also challenges for the main event.
  • Worked on different cloud providers - AWS, GCP, Azure, Digital Ocean & Alibaba while working on the CTF.
  • Handled Social Media aspect of strategising posts for better reach and engagements and also designing creatives for the event.
 
 
 
 
 
Moderator & Challenge Developer
Mar 2021 – Present Remote
  • Developed CTF challenges for the Winja CTF events at nullcon 2021 (06th Mar, 2021) and at c0c0n 2021 (12th Nov, 2021).
 
 
 
 
 
Volunteer
Sep 2020 – Present Remote
  • Managing null Study Groups for 7 different domains of information security. Helping the newcomers, get exposed to industry grade learning experience. Responsibilities involved conducting weekly/bi-weekly meetups, finding mentors, etc.
  • Moderator for null Community Discord Server.
  • Worked in the OSINT project, contributed in gathering information from the government websites and presenting them in an easy-to-consume form.
 
 
 
 
 
Core Team Member
Nov 2019 – Jun 2021 Remote
  • Moderating talks, sessions and any events that fall under the umbrella of DevC: Pune.
  • Developed CTF security centric challenges, for developers to learn about security.
  • Generates content or organizes discussion for the members.

Say Hi!