Shoeb Shaikh
Associate consultant
Mumbai
Summary
Cybersecurity professional with hands-on experience in vulnerability and configuration assessments using Nessus, SOC incident handling, EDR-based hash blocking, and Web Application Firewall (WAF) rule tuning and analysis. Proficient in tools like Nmap, Burp Suite, Splunk, and familiar with CyberArk for privileged access management. CEH certified with practical exposure to threat detection, response workflows, and real-world attack mitigation aligned with OWASP Top 10.
Overview
2024
2024
years of post-secondary education
2
2
Certifications
Work History
Associate Consultant
SEQURETEK
06.2025 - Current
- Technology:-WAF, EDR, VACA.
- Actively monitored, analyzed, and responded to WAF security events, including false positive investigations, rule tuning, and traffic profiling.
- Investigated WAF blocks involving SQLi, XSS, CSRF, Access Control Violations, and JSON/XML parsing issues — correlating request payloads with OWASP Top 10 categories.
- Performed WAF exclusion handling: evaluated legitimate application traffic getting blocked, coordinated with application owners, and applied conditional or permanent exclusions based on risk.
- Used Host File Entry method to test WAF policies for new applications before DNS cutover — simulating real traffic pre-production
- Conducted internal vulnerability scans and compliance audits across Windows/Linux assets using Tenable Nessus.
- Analyzed critical/high vulnerabilities, validated false positives, and coordinated remediation with sysadmin/network teams.
- Handled SOC tickets for real-time threat detection and incident response, including triaging, escalating, and documenting security alerts.
- Executed hash-based blocking and remediation actions via Endpoint Detection & Response (EDR) tools to contain malware and malicious files.
Cybersecurity Intern
Hack Secure
04.2025 - 05.2025
- Conducted vulnerability assessment Nmap and DirBuster, identifying critical exposures (e.g., unprotected /admin/ portal, open port 80), reducing attack surface by 40%.
- Simulated and mitigated threats: Intercepted plaintext credentials via Wireshark; demonstrated SQLi/XSS vulnerabilities using sqlmap, prompting HTTPS implementation to secure data in transit.
- Developed Incident Response (IR) playbooks aligned with NIST SP 800-61 and GDPR, covering phishing, ransomware, and malware scenarios, reducing response time by 25%.
- Performed forensic analysis of Conti ransomware using Splunk, uncovering malicious .aspx backdoors and unauthorized lsass.exe credential dumps, enabling rapid threat containment.
- Proposed post-incident solutions, including automated patch management and enhanced Sysmon logging, decreasing future exploit risks by 30%.
Cybersecurity Intern
Hackers10
03.2025 - 04.2025
- Acquired hands-on experience in cybersecurity concepts, including penetration testing, vulnerability assessment, and ethical hacking techniques.
- Participated in simulated cyber-attack scenarios to identify and mitigate security vulnerabilities in systems and networks.
- Collaborated with peers to analyze security threats and develop defensive strategies
- Enhanced skills in tools such as Metasploit, Wireshark, Nmap, and Burp Suite.
Education
Cyber Security - Cyber Security And Ethical Hacking
Boston Institute of Analytics
Tryhackme & Port Swigger
Bachelor - Accounting And Finance
Mumbai University, Valia College
Skills
- Tools: Wireshark, Nmap, Nikto, SQLMap, Metasploit, Burp Suite, Hydra, Splunk, VirusTotal, John the Ripper, Hashcat, Netcat
- Domains: Vulnerability Assessment, Web Security (OWASP Top 10), Network Traffic Analysis, Network security, Password Cracking, SIEM
- Frameworks: MITRE ATT&CK, Cyber kill chain
- Tecnologies:- VACA, EDR, WAF, SOC
Certification
Certified Ethical Hacker (CEH) | Boston Institute of Analytics |2024-2025
Timeline
Associate Consultant
SEQURETEK
06.2025 - Current
Cybersecurity Intern
Hack Secure
04.2025 - 05.2025
Cybersecurity Intern
Hackers10
03.2025 - 04.2025
Cyber Security - Cyber Security And Ethical Hacking
Boston Institute of Analytics
Tryhackme & Port Swigger
Bachelor - Accounting And Finance
Mumbai University, Valia College
Similar Profiles
Haaris ShaikhHaaris Shaikh
Data Science Intern at Sequretek IT SolutionsData Science Intern at Sequretek IT Solutions
Paras KothariParas Kothari
Inside Sales Executive at Sequretek Inc.Inside Sales Executive at Sequretek Inc.
Rajesh GuptaRajesh Gupta
Consultant at Sequretek Solutions Pvt. Ltd.Consultant at Sequretek Solutions Pvt. Ltd.
Navmita Das NandiNavmita Das Nandi
AVP Employee Engagement - Reward and Recognition at HSBCAVP Employee Engagement - Reward and Recognition at HSBC
Prerana JadhavPrerana Jadhav
Software Development Senior Analyst at AccentureSoftware Development Senior Analyst at Accenture