Vibhu Bansal

Senior Security Consultant
Gurgaon, India | Vibhu025@gmail.com | 08168945316 | LinkedIn | GitHub

Professional Summary

Dedicated Senior Security Consultant with extensive experience in the cybersecurity domain, specializing in application penetration testing, network security, and red teaming. Proven expertise in conducting manual and automated assessments across diverse sectors, including banking, accounting, and oil & gas. Adept at identifying critical vulnerabilities in web, API, and cloud environments (AWS/GCP) while providing actionable remediation strategies to stakeholders.

Projects

🛡️ Security Tools Suite Open Source
A professional, high-performance, single-file HTML application combining two powerful security analysis tools: Nmap Report Analyzer and Postman Collection Analyzer. Built specifically for security researchers, penetration testers, bug bounty hunters, and developers who need comprehensive network and API reconnaissance capabilities.
Key Features:
  • Nmap Report Analyzer: Parse XML, .nmap, and text outputs to identify open ports, services, and critical vulnerabilities with real-time filtering and CSV export
  • Postman Collection Analyzer: Deep variable resolution, smart URL normalization, intelligent deduplication, and professional reporting for API surface mapping
Network Security API Analysis Penetration Testing Nmap Parser Postman Parser Offline Tools
Launch App GitHub Repo

Professional Experience

EY GDS | Senior Security Consultant Oct 2023 - Present
  • Perform advanced manual and automated application penetration testing for global clients in banking, accounting, and energy sectors.
  • Conduct cloud-native penetration testing and infrastructure assessments specifically for AWS and GCP environments.
  • Document technical findings and present remediation recommendations to technical teams and executive leadership.
  • Mentor and lead team members in mastering web application security testing and secure coding frameworks.
  • Identify and validate vulnerabilities across complex network and cloud infrastructures to strengthen client security posture.
Synopsys | Cyber Security Consultant Feb 2021 - Sep 2023
  • Executed Penetration Testing (PT) and DAST assessments for high-stakes internal and public-facing applications.
  • Led API penetration testing initiatives for diverse clients, identifying logic flaws and broken authorization patterns.
  • Managed project lifecycles including due diligence, initial scoping, and final quality review of client-facing deliverables.
  • Provided hands-on remediation support to help client developers effectively patch security findings.
  • Trained and mentored junior consultants on web application security best practices.

Technical Arsenal

VAPT Web App Pentesting API Pentesting Network Security AWS Security GCP Security Burp Suite Pro Kali Linux Nmap Postman DAST

Professional Certifications

CRTE - Certified Red Team Expert
CRTP - Certified Red Team Professional
HTB - Dante Pro Lab (Level 1)
CEH - Certified Ethical Hacker

Education

B.Tech in Computer Science (Cyber Security & Forensics) Graduated May 2021
UPES (University of Petroleum and Energy Studies), Dehradun