Vibhu Bansal

Senior Security Consultant
Gurgaon, India | Vibhu025@gmail.com | +91-8168945316 | LinkedIn | GitHub

Professional Summary

Dedicated Senior Security Consultant with extensive experience in the cybersecurity domain, specializing in application penetration testing, network security, and red teaming. Proven expertise in conducting manual and automated assessments across diverse sectors, including banking, accounting, and oil & gas. Adept at identifying critical vulnerabilities in web, API, and cloud environments (AWS/GCP) while providing actionable remediation strategies to stakeholders.

Projects

Postman Collection Analyzer Open Source

A professional, high-performance, single-file HTML application designed to audit, normalize, and analyze Postman collections. Built specifically for security researchers, penetration testers, developers, and QA engineers who need to visualize API surface areas quickly and securely.

Security Auditing API Analysis Penetration Testing Normalization
Launch App GitHub Repo

Professional Experience

EY GDS | Senior Security Consultant Oct 2023 - Present
  • Perform advanced manual and automated application penetration testing for global clients in banking, accounting, and energy sectors.
  • Conduct cloud-native penetration testing and infrastructure assessments specifically for AWS and GCP environments.
  • Document technical findings and present remediation recommendations to technical teams and executive leadership.
  • Mentor and lead team members in mastering web application security testing and secure coding frameworks.
  • Identify and validate vulnerabilities across complex network and cloud infrastructures to strengthen client security posture.
Synopsys | Cyber Security Consultant Feb 2021 - Sep 2023
  • Executed Penetration Testing (PT) and DAST assessments for high-stakes internal and public-facing applications.
  • Led API penetration testing initiatives for diverse clients, identifying logic flaws and broken authorization patterns.
  • Managed project lifecycles including due diligence, initial scoping, and final quality review of client-facing deliverables.
  • Provided hands-on remediation support to help client developers effectively patch security findings.
  • Trained and mentored junior consultants on web application security best practices.

Technical Arsenal

VAPT Web App Pentesting API Pentesting AWS Security GCP Security Burp Suite Pro Kali Linux Postman Nmap DAST

Professional Certifications

CRTE - Certified Red Team Expert
CRTP - Certified Red Team Professional
HTB - Dante Pro Lab (Level 1)
CEH - Certified Ethical Hacker

Education

B.Tech in Computer Science (Cyber Security & Forensics) Graduated May 2021
UPES (University of Petroleum and Energy Studies), Dehradun