Mohammad Arsalan

I am a Cyber Security Analyst with a strong focus on identifying, analyzing, and mitigating security risks across web applications and systems. I have hands-on experience in vulnerability assessment and penetration testing (VAPT), where I assess real-world attack vectors and help organizations strengthen their security posture against evolving cyber threats. My technical expertise includes performing manual and automated security testing, identifying issues such as authentication flaws, input validation vulnerabilities, misconfigurations, and insecure application logic. I actively use industry-standard tools like Burp Suite, Nmap, SQLmap, and Kali Linux to simulate attacks, validate findings, and produce actionable security insights. In addition to cybersecurity, I have a solid foundation in software development and data analysis, enabling me to understand applications from a developer’s perspective. I work with Java, Python, and SQL, and I am comfortable reviewing application behavior, analyzing logs, and correlating security data to identify anomalies and patterns. I also use tools like Tableau, Excel, and VS Code to support reporting, visualization, and informed decision-making. What sets me apart is my cross-functional mindset — I bridge the gap between security, development, and analytics. This allows me to communicate risks clearly, provide practical remediation guidance, and contribute effectively to secure-by-design solutions. 💻 Core Skills & Tools • Vulnerability Assessment & Penetration Testing (VAPT) • Web Application Security (OWASP Top 10) • Tools: Burp Suite, Nmap, SQLmap, Kali Linux • Programming: Java, SQL • Web Technologies: HTML5, CSS3 • Data & Reporting: Tableau, Excel, VS Code 📌 Always learning, always testing — focused on building secure, resilient, and reliable systems. 🔍 Approach: Attack simulation → Risk validation → Actionable remediation