root@cyber:~$cat ./resume.json

Shivang Tiwari

Security Engineer (Red Team Research & Offensive Security)

New Delhi, India (Remote)shivangtiwari2415@gmail.comGitHub

//Summary

Dynamic Security Engineer with a strong foundation in VAPT and offensive security engineering. Experienced in building and automating detection logic for web, API, and cloud (AWS) environments, collaborating across pentest and product teams to deliver scalable, secure systems. Focused on red team security research with practical automation.

Top 1%
TryHackMe Rank
30+
CTF Events
1+ Year
Industry Experience
5+
Events Organised

//Skills & Tools

Burp Suite
Burp Suite
OWASP ZAP
OWASP ZAP
SQLMap
SQLMap
Nmap
Nmap
Gobuster
Gobuster
Metasploit
Metasploit

>Additional expertise:

Advanced Persistent Threat SimulationAttack Chain DevelopmentDAST / SAST Pipeline EngineeringAI-Driven Vulnerability DetectionAutonomous Security AgentsCloud Offense & Defense (AWS)API Fuzzing & Business Logic AbuseWAF / IDS Evasion TechniquesThreat Intelligence & ModellingIncident Response & TriageDetection Engineering (Sigma/YARA)Security Automation & Orchestration

//Experience

1

SDE - I (Security)

Astra Security
Jun 2025 - Present

Contributing to AttackAI, an AI-powered vulnerability detection engine for web, API, and cloud environments. Leading scanner team roadmap, attack path design, and implementation for DAST (Web/API) and cloud offsec checks.

OWASP Top 10Web/API/Cloud DASTScanner Team Lead
2

SDE Security Intern

Astra Security
Feb 2025 - Jun 2025

Enhanced DAST infrastructure for web and API vulnerability detection. Built secure, modular automation in Python/Java/JavaScript integrated with YAML-based detection pipelines.

OWASP ZAPAutomation PipelinesDetection Engineering
3
Dec 2022 - May 2025

Led a 500+ member technical community at VIPS-TC, New Delhi. Organized flagship events including ACECTF 1.0 (Jeopardy CTF, 659 teams), HackVSIT 5.0 & 6.0 (North India's biggest hackathon), and multiple workshops, mentoring juniors and coordinating cross-team operations.

Community LeadershipCTF OperationsHackathon ManagementMentorship

//Events Organised & Volunteered

Lead OrganizerHackVSIT 6.0
Apr 2025

North India's biggest hackathon at VIPS-TC, New Delhi. 24-hour hackathon with 6 themes, featuring sponsors like Astra Security, Polygon, ETHIndia, and Aptos. Managed operations, logistics, and judging across 300+ participants.

OrganizerACECTF 1.0
Feb 2025

ACE's inaugural Jeopardy-style CTF tournament hosted on CTFTime. 659 teams participated globally across Web, Pwn, Cryptography, Reverse Engineering, OSINT, Binary Exploitation, and Digital Forensics categories. Sponsored by EC-Council, .xyz Domains, and Bounty Security.

OrganizerSIH 2024 Grand Finale
Dec 2024

Organized the Smart India Hackathon 2024 Grand Finale node at VIPS, New Delhi. Coordinated logistics, mentoring, and judging for participating teams.

VolunteerHackVSIT 5.0
Apr 2024

North India's most influential hackathon at VIPS. Coordinated on-ground operations and participant support for the 24-hour hackathon.

2025

Organized the annual Technical Day celebration at VIPS-TC featuring workshops, tech talks, and live demos.

//Achievements

BFCET Hack 2024 — Runners Up

2024

Runner up in the BFCET Hack 2024 hackathon held in Bathinda, Punjab as part of Team CodeX.

//Projects

SafeDocs

Jul 2024 - Sep 2024

Privacy-focused web application that securely detects and extracts PII from documents (PDFs/images) with a strong emphasis on data security and compliance.

PII DetectionSecure Document ProcessingPrivacy-first Design

KarvIt

Jan 2024 - Apr 2024

Python-based GUI tool for file carving from disk images, useful for digital forensics, data recovery, and incident investigations.

Digital ForensicsFile CarvingPython GUI

//Education

Master of Computer Applications (Cybersecurity)

2025 - 2027

Amity University Online

Remote program focused on advanced cybersecurity coursework.

Bachelor of Computer Applications

2022 - 2025

Guru Gobind Singh Indraprastha University

Cybersecurity specialization with GPA 8.9.

//Certifications

Google

Google Cybersecurity Professional Certificate

Completed

View Certificate →
CNSP

Certified Network Security Professional (The SecOps Group)

Completed

View Certificate →
CS50x

CS50x: Introduction to Computer Science (Harvard)

Completed

View Certificate →
CS50CS

CS50 Cybersecurity (Harvard)

Completed

View Certificate →
Download Full CV (PDF)
>sh1v4ng__
GitHubLinkedInshivangtiwari2415@gmail.com

$ echo "Open to Red Team Security Research and Security Engineering roles."

> Open to Red Team Security Research and Security Engineering roles.

$ uptime

> Portfolio online since 2024 | Last updated: Mar 2026

"No one is useless in this world who lightens the burdens of another." — Charles Dickens

Considered a small donation if you found any of the walkthrough or blog posts helpful. Much appreciate :)

Buy me a coffee

© 2026 Shivang Tiwari. Built with Next.js. Hack the planet.