Prameya S. — Resume

Professional Experience

Senior Consultant — Offensive Security NetSentries

Sep 2024 — Present

Lead Consultant across multiple simultaneous enterprise engagements, owning end-to-end delivery including scoping, execution, and executive-level reporting.
Reported 1,000+ Early Notifications (ENs) of Critical/High severity findings across the client portfolio; designated specialist on low-yield engagements to surface high-impact vulnerabilities where others found none.
Lead all Production Security assessments across client accounts, ensuring continuous security posture coverage for critical infrastructure.
Designated Level-1 Reviewer for all trackers and pentest reports across the team, maintaining delivery quality and consistency.

Consultant — Offensive Security NetSentries

Sep 2023 — Sep 2024

Delivered impact-focused grey-box penetration tests specializing in web application and API security, consistently uncovering Critical and High severity vulnerabilities across enterprise client environments.
Engineered internal automation tooling and conducted R&D to streamline the grey-box web application testing workflow, reducing manual overhead for the wider offensive security team.
Expanded assessment coverage to iOS and Android mobile platforms, broadening the team's cross-platform offensive testing capability.

Associate Consultant — Offensive Security NetSentries

Apr 2023 — Sep 2023

Conducted grey-box penetration tests across web applications, REST APIs, Android/iOS mobile apps, and thick client applications for multiple enterprise clients.
Developed hands-on proficiency across the full offensive assessment lifecycle — from threat modelling and attack surface enumeration through to exploitation and remediation reporting.

Technical Skills

Web Application & API Pentesting

Smart Contract Auditing (Solidity, Foundry)

Mobile Pentesting (iOS & Android)

CI/CD, Docker, Kubernetes

Thick Client Pentesting

IaC (Terraform, GitHub Actions)

Programming (Python, Bash)

Threat Modeling & Incident Response

Additional Information

Tools: Burp Suite Pro, Metasploit, Frida, Objection, SAST/DAST/SCA, Foundry, Jenkins, Ansible

Certifications: CDP, eWPTX, eCPPT v2

Security Research: HTB Rank: Pro Hacker | TryHackMe Rank: 0x9 OMNI | Hall of Fame: Microsoft, IBM, Floriday

Web3 / Smart Contract Security: Competitive auditor on CodeHawks, Cantina, and Code4rena — audited protocols including Reserve Governor and AggLayer; CodeHawks First Flights Rank #310 (XP: 866); research focus areas: reentrancy, oracle manipulation, front-running, cross-chain settlement.

Education

Rajiv Gandhi Institute of Petroleum Technology 2017 — 2021

B.Tech. in Petroleum Engineering | CGPA: 8.08

Chapter Lead, OWASP RGIPT | Technical Supervisor, IEEE RGIPT

PRAMEYA SINGH SONI