Home About Experience Achievements Certifications Education Contact CV
Ratnadeep Bose - Cybersecurity Professional Portrait

Ratnadeep Bose

SOC Analyst | Web & Android VAPT Specialist | Cloud Security Practitioner

Kolkata, West Bengal, India

ratnadeepbusiness321@gmail.com

+91 7001005520

Professional Summary

Dual-focused cybersecurity professional specializing in both SOC operations and offensive security testing. Active Bug Bounty Hunter and Security Researcher with expertise spanning security monitoring, incident detection, and vulnerability assessment. Proven track record in SOC environments conducting advanced log analysis, incident triage, and security monitoring using industry-leading SIEM platforms including Splunk and Elastic. Simultaneously discovering high-impact security flaws through responsible disclosure programs at Zepto, Zerodha, Yatra, Paytm, and other major platforms.

Technical expertise covers the full security spectrum - from defensive SOC operations (SIEM platforms, threat detection, incident response, MITRE ATT&CK framework) to offensive security (web penetration testing, API security, mobile app reverse engineering, and automated reconnaissance). Skilled in identifying sophisticated attack patterns, correlating security events, and implementing proactive defense mechanisms while also uncovering critical vulnerabilities including exposed API keys, sensitive data leakage, and access control weaknesses.

Strong foundation in secure coding practices, cloud security (AWS), and DevSecOps with exposure to AI-assisted security research. Exceptional communication skills honed through responsible disclosure coordination, enabling effective collaboration with cross-functional teams and clear articulation of security posture to stakeholders. Committed to continuous learning, maintaining proficiency in emerging attack vectors, and protecting organizations from both sides of the cybersecurity battlefield.

Core Skills

Security Operations Centre

Splunk Elastic Security Microsoft Sentinel Zeek Suricata Wazuh osquery Velociraptor TheHive Cortex

Cloud Security & DevSecOps

Prowler Scout Suite Checkov Terraform Docker Trivy Kubescape kube-bench tfsec Terrascan

Web VAPT

Burp Suite Pro OWASP ZAP Nmap Metasploit sqlmap ffuf Gobuster Nikto Nuclei WhatWeb Subfinder amass assetfinder dnsrecon httpx dnsx httprobe katana gau waybackurls unfurl arjun wpscan masscan hydra john hashcat hashid ncrack ncat openssl curl tcpdump arpspoof ngrep proxychains msfconsole searchsploit impacket crackmapexec linpeas go rustc python3 cookiemonster sourcemapper

Mobile Application Security & Android Analysis

JADX Apktool MobSF Frida Objection ADB drozer Android Emulator Android Studio JD-GUI

Threat Intelligence

VirusTotal Maltego MISP OpenCTI Censys GreyNoise Any.Run urlscan.io AbuseIPDB OTX ThreatFox OpenPhish

Experience

July 2026 - Present

Information Security Intern

Digi Samurai · Internship | Rajarhat, West Bengal, India · On-site

  • Supporting the Information Security team in day-to-day security operations and client engagements.
  • Assisting with vulnerability assessment, security research, risk analysis, and security documentation.
  • Contributing to operational delivery while gaining hands-on experience with cybersecurity processes and industry best practices.
  • Collaborating with cross-functional teams under the guidance of experienced security professionals.
  • Learning and applying security concepts related to incident response, compliance, and information security management.

Core focus areas: Vulnerability Assessment and Penetration Testing (VAPT), Security Operations Center (SOC), Governance, Risk Management, and Compliance (GRC)

Jan 2026 - Present

Bug Bounty Hunter

Com Olho · Freelance | Remote

  • Conducting independent security research and vulnerability assessments across web applications and APIs, with a focus on identifying high-impact security flaws aligned with responsible disclosure practices.
  • Specialized in reconnaissance, attack surface mapping, and vulnerability discovery including subdomain takeovers, misconfigurations, and access control weaknesses.
  • Actively reporting validated findings to organizations through coordinated disclosure programs, ensuring real-world impact and security improvement.
  • Leveraging tools and frameworks such as Burp Suite, Nmap, Subfinder, Amass, and custom Python automation scripts to streamline testing workflows and improve detection efficiency.

Core focus areas: Web Application Security (OWASP Top 10), Threat Detection & Analysis, OSINT & Reconnaissance Automation, Cloud & Infrastructure Misconfigurations, Linux-based Security Testing Environments

Nov 2025 – Dec 2025

App Developer Intern | AZMTH

azmth · Internship | Kolkata, West Bengal, India · Hybrid

  • App Development using Flutter: Designing, developing, and optimizing mobile applications aligned with Azmth's AI call management ecosystem. Focused on performance, scalability, and intuitive user experience.
  • Integration of AI-driven Features: Collaborating with backend and AI teams to integrate voice assistant capabilities, real-time analytics, and smart routing features into mobile products.
  • Security Implementation: Ensuring end-to-end application security through code reviews, data encryption, and secure authentication methods to protect user and communication data.
  • API & CRM Sync Development: Building modules that sync app data with platforms like Google Calendar, HubSpot, and Salesforce for seamless workflow automation.
  • Testing & Optimization: Conducting functional and performance testing to enhance speed, reliability, and scalability of the mobile applications.
  • Cross-functional Collaboration: Working closely with product managers, designers, and AI engineers to ensure consistent delivery of high-quality app solutions.
  • Continuous Learning & Innovation: Exploring the intersection of Flutter development, AI communication systems, and cybersecurity to contribute to Azmth's evolving product roadmap.

Focus Areas: Flutter, Dart, Mobile App Development, AI Integration

Achievements

6 Security Achievements

Zepto Security Hall of Fame

Discovered and responsibly disclosed multiple security vulnerabilities during a security assessment. The findings were validated by the Zepto Security Team and successfully remediated. Recognized in Zepto's Security Hall of Fame for contributing to their security posture. This achievement reflects expertise in security research, vulnerability identification, and responsible disclosure coordination.

Verify

Certificate of Appreciation from Zerodha

Received Certificate of Appreciation from Zerodha Broking Limited for identifying a Severity P2 vulnerability in their Bug Bounty Program. First formal recognition in the bug bounty ecosystem.

View Certificate Verify

Appreciation from Yatra

Received validation and acknowledgment from Yatra Infosec Team for responsible disclosure of a security finding through their bug bounty program. The reported issue was accepted, validated, and classified as Medium Risk. Recognized for contributing to Yatra's platform security.

Pending Verify

Certificate of Appreciation from Paytm

Discovered and responsibly disclosed a critical production vulnerability in Paytm's Android application during a bug bounty assessment. The security flaw involved a sensitive data exposure issue that was validated by the Paytm Security Team, prioritized for high-impact remediation, and successfully fixed. This achievement reflects expertise in mobile application security, static code analysis, reverse engineering, and responsible disclosure coordination.

View Certificate Verify

Security Finding - Linqapp.com

Discovered and responsibly disclosed a security vulnerability in Linq during a security assessment. The issue was validated by the Linq Security Team and is currently under review. This achievement reflects expertise in security research and responsible disclosure coordination.

Under Review Pending

Security Finding - Juspay

Discovered and responsibly disclosed a security vulnerability in Juspay during a security assessment. The issue was validated by the Juspay Security Team and is currently under review. This achievement reflects expertise in security research and responsible disclosure coordination.

Under Review Pending

Licenses & Certifications

20 Certifications & Licenses

Certified Ethical Hacker

Cisco

Issued Feb 2026

Credential ID: Available

Verify Certificate

Advanced Endpoint Investigations

TryHackMe

Issued May 4, 2026

Endpoint forensics across Windows, Linux, macOS, and mobile platforms

Verify Certificate

SOC Level 2 Certificate

TryHackMe

Issued Apr 2026 · Expires Apr 2029

Credential ID: THM-QDCPS6UA1Z

Verify Certificate

AI Security

TryHackMe

Issued Apr 2026 · Expires Apr 2029

Credential ID: THM-Y20BOCEOGA

Verify Certificate

SOC Level 1 Certificate

TryHackMe

Issued Feb 2026 · Expires Feb 2029

Credential ID: THM-SYAMAKIBKE

Verify Certificate

Security Engineer Certificate

TryHackMe

Issued Mar 2026 · Expires Mar 2029

Credential ID: THM-BCWXYHPZWA

Verify Certificate

Jr Penetration Tester

TryHackMe

Issued Mar 23, 2026

Credential ID: THM-DAAGKZY0Z6

Verify Certificate

DevSecOps Certificate

TryHackMe

Issued Mar 2026 · Expires Mar 2029

Credential ID: THM-YYZJ1KE3XK

Verify Certificate

Web Fundamentals

TryHackMe

Issued Mar 24, 2026

Learning Path - 30 Hands-on Labs

Verify Certificate

Pre Security

TryHackMe

Issued March 16, 2026

Your first step into cyber. Learn how tech works, then think like an attacker and defender.

Verify Certificate

AWS Cloud Security

Amazon Web Services

Issued Feb 2026

IAM, AWS WAF, Cloud Security

Verify Certificate

SQL Injection Attacks – Code Red

EC-Council

Issued Mar 2026

EC-Council Learning Series

Verify Certificate

AWS Compute

Amazon Web Services

Issued Mar 2026

AWS Lambda, Amazon EC2

Verify Certificate

AWS Introduction to Cloud

Amazon Web Services

Issued Feb 2026

Cloud Computing, Cloud Security

Verify Certificate

Python Programming Fundamentals

Scaler

Issued Mar 2026

Core Programming Concepts & Scripting

Verify Certificate

Python Essentials 2

Cisco

Issued Mar 2026

Generators, Files, Python Standard Library

Verify Certificate

Python Essentials 1

Cisco

Issued Mar 2026

Collections, Functions, Exceptions

Verify Certificate

Fundamental Cloud & DevOps

Exlearn Technologies

Issued Dec 2025

ID: c253970d-3cf3-4871-9852-725550b0cea3

Verify Certificate

Certified Red Team Operations Management (CRTOM)

Red Team Leaders

Issued December 23, 2025

Advanced Red Team Operations & Governance

Verify Certificate

Foundations of Log Analysis for Cyber Defense

Red Team Leaders

Issued January 8, 2026

Learn to detect threats, understand system behavior, and respond to incidents through structured log analysis

Verify Certificate

Education

University of North Bengal

BA — English Language & Literature

2023 – 2026

Visit Website

Saint Paul's School, Jalpaiguri

ICSE & ISC — Arts

2008 – 2023

Visit Website