Muhammad Umar Khan

PROFESSIONAL PROFILE Security-focused Software Engineer with over a year of backend development experience in Python and Tornado, now transitioning into cybersecurity. HTB Certified Defensive Security Analyst (CDSA) with practical expertise in penetration testing, vulnerability assessment, and secure code practices. Combines deep knowledge of software architecture and APIs with security proficiency in Docker, Cloud environments, and Endpoint Security. Seeking to leverage dual strengths in development and security monitoring to build resilient systems. EDUCATION Bachelors of Software Engineering School of Electrical Engineering and Computer Science (SEECS) , Islamabad (2026) INTERNSHIP EXPERIENCE WALEE 04-Dec-2023 - 29-Feb-2024 FINAL YEAR PROJECT Dehaari Mobile app which connects workers (electricians, plumbers, etc) with customers. Just like indrive TECHNICAL EXPERTISE Security Operations & Analysis Proficient in Security Operations Center (SOC) analysis, security monitoring, and incident response. Skilled in analyzing event logs, managing Endpoint Security, and utilizing SIEM (Security Information and Event Management) as well as IDS/IPS (Intrusion Detection/Prevention Systems). Vulnerability Assessment & Penetration Testing Experienced in conducting penetration testing and vulnerability assessments to identify and mitigate system risks. Holds knowledge in broader information security practices and is a Certified Defensive Security Analyst (CDSA). Software Development & Infrastructure Competent in full-stack development, including creating REST APIs and database models. Proficient with MySQL databases, Cloud technologies, and Docker for containerization. Familiar with version control and agile workflows

Security-focused Software Engineer with over a year of backend development experience in Python and Tornado, now transitioning into cybersecurity. HTB Certified Defensive Security Analyst (CDSA) with practical expertise in penetration testing, vulnerability assessment, and secure code practices. Combines deep knowledge of software architecture and APIs with security proficiency in Docker, Cloud environments, and Endpoint Security. Seeking to leverage dual strengths in development and security monitoring to build resilient systems.