Your Full Name

Your Address | Your City, State, ZIP

📞 Your Phone Number | 📧 Your Email Address | 🌐 LinkedIn/GitHub

Professional Summary
Skilled and motivated Software Tester with 2 years of professional experience including 1 year in
Security Testing and 1 year in API Testing. Proficient in identifying vulnerabilities, ensuring
application security, and validating RESTful APIs using industry-standard tools and techniques.
Experienced in Agile development environments and passionate about delivering secure, high-
quality software solutions.

Technical Skills
 Security Testing Tools: Burp Suite, OWASP ZAP, Kali Linux, Nmap
 API Testing Tools: Postman, SoapUI, Swagger
 Testing Techniques: Vulnerability Scanning, Penetration Testing, SQL Injection, XSS
 Protocols: HTTP/HTTPS, REST, SOAP
 Development Tools: Git, Jenkins, Docker (basic)
 Languages: Python (basic scripting), JavaScript (understanding of attack vectors)
 Bug Tracking: JIRA, Bugzilla
 Methodologies: Agile, Scrum, SDLC, STLC
 Databases: MySQL, MongoDB
 Operating Systems: Windows, Linux

Professional Experience
 Security Tester
CyberSec Solutions, Bangalore
May 2023 – Present
 Conducted security assessments of web applications to identify and mitigate potential
vulnerabilities.
 Utilized tools like Burp Suite and OWASP ZAP for manual and automated penetration
testing.
 Performed vulnerability scans and produced detailed reports outlining risks and remediation
strategies.
 Collaborated with development teams to implement secure coding practices and fix
vulnerabilities.
 Tested for common security issues including XSS, SQL Injection, CSRF, and authentication
flaws.
 API Tester
TechAPI Systems, Hyderabad
May 2022 – April 2023
 Tested RESTful APIs using Postman and validated JSON/XML response payloads against
business logic.
 Developed automated API test scripts to validate request/response formats and status
codes.
 Worked closely with backend developers to identify and resolve API defects and
performance issues.
 Verified authentication mechanisms (OAuth2, JWT) and conducted negative testing
scenarios.
 Documented test cases and maintained version control for test scripts using Git.

Education
Bachelor of Technology in Computer Science
Your University Name, Location
Year of Graduation

Certifications
 Certified Ethical Hacker (CEH) – EC-Council (Optional)
 Postman API Testing Certification – Postman
 OWASP Top 10 and Web Application Security – Udemy/Pluralsight

Projects (Optional)
Web Application Security Testing

 Performed vulnerability analysis on internal CRM application.

 Reported security gaps and guided the dev team on OWASP Top 10 remediation.

Automated API Testing Framework

 Built a reusable Postman collection with automated test scripts for regression cycles.
 Integrated API testing suite with Jenkins for CI/CD execution.