OFFENSIVE SECURITY

Vivek Mahajan

Principal Security Consultant with 11+ years of offensive security experience across fintech, government, trading, healthcare, and SaaS. I build adversary-aligned strategies, execute red team operations, and translate critical risk into actionable, leadership-ready remediation.

“Learning never exhausts the mind.”

About

I design and run high-fidelity attack simulations, cloud security assessments, and security architecture reviews. My focus is measurable risk reduction with clarity that empowers leadership and blue teams to act fast.

I specialize in uncovering systemic weaknesses across complex environments and translating them into precise, prioritized remediation. From financial systems to critical infrastructure, my work blends adversarial realism with pragmatic defense outcomes.

I invest in continuous learning through labs, certifications, and hands-on research to stay ahead of evolving attack paths and emerging platforms.

Experience

Principal Security Consultant · SEC Consult Singapore Pte. Ltd.

Jul 2019 – Dec 2025 · Singapore
  • Led complex web, mobile (iOS/Android), and API penetration tests across fintech, government, trading, healthcare, and SaaS.
  • Orchestrated red team operations that mapped realistic attack paths and produced measurable posture gains.
  • Built custom Burp Suite extensions to accelerate security assessments and reduce manual effort.
  • Executed cloud security reviews and configuration hardening for client environments.
  • Delivered multi-project programs for global clients, balancing offensive depth with leadership-ready remediation.

Senior Security Consultant · NotSoSecure (Claranet Cyber Security)

Mar 2017 – Jun 2019
  • Performed web, mobile (iOS/Android), and API security assessments with exploit validation.
  • Led red team engagements simulating real-world intrusion chains and lateral movement.

Senior Information Security Analyst · Network Intelligence

May 2014 – Mar 2017 · Mumbai Area, India
  • Led social engineering assessments and security awareness programs for enterprise clients.
  • Performed web and mobile application assessments and guided remediation priorities.
  • Reviewed network configurations and segmentation controls to reduce attack surface.

Skills

Red TeamingPenetration Testing (Web/Mobile/Network)Cloud SecurityAPI SecurityNetwork SecurityMainframe Application Security (z/OS, AS400)Vulnerability Assessment & ManagementScripting (Bash, Python, PowerShell)Security ResearchSecurity Architecture Review

Contact

Available for targeted offensive engagements and high-impact security consulting.

X GitHub LinkedIn HTB
Built for adversarial clarity.