Information Security Lead
Jinson Varghese
Jinson is an Information Security Lead at Astra Security. A security and threat intelligence enthusiast, with a penchant for problem-solving, he is dedicated to advancing the cause of digital safety, one software at a time.
Besides, his comprehensive skill set and his commitment to conducting high-quality pentests help strengthen Astra Security’s commitment to excellence and hassle-free cybersecurity.
With 110,000+ monthly reported vulnerabilities, and over $30 Million saved in potential losses, Astra has earned recognition in esteemed publications like the Entrepreneur, Techradar, Splunk, Agari, and even CISA.
Expertise
- Red Teaming
- Web Application Pentesting
- Mobile App API Pentesting
- Network Pentesting
- Cloud Infrastructure Pentesting
Work at Astra
- Performing hacker-style pentests for customer applications and managing the entire pentest using Astra’s platform
- Planning and executing VA/PT for web, mobile, Cloud, SaaS, network, and OS projects.
- Contributing towards building intelligence for the DAST scanner.
- Interacting and facilitating clients to map out the steps for fixing vulnerabilities.
- Maintaining Astra’s vulnerability management system.
Experience
With an experience of more than 5 years, Jinson possesses a strong background in vulnerability scanning and offensive pentesting. His experience with the OWASP Foundation has also helped him gain a better understanding of the threat landscape.
Education
- Northumbria University (UK), B.Sc in Computer Science
- MDIS, Singapore, Advanced Diploma in Information Technology
Credentials
- B. Certified Blockchain Security Professional
Work at Astra
- OWASP APTS: A Complete Guide to Autonomous Penetration Testing Standard
- DPDP Compliance in 2026: The Complete Guide for Tech Leaders
- How to Evaluate Autonomous Penetration Testing Security Vendors in 2026
- Top 7 Online Penetration Testing Tools in 2026
- What is Software Penetration Testing? – Types, Tools
- What is Cloud Security? Types, Risks, and Solutions
- Web Application Penetration Testing: Methodology, Tools, and Compliance
- Guide on Securing Azure Blob Storage: Best Practices and Key Features
- 10 Best API Pentesting Tools in 2026 [Expert Opinion]
- Do We Have Full API Visibility Across Our Entire API Ecosystem?
- What is Web Application Scanning? A Guide to Securing Your Web Apps (2026)
- 7 Essential Best Practices to Strengthen Your API Security Posture
- How to Build an API Security Strategy: The Complete Guide (2026)
- The Ultimate 101 Guide to MITRE ATLAS
- API Security Trends 2026: Strategies, Risks & Solutions
- Top 11 SOC 2 Vulnerability Assessment Tools SaaS (2026)
- How to Get ISO 27001 Certification: A Complete Guide
- Top 12 ISO 27001 Certified Pentest Companies in India (2026, Expert Reviewed)
- FedRAMP Penetration Testing Companies: Complete Buyer’s Guide & Top Providers (2026)
- How to Get RBI Certification: A Pentesting Playbook for Banks, NBFCs, and Fintechs (Astra Security)
- Threat-Led Penetration Testing by Astra Security
- CMMC 2.0 Certification: Your Survival Guide
- Top 7 HIPAA Penetration Testing Companies USA (2026 Expert Review)
- Top 13 DAST Tools for 2026: Expert Comparison & Reviews
- Top 10 Penetration Testing Companies in 2026 Europe and UK
- Top 7 Fintech Cybersecurity Companies in 2026
- CVE-2024-41581: Cross-Site Request Forgery (CSRF) in PowerAdmin
- Top 7 Privileged Access Management (PAM) Solutions in 2026
- Data Protection Trends in 2026 and Beyond: Navigating the Evolving Landscape
- 9 Best SOC 2 Compliance Software in 2026
- Understanding the 2026 GDPR Audit Report
- 6 Best Mobile App Security Companies in 2026
- NIST vs CIS Explained: Comparison, Benefits and Applications
- Azure Security Best Practices: A Comprehensive Guide
- Multi-Cloud Security: Challenges & Best Practices
- iOS vs Android Security: A Comprehensive Comparison
- Enterprise Cloud Security: A Comprehensive Guide
- How To Write A Post-Audit Cloud Security Report
- How To Build A Robust Cloud Security Architecture
- Top 10 PCI DSS Compliance Software in 2026
- 7 Top Azure Security Tools
- Microsoft Azure security best practices & checklist
- What Is Cloud App Security?
- Top 7 Azure Vulnerability Scanning Tools
- Top 11 AWS Security Tools & Software for 2026
- Top 7 AWS Penetration testing Tools For Your Cloud Security Arsenal
- 7 Best GCP Security Tools
- Cloud Security Frameworks: A Complete Guide
- Best 11 Cloud Security Tools for 2026 (Reviewed by Experts)
- 10-Step Mobile App Security Checklist To Secure Your Mobile App
- The 8-Step Cloud Security Checklist
- Understanding SOC 2 Audit
- 6 Cloud Security Trends: Safeguarding the Sky High Data Vaults
- Understanding 6 Types of Cloud Security Breaches
- Best 7 Android Pentesting Tools for 2026 [Reviewed]
- 7 Best iOS Pentesting Tools to Detect Vulnerabilities
- Top 5 PCI QSA Companies For PCI-DSS Audits in 2026
- Top 5 PCI DSS Compliance Service Providers (2026 List)
- 11 Cloud Security Best Practices For AWS, Azure, And GCP
- CHECK Penetration Testing Guide
- Top 40+ Cybersecurity Companies in 2026 (USA & Worldwide)
- Top 10 Penetration Testing Providers UK [Updated 2026]
- Container Vulnerability Scanning: An In-Depth Guide
- A Comprehensive Guide to Network Vulnerability Scanning
- 5 Things You Must Know About Docker Hub Vulnerability Scanning
- Web Server Security – Beginner’s Guide
- A Complete Guide to Cloud Security Testing
- 10 Best Network Security Testing tools in 2026
- Understanding Interactive Application Security Testing (IAST): A Complete Guide
- All You Need to Know About Security Audit Report
- IT Security Audit Methodology – A Complete Guide
- How to Perform a Server Security Audit Step-by-Step?
- How to Perform Cloud Penetration Testing
- Website Vulnerability Testing – Everything You Need to Know
- Azure Penetration Testing Guide – Policies, Tools & Tips
- A Complete Guide To Website Security Audit Certificate & Testing
- What is AWS Penetration Testing? (+ How to Perform)
- Network Penetration Testing: Everything You Need To Know
- What is Web Application Security Testing?
- API Security Audit: The Complete Guide
- E-Commerce Security: Importance, Issues & Protection Measures
- IT Security Audit: Importance, Types, and Methodology
- 5 Easy Steps to Enhance E-commerce Credit Card Security on Your Store
- 10 E-commerce Security Threats That Are Getting Stronger By The Day!
- How to Do a Security Audit of Symfony, Laravel & Codeigniter Frameworks?
- How to do Website Security Audit? [Checklist + Tools]
- Joomla Security Audit & Penetration Testing: Steps & Tools
- How to Perform a PrestaShop Security Audit in 4 Simple Steps?
- Mobile App Security Audit: All You Need To Know
- Cross Site Request Forgery: Not Quite Extinct!
