Information Security Lead
Jinson Varghese
Jinson is an Information Security Lead at Astra Security. A security and threat intelligence enthusiast, with a penchant for problem-solving, he is dedicated to advancing the cause of digital safety, one software at a time.
Besides, his comprehensive skill set and his commitment to conducting high-quality pentests help strengthen Astra Security’s commitment to excellence and hassle-free cybersecurity.
With 110,000+ monthly reported vulnerabilities, and over $30 Million saved in potential losses, Astra has earned recognition in esteemed publications like the Entrepreneur, Techradar, Splunk, Agari, and even CISA.
Expertise
- Red Teaming
- Web Application Pentesting
- Mobile App API Pentesting
- Network Pentesting
- Cloud Infrastructure Pentesting
Work at Astra
- Performing hacker-style pentests for customer applications and managing the entire pentest using Astra’s platform
- Planning and executing VA/PT for web, mobile, Cloud, SaaS, network, and OS projects.
- Contributing towards building intelligence for the DAST scanner.
- Interacting and facilitating clients to map out the steps for fixing vulnerabilities.
- Maintaining Astra’s vulnerability management system.
Experience
With an experience of more than 5 years, Jinson possesses a strong background in vulnerability scanning and offensive pentesting. His experience with the OWASP Foundation has also helped him gain a better understanding of the threat landscape.
Education
- Northumbria University (UK), B.Sc in Computer Science
- MDIS, Singapore, Advanced Diploma in Information Technology
Credentials
- B. Certified Blockchain Security Professional
Work at Astra
- How to Conduct Web App Penetration Testing?
- What is Pentest? A Complete Guide to Penetration Testing
- CVE-2024-41581: Cross-Site Request Forgery (CSRF) in PowerAdmin
- Top 7 Privileged Access Management (PAM) Solutions in 2025
- Data Protection Trends in 2025 and Beyond: Navigating the Evolving Landscape
- 9 Best SOC 2 Compliance Software in 2025
- Understanding the 2025 GDPR Audit Report
- 6 Best Mobile App Security Companies in 2025
- NIST vs CIS Explained: Comparison, Benefits and Applications
- Azure Security Best Practices: A Comprehensive Guide
- Multi-Cloud Security: Challenges & Best Practices
- iOS vs Android Security: A Comprehensive Comparison
- Enterprise Cloud Security: A Comprehensive Guide
- How To Write A Post-Audit Cloud Security Report
- How To Build A Robust Cloud Security Architecture
- Microsoft Azure security best practices & checklist
- What Is Cloud App Security?
- Top 7 Azure Vulnerability Scanning Tools
- Top 11 AWS Security Tools & Software for 2025
- Top 7 AWS Pentesting Tools For Your Cloud Security Arsenal
- 7 Best GCP Security Tools
- Cloud Security Frameworks: A Complete Guide
- 10 Best Cloud Security Tools for 2025
- 10-Step Mobile App Security Checklist To Secure Your Mobile App
- The 8-Step Cloud Security Checklist
- Understanding SOC 2 Audit
- 6 Cloud Security Trends: Safeguarding the Sky High Data Vaults
- Understanding 6 Types of Cloud Security Breaches
- Best 7 Android Pentesting Tools for 2025 [Reviewed]
- 7 Best iOS Pentesting Tools to Detect Vulnerabilities
- Top 5 PCI QSA Companies For PCI-DSS Audits in 2025
- Top PCI Service Providers Of 2025 [Best Pick]
- 11 Cloud Security Best Practices For AWS, Azure, And GCP
- CHECK Penetration Testing Guide
- Top 40+ Cybersecurity Companies in 2025 (USA & Worldwide)
- Top 10 Penetration Testing Companies UK [Updated 2025]
- Top 7 Online Penetration Testing Tools in 2025
- 10 Best API Penetration Testing Tools to Use in 2025
- Container Vulnerability Scanning: An In-Depth Guide
- A Comprehensive Guide to Network Vulnerability Scanning
- 5 Things You Must Know About Docker Hub Vulnerability Scanning
- Web Server Security- Beginner’s Guide
- A Complete Guide to Cloud Security Testing
- 13 Top Dynamic Application Security Testing Software (DAST Tools)
- 10 Best Network Security Testing tools in 2025
- Software Penetration Testing: A Complete Guide
- Understanding Interactive Application Security Testing (IAST): A Complete Guide
- All You Need to Know About Security Audit Report
- IT Security Audit Methodology – A Complete Guide
- How to Perform a Server Security Audit Step-by-Step?
- Cloud Penetration Testing: A Complete Guide
- Website Vulnerability Testing – Everything You Need to Know
- Azure Penetration Testing Guide – Policies, Tools & Tips
- A Complete Guide To Website Security Audit Certificate & Testing
- Magento Beveiligingsaudit – 7 stappen naar volledige Magento Security Audit & VAPT
- A Complete Guide To AWS Penetration Testing
- Network Penetration Testing: Everything You Need To Know
- What is Web Application Security Testing?
- Broken Access Control & CSRF in Genexis Platinum 4410 Router V2.1
- Stored XSS Vulnerability found in Nagios Log Server <= 2.1.6 - Update immediately
- How to Prevent Clickjacking in PHP?
- PHP CSRF Protection via Anti-CSRF Token
- SQL Errors resulting in Sensitive Data Exposure in Journal OpenCart Theme < 3.1.0 - Update immediately
- XSS Vulnerability found in Coming Soon Page, Under Construction & Maintenance Mode by SeedProd <= 5.1.0 - Update immediately
- How Do PHP Backdoors Infect Your Website?
- API Security Audit: The Complete Guide
- 5 DIY Methods to Implement PrestaShop CSRF Protection
- Comment supprimer les logiciels malveillants OpenCart et Magento Credit Card
- Comment supprimer les logiciels malveillants OpenCart et Magento Credit Card?
- E-Commerce-Sicherheit: Bedeutung, Probleme und Schutzmaßnahmen
- Fix Magento Blacklist by Google, Norton, McAfee, AVG, Kaspersky, MalwareBytes & Other Engines
- Learn How to Prevent E-commerce Fraud Before It’s Too Late!
- Ecommerce Security: Importance, Issues & Protection Measures
- IT Security Audit: Importance, Types, and Methodology
- 5 Easy Steps to Enhance E-commerce Credit Card Security on Your Store
- 10 E-commerce Security Threats That Are Getting Stronger By The Day!
- How to Do a Security Audit of Symfony, Laravel & Codeigniter Frameworks?
- XSS Vulnerability found in WPForms Plugin < 1.5.9 - Update immediately
- How to do Website Security Audit? [Checklist + Tools]
- Joomla Security Audit & Penetration Testing: Steps & Tools
- How to Perform a PrestaShop Security Audit in 4 Simple Steps?
- Mobile App Security Audit: All You Need To Know
- Stored XSS Vulnerability found in Strong Testimonials Plugin <= 2.40.0 - Update immediately
- Reflected XSS Vulnerability found in LearnDash LMS Plugin [3.0.0 – 3.1.1] – Update Immediately
- How to Set Prestashop File & Folder Permissions?
- Cross Site Request Forgery: Not Quite Extinct!
- Complete Guide on Joomla Malware & Hack Removal – Fix Hacked Joomla Website
