Software Engineer in Test (II) | Certified Ethical Hacker | Bug Bounty Hunter | Automation & Security Specialist

Results-driven Software Engineer in Test (L2) with over 4 years of expertise in end-to-end software quality assurance, encompassing manual testing, automation frameworks, API validation, performance benchmarking, and security penetration testing. Proficient in tools like Playwright, Selenium, Cypress for automation; JMeter and K6 for performance; and Burp Suite, OWASP ZAP, Nuclei, SQLMap for security. Excel in Agile/Scrum environments, CI/CD integration with GitHub Actions, and cross-functional collaboration to deliver resilient, high-performance applications. Proven track record: Reduced defect leakage by 20% through strategic test planning and slashed regression testing time by 35% via optimized automation pipelines. Aligned with 2025 trends like AI-driven testing, Shift-Left methodologies, and QAOps for proactive quality engineering.

In the evolving landscape of software testing, I focus on integrating cutting-edge practices to ensure software excellence. Drawing from industry trends in 2025, my approach emphasizes:

• AI & ML in Testing: Leveraging AI for predictive defect analysis and automated test generation, aligning with Agentic AI and AI Shift-Right trends to enhance user-centric quality.
• Shift-Left & QAOps: Embedding testing early in the SDLC and integrating QA with DevOps for faster feedback loops, reducing time-to-market.
• Codeless/Low-Code Automation: Utilizing tools like Selenium IDE for rapid prototyping, complementing my core automation skills.
• API & IoT Testing: Comprehensive API validation with Postman/Swagger and readiness for IoT ecosystems, ensuring scalability and interoperability.
• Cybersecurity Focus: Ethical hacking and security testing to address rising threats, including blockchain and big data vulnerabilities.
• Performance & Big Data Testing: Optimizing with JMeter/K6 to handle massive datasets and real-time performance demands.
• Ethical AI & Collaboration: Promoting inclusive testing practices and partnering with data scientists for robust QA strategies.

This forward-thinking methodology positions me to drive innovation in QA teams, fostering "Everyone is QA" cultures where quality is a shared responsibility.

• 🥈 1st Runner-Up, Programming Contest @ CSE Family Fest 2018, Bangladesh University
• 🌍 Top 1000 on Try Hack Me (#990 Worldwide)
• 🛡️ Reported 15+ Critical Vulnerabilities (XSS, SQLi, CSRF) across HackerOne, Bugcrowd, OpenBugBounty
• 🚀 Engineered Hybrid Automation Frameworks: 40% Execution Speed Boost, 35% Regression Time Reduction
• 🐛 Top 5% on Bugcrowd; Resolved 20+ High-Severity Issues
• 👨‍💻 Developed 10+ Open-Source Testing Tools, Adopted by 500+ Developers Globally

• HackerOne: Uncovered critical flaws in fintech platforms.
• Bugcrowd: 80% of reports classified as high/critical severity.
• OpenBugBounty: Safeguarded 50+ websites from exploitation risks.

Project Name	Description	Tech Stack	Key Impact	Repository
Bug Matrix 🐞 – SQA Testing Tools Hub	Fully free comprehensive browser extension for testers with tools for testing, test data generation, security payloads, OSINT, and more. One-stop solution for manual testing, automation, API, performance, security.	JavaScript, Chrome Extensions	Streamlined workflows for QA professionals; Free and open for community use.	Chrome Store
Bugs Matrix SQA Testing Tools Hub	All-in-one browser extension streamlining QA workflows with integrated testing tools.	Playwright, JavaScript, Chrome Extensions	Accelerated testing cycles for teams; Open-source contribution to QA community.	GitHub
Sharp Archive Automation	Automated data processing pipeline for efficient archiving.	Selenium, Python	50% reduction in manual data handling time; Supports big data trends.	GitHub
Website Comparison Tool	Advanced tool for structural and content diff analysis.	JavaScript, Node.js	Enhanced regression testing efficiency in web apps.	GitHub
Security Automation Tool	CLI-based vulnerability scanner for rapid security audits.	Python, SQLMap, Nuclei	2k+ downloads; 50% faster scans aligning with cybersecurity trends.	GitHub
Test Automation Framework	Scalable E2E framework with CI/CD hooks.	Selenium, Playwright, GitHub Actions	Achieved 95% test coverage; Exemplifies QAOps.	GitHub
Bug Bounty Scripts	Suite of reconnaissance and vuln discovery scripts.	Bash, Dalfox, Nmap	1.5k stars; Empowers ethical hackers worldwide.	GitHub
API Security Tester	Automated scanner for API vulnerabilities.	Postman, OWASP ZAP	Detected 10+ critical API flaws; Supports API automation trends.	GitHub

• Campus Ambassador @ Team Matrix - Elite Hacker (Jan 2022 – Feb 2024)
  Empowered 100+ students with free QA and security resources, fostering collaborative learning environments.

• Leadership Highlights:

  • Led 8-member SQA team: Enhanced test coverage, reduced defect leakage by 20% via efficient planning.
  • Automation Team Lead: Drove framework development and CI/CD, cutting regression time by 35%.

Committed to mentoring aspiring testers and contributing to open-source QA projects.

To optimize for searches related to software testing: software testing, QA engineer, automation testing, Selenium, Playwright, Cypress, API testing, performance testing, security testing, bug bounty, ethical hacking, CEH certified, Burp Suite, OWASP ZAP, JMeter, K6, Postman, GitHub Actions, Agile QA methodologies, test automation frameworks, bug hunting tools, penetration testing, vulnerability scanning, CI/CD integration, regression testing, manual testing, mobile testing, database testing.

• 🌐 Personal Portfolio
• ✍️ Medium Blog on QA Insights
• 📧 [email protected] | [email protected]
• Open to: QA Leadership Roles, Security Consulting, Collaborations on AI Testing Tools, Speaking at Tech Conferences.

Last Updated: August 27, 2025