Shubham A. looks like a good fit?

We can organize an interview with Aldin or any of our 25,000 available candidates within 48 hours. How would you like to proceed?

Schedule Interview Now

Shubham A. - Graphql, React Native, nextjs

My name is Shubham A. and I have over 9 years years of experience in the tech industry. I specialize in the following technologies: Java, GraphQL, Amazon Web Services, Kotlin, JavaScript, etc.. I hold a degree in Bachelor of Engineering (BEng), Master of Technology (MTech). Some of the notable projects I’ve worked on include: FetchPay – QR Payments, POS Integrations & AWS Cloud Security, Securim: Cloud Security, Azure Hardening & Application Sec Engineer, GymFit – AWS Cloud Security, DevOps & WordPress Application Hardening, Penetration Testing & OWASP Top 10 Risk Report, Secure Code Review & OWASP Top 10 Vulnerability Analysis, etc.. I am based in Delhi, India. I've successfully completed 10 projects while developing at Softaims.

I thrive on project diversity, possessing the adaptability to seamlessly transition between different technical stacks, industries, and team structures. This wide-ranging experience allows me to bring unique perspectives and proven solutions from one domain to another, significantly enhancing the problem-solving process.

I quickly become proficient in new technologies as required, focusing on delivering immediate, high-quality value. At Softaims, I leverage this adaptability to ensure project continuity and success, regardless of the evolving technical landscape.

My work philosophy centers on being a resilient and resourceful team member. I prioritize finding pragmatic, scalable solutions that not only meet the current needs but also provide a flexible foundation for future development and changes.

Main technologies

  • Graphql

    9 years

  • Java

    6 Years

  • GraphQL

    1 Year

  • Amazon Web Services

    1 Year

Additional skills

Direct hire

Potentially possible

Ready to get matched with vetted developers fast?

Let’s get started today!

Hire undefined

Experience Highlights

FetchPay – QR Payments, POS Integrations & AWS Cloud Security

At FetchPay, a UK-based QR payment and loyalty platform, I led backend engineering and AWS cloud security efforts. I built Node.js/NestJS microservices and AWS Lambdas integrating with POS APIs and Stripe for secure payments. I also migrated services to Java Spring Boot with PostgreSQL, designed hierarchy-based admin portals, and integrated Accor Hotels APIs for features like Order to Room and Add Bill to Room. Conducted AWS cloud audits, fixing S3, VPC, and NAT gateway misconfigurations.

Securim: Cloud Security, Azure Hardening & Application Sec Engineer

At Securim, I worked as a Cybersecurity & Application Security Engineer focused on securing Azure infrastructure and applications. My role included implementing cloud security best practices, hardening identity and access management, and improving secure networking. I also integrated DevSecOps into CI/CD pipelines, conducted threat assessments, and managed vulnerabilities across applications and cloud workloads to strengthen overall security posture.

GymFit – AWS Cloud Security, DevOps & WordPress Application Hardening

I secured GymFit’s AWS-based fitness platform, which includes WordPress, ReactJS, and Spring Boot microservices. My role combined AWS cloud security engineering with DevOps best practices to harden infrastructure and streamline deployments. Key work included securing ECS microservices, IAM roles, and load balancers while protecting the WordPress membership site. I also built secure, automated CI/CD pipelines to improve reliability and resilience.

Penetration Testing & OWASP Top 10 Risk Report

I created a comprehensive penetration testing report for a sample company, focusing on real-world attack scenarios mapped to the OWASP Top 10 vulnerabilities. Each finding was documented with a Risk severity ratings (Critical, High, Medium, Low), Business impact analysis and a clear remediation guidance, with both short-term fixes and long-term security recommendations. This sample report demonstrates how I communicate technical issues in a way that’s actionable for developers. It highlights the vulnerabilities found, and also the remediation roadmap needed to strengthen security posture.

Secure Code Review & OWASP Top 10 Vulnerability Analysis

I conducted an in-depth secure code review for a web application, identifying vulnerabilities aligned with the OWASP Top 10. The audit focused on issues such as missing rate limiting, XML External Entity (XXE) risks, improper logging practices, and broken authentication flows. Each finding was mapped to risk severity with actionable remediation steps, enabling the client to strengthen code quality, reduce attack surface, and adopt secure coding standards.

Education

  • GGSIPU

    Bachelor of Engineering (BEng) in Computer science

    2011-01-01-2015-01-01

  • Birla Institute of Technology & Science (BITS), Pilani

    Master of Technology (MTech) in Cyber Security Engineering

    2018-01-01-2020-01-01

Languages

  • English
  • Hindi

Personal Accounts