About Me

I am a Computer Engineer and a Cybersecurity professional with experience in information security, specializing in fintech and remittance services. My primary focus is on offensive security, including vulnerability assessments, penetration testing, threat analysis and Security Audits. I’m passionate about identifying and mitigating security risks to help businesses strengthen their defenses. Beyond my technical work, I am also interested in education and knowledge sharing. I explore opportunities to teach cybersecurity-related subjects like Cyber Law, Web Application Security, Cryptography, IS Audit, Network Security and more. Outside of cybersecurity, I am a foodie and a dedicated Football(Chelsea) fan. Football and food are two of my biggest passions, and I enjoy sharing my experiences with others. I’m always learning, always exploring, and always looking for new challenges in the cybersecurity landscape.

Skills

Experience

Education

  • Web App VAPT
    Securing the web, one vulnerability at a time.
  • Mobile App & API VAPT
    Ensuring your mobile and API environments are safe from threats.
  • IS Audits
    Assessing information security to keep businesses on the right track.
  • EDR/XDR
    Real-time threat detection and response, staying one step ahead.
  • SIEM
    Collecting, analyzing, and responding to security events in real time.
  • Data Analysis & Machine Learning
    Unlocking insights and driving automation through data.
  • Programming & Scripting
    Building solutions and automating tasks with code.
  • 2025 June - Present
    IT Security at NMB Bank Limited
  • 2025 January - Present
    Part-Time Faculty Professor & Ethical Hacking Trainer at Multiple Colleges(KFA, MIT, etc) and Organizations (CFC, PK-IT, etc)
  • 2024 March - 2025 June
    Information Security Engineer at Swift technology Pvt. Ltd(IME Group)
  • 2023 March - 2024 February
    Information Security Officer at Amnil technologies Pvt. Ltd
  • 2022 October - 2023 March
    Quality Assurance Engineer at Amnil technologies Pvt. Ltd
  • 2024 - Present
    MSc in Computer Engineering specialization in Network and Cyber Security at IOE, Pulchowk
  • 2018 - 2023
    Bachelors of Computer Engineering at Institute of Engineering, TU
  • 2016 - 2018
    +2 Science at Prasadi Academy

My Services

Web Application VAPT

Our Web Application Vulnerability Assessment and Penetration Testing (VAPT) service identifies and addresses security risks by scanning for vulnerabilities and simulating real-world attacks. This helps ensure your web applications are secure and protected against evolving threats.

Mobile App and API VAPT

Our Mobile and API VAPT service identifies and addresses security risks by assessing vulnerabilities and performing penetration testing on mobile apps and APIs. This ensures your systems are secure and protected against potential threats.

Network and System Security

Our Network and System Security service safeguards both your network and IT systems from cyber threats. We deploy firewalls, intrusion detection/prevention systems, and security protocols to protect your infrastructure, while also ensuring system hardening and regular monitoring to prevent unauthorized access and potential attacks.

IS (Information Systems) Audit

Our IS (Information Systems) Audit service evaluates your organization’s IT systems, policies, and controls to ensure compliance, security, and efficiency. We identify risks, assess vulnerabilities, and provide recommendations to strengthen your information systems, helping you maintain optimal performance and safeguard against potential threats.

Security Consulting

Our Security Consulting service offers expert guidance to help you identify, assess, evaluate, treat and mitigate security risks. We provide tailored strategies, best practices, and solutions to strengthen your security posture, ensuring your organization is protected from evolving cyber threats and compliant with industry standards.

Security Awareness and Training

Our Security Awareness and Training service helps employees recognize and respond to security threats, like phishing and social engineering, through targeted training. This empowers your team to protect sensitive data and maintain a strong security culture across your organization.

Data Analysis and Machine Learning

Our Data Analysis and Machine Learning service turns your data into actionable insights using advanced analytics and custom models. We help optimize processes and predict trends to support informed decision-making. Unlock the full potential of your data to drive business growth.

Other Services

In addition to our core services, we offer a variety of security products to enhance your protection. These include firewalls, encryption tools, antivirus software, identity and access management solutions, and cloud security solutions. Our products, paired with our expert services, help ensure your organization is safeguarded against evolving cyber threats.

My Work

Web, Mobile and API VAPT

Identifying and securing vulnerabilities in web, mobile, and API applications to protect against cyber threats.

Network and Server Security

Digital forensics is the analysis and preservation of digital data for criminal investigations.

Digital Forensics

Identifying and securing vulnerabilities in web, mobile, and API applications to protect against cyber threats.

Security Audits

Assessing systems, policies, and controls to ensure compliance with industry standards.

Security Consulting, Awareness and Trainings

Providing security guidance and training to manage risks and threats.

Log Monitoring

Continuous monitoring and analysis of security logs using advanced tools to detect and respond to incidents in real-time.

My Blogs and Articles

प्रहरीको वेबसाइट ह्याक गरी संवेदनशील डेटा चोरी, २० लाख नागरिकको कागजात खतरामा

प्रहरीको वेबसाइट ह्याक, २० लाख नागरिकको संवेदनशील डेटा चोरी

Onlinekhabar

ह्याकरको निशानामा सरकारी पोर्टल, जोखिममा डिजिटल सम्पत्ति

ह्याकरको निशानामा सरकारी पोर्टल, जोखिममा डिजिटल सम्पत्ति

Onlinekhabar

इन्जिनियरिङका ७,४०० नेपाली विद्यार्थीको डेटा कसरी पुग्यो ह्याकरको हातमा ?

इन्जिनियरिङका ७,४०० विद्यार्थीको डेटा कसरी पुग्यो ह्याकरको हातमा?

Techpana

सरकारी वेबसाइटहरूमा पुनः साइबर हमला, नेपाल सरकारको सुरक्षा नीति फेल!

सरकारी वेबसाइटहरूमा पुनः हमला, सरकारको सुरक्षा नीति फेल!

Techpana

थाहा नगरपालिकाको वेबसाइट ह्याकरको नियन्त्रणमा!

थाहा नगरपालिकाको वेबसाइट ह्याकरको नियन्त्रणमा!

Techpana

Techpana

See more (Nepali)

Click Here

Medium

See more (English)

Click Here

My Interviews

नागरिकको डिजिटल सम्पत्ति दुरूपयोग हुने जोखिम छ:रिवश न्यौपाने

Interview Source: Onlinekhabar

साइबर सुरक्षासँग सम्बन्धित सरकारी क्षेत्रहरूको अवस्था

Interview Source: BBC Nepal:BFBC Gurkha Network

Contact Me

riwashneupane@gmail.com

+977 9861313477

Download My CV

© 2025 Riwash Neupane. All Rights Reserved. Steal my code, and I’ll send a phishing email to your grandma