Most people apply for a job by sending a resume and a cover letter. But 19-year-old Nisarga Adhikary did something completely different. Instead of a resume, he wrote a blog post exposing security flaws in the CBSE’s online marking system. That blog impressed IIT Kanpur so much that the institute offered him a job.
This week, Nisarga was appointed as an Open-Source Intelligence (OSINT) and Threat Intelligence Engineer at IIT Kanpur’s technology innovation hub, C3iHub. IIT Kanpur Director Prof. Manindra Agrawal said he decided to contact the teenager after reading his detailed analysis of the vulnerabilities in the CBSE portal, which was published on May 22.
According to the director, Nisarga is one of the youngest engineers ever hired by IIT Kanpur. Although he has just completed his Class 12 examinations, he will now work with the institute’s cybersecurity team to identify weaknesses in websites and applications and help organizations fix them before hackers can misuse them.
Nisarga’s journey is remarkable. He says he started coding when he was just six or seven years old. By the time he reached Class 6, he had developed a deep interest in cybersecurity and began participating in Capture the Flag (CTF) competitions—ethical hacking challenges where participants legally solve security puzzles and find hidden codes to improve their hacking skills.
Interestingly, no one in his family works in technology. Both of his parents are employed in the finance sector, but they supported his passion for computers and cybersecurity.
Before joining IIT Kanpur, Nisarga had already worked with several start-ups, mostly as a software engineer. Cybersecurity, however, remained his hobby until now. He says this will be his first full-time security-focused role, making it an exciting opportunity to learn and grow.
The blog that caught IIT Kanpur’s attention highlighted serious weaknesses in the CBSE On-Screen Marking (OSM) portal. Nisarga claimed he had reported these vulnerabilities to CERT-In, India’s cybersecurity agency, on February 25. According to him, he discovered five major security flaws, including one that allegedly stored a master password in plain text, allowing users to bypass two-factor authentication. He said only one issue was fixed while the others remained until the portal was eventually taken down.
His findings also became part of a larger controversy surrounding the implementation of CBSE’s online marking system. Reports suggested that the software procurement process faced multiple challenges before the contract was finally awarded.
Despite receiving an offer from one of India’s premier institutions, Nisarga admits the salary is lower than he expected. Having worked on projects for US-based companies, he was used to earning in dollars, which offered a financial advantage due to the exchange rate. Even so, he says the opportunity to work in cybersecurity at IIT Kanpur is more valuable than the pay.
Interestingly, Nisarga is not planning to join college right now. Instead, he wants to focus on building startups and creating products that people actually use. He says he is more interested in practical innovation than traditional academics.
Speaking about the young recruit, IIT Kanpur Director Prof. Manindra Agrawal said that Nisarga is undoubtedly talented but still has much to learn. He believes the institute will provide the right environment for him to develop his skills and build a successful career.
Nisarga’s story is a reminder that talent and passion can sometimes speak louder than degrees or resumes. A blog written to improve cybersecurity became the very job application that changed his life.
Also Read: First Made-in-India C-295 Aircraft Takes Flight: Why It Is A Landmark Moment https://www.vibesofindia.com/first-made-in-india-c-295-aircraft-takes-flight-why-it-is-a-landmark-moment/
