Nineteen-year-old cybersecurity researcher Nisarga Adhikary, who recently drew national attention after uncovering vulnerabilities in the Central Board of Secondary Education’s Online Submission of Marks (OSM) portal, has now been appointed as an OSINT and Threat Intelligence Engineer at C3iHub. The development marks a remarkable transition from ethical vulnerability disclosure to a professional role in one of India’s leading cyber-defence research ecosystems, highlighting the growing value of responsible cybersecurity research in the country.

How The CBSE Portal Discovery Brought National Attention

Adhikary came into the spotlight after publishing a detailed blog post in May 2026 explaining multiple security flaws within CBSE’s digital evaluation infrastructure. According to his findings, the OSM portal allegedly lacked proper IP restrictions and even contained what he described as a “master password” capable of granting access to evaluator accounts.

The vulnerabilities reportedly exposed examiner accounts, grading systems, and sensitive student-related information. Following public scrutiny, portions of the portal were temporarily taken offline for maintenance and security updates, while additional access restrictions were introduced.

The episode sparked widespread debate about cybersecurity preparedness in educational institutions and underscored the importance of independent ethical researchers in identifying critical weaknesses before malicious actors exploit them.

IIT Kanpur’s Direct Outreach and Appointment

The significance of Adhikary’s findings soon caught the attention of Manindra Agrawal, who reportedly reached out to him directly after reviewing the disclosures. IIT Kanpur subsequently offered him a contractual role at C3iHub as an Open-Source Intelligence and Threat Intelligence Engineer.

While the exact salary details have not been publicly disclosed, the appointment itself is considered highly significant because Adhikary is among the youngest cybersecurity engineers to be associated with the institute’s advanced cyber-defence initiatives.

His responsibilities at C3iHub will include gathering open-source intelligence, analysing cyber threats, identifying vulnerabilities, and assisting organisations in strengthening digital security systems. Instead of enrolling in a formal academic degree programme immediately, Adhikary will focus on practical cybersecurity work, research, and product development.

The Growing Importance of Threat Intelligence

The appointment also reflects the rapidly increasing importance of threat intelligence in modern cybersecurity frameworks. As governments, companies, and public institutions become more digitally interconnected, cyber threats have evolved from isolated hacking attempts into sophisticated operations capable of disrupting national infrastructure and compromising sensitive data.

Threat intelligence involves monitoring publicly available information, analysing patterns of cyber activity, and proactively identifying risks before attacks occur. Institutions such as C3iHub play a crucial role in helping India build indigenous cybersecurity capabilities and reduce vulnerabilities across digital ecosystems.

Adhikary’s role highlights how modern cybersecurity increasingly values analytical thinking, ethical hacking skills, and real-world problem-solving over conventional academic pathways alone.

A Message for Young Cybersecurity Enthusiasts

This incident sends a powerful message to aspiring cybersecurity researchers across India: responsible disclosure and ethical hacking can create meaningful professional opportunities. Rather than viewing young ethical hackers with suspicion, institutions are increasingly recognising their contributions to digital safety and national cyber resilience.

A New Era for Ethical Cybersecurity Research

Nisarga Adhikary’s journey from identifying flaws in a public digital system to joining a premier cybersecurity research hub symbolises the changing perception of ethical hacking in India. His appointment reflects how responsible security research is gradually being integrated into mainstream national cyber-defence efforts. As India continues expanding its digital infrastructure, empowering young cybersecurity talent may prove essential in building a safer and more resilient technological future.

(With agency inputs)