Red Team Information Security Analyst/Research Analyst Resume

SUMMARY

I currently possess several years of hands on working experience in various areas within the field of Information Technology, as well as years of IT oriented education with a concentration in Digital Science.
I have obtained both a high education certification as well as a professional certification specific to information security.
I have experience in both red team and blue team tasks.
I have mastered web application and mobile device security and have become overwhelmingly familiar with the HTTP 1.1 protocol.

TECHNICAL SKILLS

Penetration Testing: Burp Suite, OWASP - Zap, Trustwave Enterprise App Scanner, Metasploit, PowerShell Empire, Arachni, Nikto, SQLMap, Commix, NMAP and more.

Vulnerability Scanning and Analysis: Tenable Nessus and Security Center, OpenVAS

Logging and SIEM Solutions: Splunk, McAfee ESM and NSM, ePolicy Orchestrator 5.3, StealthWatch, OSSEC

Forensic Platforms and Tool Kits: Caine, FTK, EnCase

PROFESSIONAL EXPERIENCE

Confidential

Founder

Responsibilities:

Provide freelance web application penetration testing and security consulting services.
Work on project related tasks for a development, that has the ultimate goal of automating the remediation of system level vulnerabilities.

Confidential

Red Team Information Security Analyst/Research Analyst

Responsibilities:

Performed web application penetration testing for clients within a wide array of industries, supporting a variety of different web technologies.
Worked with clients to achieve their remediation goals.
Reviewed and wrote reports to ensure the customer received the best deliverable possible as the result of the client engagement.
Participated in thought leadership activities such as creating technical content for the company site and presenting at events.
Met with clients and internal personnel to ensure the highest level of success was achieved during client engagements.
Met and exceeded customer satisfaction goals as the result of the work I performed.

Confidential, Twinsburg, OH

Information Security Analyst

Responsibilities:

Performed penetration testing on corporate web applications.
Ran dynamic scans against target applications using industry standard software.
Scanned HTTP Requests and analyzed responses to identify deviations in application behavior using Burp Suite and OWASP-Zap.
Created reports on vulnerabilities identified during testing procedures.
Met with developers to gain a better understanding of target applications, as well as communicate vulnerability findings and outline target remediation dates.
Met with project teams to ensure security was a key component within development efforts.
Evaluated industry accepted practices and procedures associated with the integration of security within each phase of the corporate SDLC.
Performed vulnerability scans against hosts within the company’s network infrastructure.
Performed network monitoring and identified anomalies by leveraging the organizations SIEM and logging solutions.
Tracked and triaged threats and attacks on corporate assets.
Reviewed firewall and B2B VPN modification requests, evaluating risk associated with production implementation.
Identified and responded to phishing campaigns.

Confidential

IT Technician

Responsibilities:

Acted as a liaison between the organization and third party technical vendors.
Managed Active Directory and GPOs.
Supervised lower level staff members.
Worked on the development and implementation of a disaster recovery plan.

We provide IT Staff Augmentation Services!

We'd love your feedback!

Resume Categories

Client Services

Job Seekers

Visa Sponsorship