Penetration Tester Resume
Summary : Assisting the Army on a mission to the National Training Center (NCT) at Fort Irwin California in September to perform red team penetration testing on their network to train them for real-world scenarios, and also Assisting in teaching an exploited class to members of the Army and Army civilians.
Skills : Penetration Testing, Computer Forensics Incident Response.
Description :
- Experienced in an information security role, preferably in vulnerability management.
- Experienced with visualization technologies (VMWare, Hyper-V).
- Worked knowledge of security regulations such as PCI-DSS, HIPAA, NIST, SOC2.
- Performed application and infrastructure penetration tests, as well as physical security review and social engineering tests for our global clients.
- Reviewed and defined requirements for information security solutions.
- Provided KT to Development team for better understanding of Vulnerabilities.
- Scheduled meeting with different applications SVP for understanding future pipelines for applications.
Experience
10+ Years
Level
Senior
Education
MS
Penetration Tester Resume
Summary : Penetration Tester professional with 7years of experience in Information Security Experience in implementing security in every phase of SDLC. Have hands-on experience in application security, vulnerability assessments, and OWASP along with different security testing tools. A Certified Ethical Hacker. Experience as an Information Security Analyst, involved in OWASP Top 10 based Vulnerability Assessment of various internet-facing point of sale web applications and Web services.
Skills : Burp Suite Pro, AppScan.
Description :
- Performed security research, analysis and design for all client computing systems and the network infrastructure.
- Coordinated with dev team to ensure closure of reported vulnerabilities by explaining the ease of exploitation and the impact of the issue.
- Security tested of APIs using SOAP UI.
- Experienced in reverse Engineering of Native Mobile Application.
- Explored local Storage and hard coded information and file structure of Native Application.
- Experienced in using Kali Linux to do web application assessment with tools like Dirbuster, Nikto, and NMap.
- Assisted customer in understanding risk and threat level associated with vulnerability so that customer may or may not accept risk with respect to business criticality Identifying the critical, High, Medium, Low vulnerabilities in the applications based on OWASP Top 10 and SANS 25 and prioritizing them based on the criticality.
Experience
7-10 Years
Level
Management
Education
MS In Information Assuarnce
Penetration Tester Resume
Headline : Penetration Tester professional with 6years of experience in Information Security Experience in implementing security in every phase of SDLC. Have hands-on experience in application security, vulnerability assessments, and OWASP along with different security testing tools. A Certified Ethical Hacker. Experience as an Information Security Analyst, involved in OWASP Top 10 based Vulnerability Assessment of various internet-facing point of sale web applications and Web services.
Skills : Kali Linux, Metasploit, Java, Exploit Development, OWASP, SQLmap, W3af, Social Engineering Toolkit, Database Management, Windows.
Description :
- Assisted in review of business solution architectures from security point of view which helps avoiding security related issues/threats at the early stage of project Ensuring compliance with legal and regulatory requirements.
- Extensive Interacted with Onsite Coordinator in understanding the business issues, requirements, doing exhaustive analysis and providing end-to-end solutions.
- Conducted Web Application Vulnerability Assessment & Threat Modelling, Gap Analysis, secure code review on the applications w.r.t guidelines provided by Cisco Doing multiple level of testing before production to ensure smooth deployment cycle.
- Created of Generic Scripts for testing and reusability.
- Established vulnerability assessment practice, proactively ensuring safety of client-facing applications and minimizing client audit findings.
- Performed security analysis and identifying possible vulnerabilities in the key derivation function, create Vulnerability Assessment report detailing exposures that were identified, rate the severity of the system & suggestions to mitigate any exposures & testing known vulnerabilities.
- Experienced in DDos, Sql Injection protection, XSS protection, script injection and major hacking protection techniques To address and integrate Security in SDLC by following techniques like Threat Modeling, Risk Management, Logging, Penetration Testing, etc.
Experience
5-7 Years
Level
Executive
Education
MS In Information Assuarnce
Penetration Tester Resume
Headline : A security professional over 6 years of experience in various roles such as Network Engineer, Security Analyst and Penetration tester. Experienced in both offensive and defensive network and web application security to maintain proper security posture, reducing attack surface. Hands on experience in finding out vulnerabilities in a network and web application using automatic and manual testing using Nessus, Nmap, Cenzic, Veracode.
Skills : Snort, Backtrack, Kali, PGP, Metasploit, Active Directory.
Description :
- Performed onsite and remote security consulting including application testing, social engineering, wireless assessment and Security scan, analysis, policies, and audit.
- Strong Hands-on Experienced in Web Application penetration testing, Network Infrastructure Penetration Testing.
- Executed daily vulnerability assessments, threat assessment, mitigation, and reporting activities in order to safeguard information and ensure protection has been put in place on the systems.
- Hands-on experienced in Performing Ethical Hacking using commercial and non-commercial applications.
- Performed as an Information Security Analyst and involved in OWASP Top 10 Vulnerability Assessment of various internet-facing point of sale web applications and Web services.
- Conducted Dynamic and Static Application Security Testing (SAST & DAST).
- Provided fixes & filtering false findings for the vulnerabilities reported in the scan reports.
Experience
5-7 Years
Level
Junior
Education
MS
Penetration Tester Resume
Headline : To establish a long-term career in a company where I may utilize my Penetration Tester professional skills and knowledge to be an effective Associate Program Manager and inspiration to those around me.
Skills : Cyber Security, Active Directory.
Description :
- Worked in a collaborative team of both networking and security teams.
- Scheduled a Penetration Testing Plan throughout the organization and completed all the tasks in the given time frame.
- Performed pen tests over different business applications and network devices of the organization.
- Created detailed written reports on the assessment findings and recommendations.
- Conducted penetration tests on systems and applications using automated and manual techniques with tools such as Core Impact, Metasploit, Burpsuite, Kali Linux, CheckMarks, NetStumbler, and many other open-source tools as needed.
- Worked with support teams to address findings as a result of the tests.
- Performed vulnerability scanning using Nessus Security Center and maintained clear documentation for every report that is generated.
Experience
5-7 Years
Level
Executive
Education
MS In Information Assurance
Penetration Tester Resume
Objective : A Penetration Tester with experience of 6+ years. Ability to read and analyze code. Able to configure and connect network switches and routers. Proficient in Microsoft Office suite. Provide high-quality customer service in a professional, service-oriented manner using skills in active listening and problem-solving.
Skills : Microsoft Office, PHP, HTML, MySQL, MongoDB, Java, CSS, Ubuntu Server 14.04.4 LTS, Nmap, Wireshark, Metasploit, Vmware.
Description :
- Identified hidden files using dirbuster.
- Worked on DOM-based XSS manually.
- Worked on Directory Traversal attacks manually Implemented Agile Methodology to follow the workflow process.
- Worked on Middleware technologies to ensure application safety(TOMCAT).
- Verified the existing controls for least privilege, separation of duties, and job rotation.
- Worked on billion laugh attacks manually by intercepting burp suit.
- Performed vulnerability analysis over wired and wireless networks.
Experience
2-5 Years
Level
Executive
Education
Diploma
Penetration Tester Resume
Headline : A Penetration Tester with experience of 7 years in penetration testing on various applications in different domains. Involved in Software Development Life Cycle (SDLC) to ensure security controls are in place. Outstanding leadership abilities, marked by the ability to coordinate and direct all phases of product testing while managing, motivating, and leading project teams.
Skills : Nessus, KaliLinux, Nexpose, CyberArk, Venafi, AppDetective, Linux, Windows, Cloud Security, Compliance, Certification and Accreditation, Archer, Fortify, Crypto, IDAM, PKI, Databases.
Description :
- Responsible for the organization's service provider infrastructure security, and primarily responsible for Advanced Persistent Threats (APT).
- Investigated and resolved any security issues found in the infrastructure according to the security standards and procedures.
- Actively searched for potential security issues and security gaps that are beyond the ability of detection by any security scanner tool.
- Initiated and developed new mechanisms to addresses unidentified security holes & challenges.
- Designed a methodology and a procedure for active system & web-app security assessments on the company's infrastructure, to be performed proactively, scheduled, and rapidly on request.
- Identified the critical, High, Medium, Low vulnerabilities in the applications based on OWASP Top 10 and SANS 25 and prioritizing them based on the criticality.
- Added new vulnerabilities to the Vulnerability Database for various platforms with proper exploits.
Experience
5-7 Years
Level
Executive
Education
MS
Penetration Tester Resume
Headline : Professional with 6+ years of progressive experience in Information Technology with extensive experience in Information Security, Application Security, Software Security, Enterprise Vulnerability Management, penetration testing, and generating reports using tools. Domain expertise in Telecom, Banking and Financial Services, Health Care.
Skills : CISSP, OSCP, CEH, GPEN, GCWN.
Description :
- Performed vulnerability assessments including physical, social engineering, application, and network exploitation.
- Evaluated and leverages automated tools that perform security assessments.
- Evaluated the security posture of third-party integrations and partnerships.
- Assisted with identifying technical areas of risk within the business units.
- Actively monitored systems and networks for intrusions.
- Identified security flaws and vulnerabilities.
- Acted as a liaison with other cyber threat analysis entities.
Experience
5-7 Years
Level
Executive
Education
MS
Penetration Tester Resume
Headline : Seeking a Penetration Tester profession with an outstanding career opportunity that will offer a rewarding work environment along with a winning team that will fully utilize management skills.
Skills : Network Security, Multitasking.
Description :
- Conducted security assessment of PKI Enabled Applications.
- Skilled using Burp Suite, Acunetix Automatic Scanner, NMAP for web application penetration tests.
- Conducted application penetration testing of 90+ business applications Acquainted with various approaches to Grey & Black box security testing Proficient in understanding application-level vulnerabilities like XSS, SQL Injection, CSRF, authentication bypass, weak cryptography, authentication flaws, etc.
- Actively searched for potential security issues and security gaps that are beyond the ability of detection by any security scanner tool.
- Initiated and developed new mechanisms to addresses unidentified security holes & challenges.
- Configured and management of Cisco IDS, Checkpoint firewall, Snort.
- Performed controlled vulnerability penetration testing.
Experience
5-7 Years
Level
Executive
Education
BS
Penetration Tester Resume
Headline : Providing the development team with detailed reports based on the findings obtained from the manual and automated testing methodologies, also provide the necessary remediation for individual findings.
Skills : Testing Skills, Networking.
Description :
- Performed manual application security testing on the everyday changes carried out in the application.
- Performed Automation scanning and analysis on the applications on a monthly basis.
- Uncovered high vulnerabilities at the infrastructure level for internet-facing websites.
- Documented information security guidance in step-by-step operational procedures.
- Performed static code reviews with the help of automation tools.
- Network scanned using tools like NMap and Nessus.
- Initiative to streamline the access control mechanism of various applications.
Experience
5-7 Years
Level
Executive
Education
MS