I’m an Ethical Hacker and Information Cyber Security Consultant and Analyst with over 13 years of experience in Information Technology where more than half of it was dedicated to cyber security. I’ve worked in several business as e.g. financial / banking, governmental and software factories.
As a person, my skills include (but are not limited to) being a very fast learner, flexible, creative, dynamic and extremely autodidact / self-taugh. I have a strong sense of ownership and I’m a heavily challenge oriented person.
As a professional I have a very good technical knowledge, great leadership, management, customer handling and communication skills, and strong background as a professional and academic in Computer Science area.
My knowledge base includes (but are not limited to):
+ Over 8 years of experience working within Cyber Security identifying system vulnerabilities and cyber-attacks scenarios on Web applications and its whole architecture, elaborating security controls to the raised threats in order to mitigate the probability of being exploited and security risk analysis, estimating the threats’ impacts and its criticality level;
+ Project management, especially on requirement gathering, time, scope and communication management, in addition to elaborate documentation as well as process definition;
Security:
+ Penetration Testing
+ Security Testing
+ Gap Analysis
+ Risk Assessment
+ Threat Modeling
+ Vulnerability Assessment
+ Risk Management
+ Internet Technologies & Protocols
+ Network Protocols and Services
+ ISO 27001
+ Security Good Practices
+ OWASP Methodology
+ OWASP TOP 10
+ SANS CWE / TOP 25
+ Tenable Nessus
+ IBM Rational AppScan / Acunetix
+ Burp Suite / ZAP / Fiddler
+ Kali Linux and BackTrack tools
+ Firewalls and WAFs
+ Web Application Security Test
+ Mobile Application Security Test
+ Programming Skills
+ C / C++
+ JavaScript
+ PHP
+ Visual Basic