Information Security Specialist - 22121 Outstaffing

Gepostet vor über 30 Tagen

Spezialisierung: DevOps

Offen für Angebote

Ukraine

Kiew, Charkiw, Lemberg, Odesa, Dnipro

Mehr als 3 Jahre

Obere Mittelstufe

Optionen in Betracht ziehen

Bürojob in Vollzeit

Teilzeitstelle

Fernarbeit (Vollzeit)

Freiberuflich (einmalige Projekte)

Umzug in eine andere Stadt

übersetzt von Google

Peneration Tester mit mehr als 2 Jahren Erfahrung. Security Engineer mit Kenntnissen in Security DevOps. SecDevOps-Fachkenntnisse. AWS-Kenntnisse. Fließender Einsatz von Schwachstellen-Scannern, Linux- und Windows-Scannern, Tools zur Überwachung des Netzwerkverkehrs, Schutz von Webservern und mobilen Anwendungen. Erfahrung in der Verwendung von Kali Linux zur Bewertung von Webanwendungen mit Tools wie Nikto und NMap.

Programmiersprachen/Technologien

§ Pythonschlange

§ Bash

§Php

§HTML

§ C\C++

§ Technische Dokumentation/Penetrationstestberichte/Vorschläge

RDBMS

§ Mein SQL

§ PostgreSQL

Entwicklungswerkzeuge

§ AWS/Kubernetes

§ Git

Virtualisierungsumgebungen

§ VMware

§ VirtualBox

Betriebssysteme

§ Microsoft Windows 95/ 98/ 2000/ XP/ 2003 Server/ Vista / 7/8/10

§ Kali-Linux

§Ubuntu

§ CentOS

Anwendungs-/Webserver

§ Nginx

§ Kater

§Apache

Methoden

§ OWASP

Testwerkzeuge

§ Nmap

§ Nikto

§ Rülps-Suite

§ OWASP-ZAP

§ Nessus

§ Wireshark

§ Maltago

§ SQLmap

§ Gobuster

§ Metasploit

§ Cloudflare

§ Gleiten

Erfahrung

Web penetration tester

Estonian online shop

Juni 2022 - 2022

Simulation of cyberattack on clients website. Vulnerability scanning and prevention from future attacts.

§ Analyze the system and prepare scope of work

§ Testing the security of the website

§ Dynamic and Static vulnerability scanning

§ Exploitation of found vulnerabilities, fuzzing.

§ Prepare a detailed report on found vulnerabilities including executive summary, risk level of each vulnerability and recommendations on how to ﬁx them.

Industry-standard penetration testing tools and frameworks, including Nmap, Sniper, Nessus, Maltego, Hydra, the Metasploit Framework, Searchsploit, Gobuster, Wireshark, Burp Suite, Tcpdump and Sqlmap

Security Engineer

Polish company

Januar 2022

Testing the security posture of the organization with a simulated attack on the website.

§ Analyze the system and prepare the scope of work

§ Identification of site`s loopholes

§ Information gathering, searching for fingerprints in the backend of the website

§ Manual security scanning

§ Communication with the client's security engineer

§ Creating a final report with the summary, risk level of each, vulnerability and recommendations on how to ﬁx them included

The Harvester, Nikto, Nmap, Burp Suite, Sniper, Nessus, Maltego, Hydra, Metasploit, Searchsploit, Gobuster, Wireshark, , Tcpdump and Sqlmap

Penetration tester

NDA

September 2021 - 2021

Perform penetration tests on the systems
Search for weaknesses in web applications
Determine the current vulnerabilities that would be easily exploitable
Review and provide feedback for information security fixes
Creating the complete in-depth report that summarises the carried out activities, the probable threats identified, the risk score,

Nmap, Sniper, Nessus, Maltego, Hydra, the Metasploit Framework, Searchsploit, Dirb, Gobuster, Wireshark, Burp Suite, Tcpdump and Sqlmap. AWS infrastructure deployment.

ÄhnlicheKandidaten