senior penetration tester
MR Davidson
Geneva, Ohio
- Conducted security assessments to identify vulnerabilities in client systems.
- Executed penetration tests using industry-standard tools and techniques.
- Collaborated with teams to analyze security policies, enhancing overall security posture through targeted recommendations.
- Reviewed application code for security flaws during development phases.
- Assisted clients in understanding security risks and best practices for protection.
- Maintained knowledge of emerging threats and cybersecurity trends to inform proactive security measures and strategic planning.
- Conducted regular internal audits to identify areas needing improvement.
- Monitored security alerts from intrusion detection, prevention systems for any suspicious activities or events.
- Evaluated existing network infrastructure for weaknesses and developed countermeasures to protect against malicious attacks.
- Identified security flaws in web applications through manual testing techniques like Cross-site Scripting, SQL Injection.
- Provided technical guidance to development teams during the software development life cycle.
- Performed reconnaissance on target systems and networks to gather information about the environment.
- Assisted in developing policies related to data privacy and information security management systems.
- Investigated incidents involving compromised accounts or other security breaches.
- Recommended secure solutions aligned with customer requirements, ensuring compliance with industry standards like PCI DSS and HIPAA to mitigate risks.
- Analyzed application source code for potential vulnerabilities by utilizing static code analysis tools such as Fortify SCA.
