Penetration Tester resume example with 20+ years of experience
Jessica
Claire
resumesample@example.com
(555) 432-1000,
Montgomery Street, San Francisco, CA94105
:
Profile
Cyber securityĀ professionalĀ versed in penetration testing techniques. Ā Brings project management experience and creative problem solving abilities. Works well in a team or independently.
Relevant Skills
OSCP, GSEC, MCSE, CCNA, Network+
Analyze/modify exploit code in Python,C,Perl,Ruby,PHP
KaliĀ Ā
Basic scripting bash & python
AV evasion techniques, persistence, pivoting
Metasploit, Veil-Framework
OpenVAS, Nexpose
Linux, Windows
Hyper-V, VMWare
Burp, Nikto, DirBuster, SQLMap
OWASP Top 10
Privilege escalation (Linux/Windows)
PowerSploit, Nishang, PowerTools
Professional Development
Offensive Security Certified Professional (OSCP)
GIAC Security Essentials Certification (GSEC)
Microsoft Certified Systems Engineer+Internet(MCSE+I)
Offensive Security Penetration Testing with Kali (PWK)
Web Application Penetration Testing eLearnSecurity (WAPTv2)
Cisco Certified Network Associate (CCNA)Ā
Microsoft Certified Systems Engineer (MCSE)Ā
Network+
Microsoft Certified Professional (MCP)
Linux+ and Security+ Courses
Hacking challenges hosted by security community.Ā Ā Ā
High School Graduate
Highlights
Penetration test ofĀ New Zealand college IT assetsĀ as part of establishing compliance with new cyber securityĀ guidelines set by NZQA andĀ NZSIT.Ā ComplianceĀ achieved.
Ā
Penetration test for international trade and development company of targeted servers to identify/validate (and eliminate) unauthorized pathways of access to confidential data.
āā
Successfully ledĀ transition ofĀ Multiple ListingĀ Service
(MLS)Ā databaseĀ system serving 14 countiesĀ to next generationĀ technology
providing service to over 450 offices and 3,000+ real estate
professionals.
āā
Penetration test ofĀ Offensive Security network -Ā used Kali Linux, public/custom exploitsĀ and privilege escalation techniquesĀ to gain administrator, system or root access to 50+ machines with unique vulnerabilities.Ā ExploitedĀ varietyĀ of Unix/Linux boxesĀ (Ubuntu, Fedora, Redhat, SunOS, FreeBSD) and most Windows versions. Written report on vulnerabilities, exploitation and remediation.
Professional Experience
Kpmg - Penetration Tester , MO, 01/2011 - Current
Internal and external penetration testing (plan, discover, attack, report).
Web application testing (manually and with tools such as Burp, Dirbuster, Nikto, SqlMap, Beef-xss, Hydra, Patator).
Conduct vulnerability assessment and review results. Collaborate with client's IT staff to rank vulnerabilities. Validate high risk vulnerabilities on specific targets. Develop remediation action plan.
Effectively communicate with technical/non-technical personnel before, during and after engagement.
Research emerging threats, develop test plan environment, test exploits, tools in lab prior to deployment in production environment.
Ongoing skill set development: cyber security news, tools, vulns, exploits, remediation, blogs, courses.Ā Ā Always on the hunt for custom tools, tweaks, methods to be more effective during engagements.
Deloitte - IT Consultant , KY, 05/2001 - 11/2010
Provided Information Technology consulting forĀ broker officesĀ thatĀ were
outside the scope of GRAR'sĀ level of support (network design,
hardware/software configuration, troubleshoot complex network issues).
Provided Information Technology consulting/administration in New
Zealand for clients.
Understand the objective/requirements of the client, research, identify the best solution after factoring in all the variables, implement and test.
Router, Firewall, Server, client configuration and system hardening.
For national hardware wholesaler, develop central database to integrate with ODBC compliant inventory management and accounting.
Implemented business management software for client to facilitate
tracking tasks, jobs and work orders among departments.Ā Provided basic
training to staff on how to administer, create, track and modify
tickets. software.
Business Development
Founder of The SpeedPost System. From concept to implementation, designed and built innovative structural foundation. Established network of SpeedPost dealers and direct-buy clients.
Designed, developed and sourced the SpeedPost TorqueMaster machine production with national manufacturer.
Managed all aspects of IT (website, dealer/client/inventory database, network, security of intellectual property).
Sold company.
Four Seasons Hotels Inc - Director of Information Technology , HI, 01/2002 - 2004
Provided information technology leadership, direction and support for theĀ organization.
Managed IT department that provided networkĀ and MLS support for over 3,000 members and staff.
Reported onĀ industry trends, budget, website traffic, securityĀ topics at board meetings.Ā
Responsible for the confidentiality,Ā security and integrity of the company'sĀ IT assets.
Evolution of company website (Homesteadnet.com).
Organized focus groups with over 200 real estate professionals toĀ identifyĀ must-haves for next generation MLS database. Sourced,Ā developed and implementedĀ MLS.
Maintain security of the networkĀ and the MLS database.
Deliver and discuss weekly security and operating reports for LAN/WAN environment to Director of IT.
Researched and implemented SUPRA key card system which allowed members to access visitor information at house listings via wireless PDA's.
Webmaster responsibilities for high traffic company website (Homesteadnet.com - 3 millionĀ hits per month).
Perform regularĀ security tests and logĀ review to identify/resolve vulnerabilities.
Designed, planned and implemented migration to new LAN design which includedĀ Windows 2000 Active Directory domain, XP Pro clients, HP-UX servers, Cisco routers, Watchguard firewalls with VPN access.
Any information uploaded, such as a resume, or input by the user is owned solely by the user, not LiveCareer. For further information, please visit our Terms of Use.