We are building a pen tester copilot. Penetration Testing: Conducting comprehensive manual penetration tests to identify vulnerabilities in applications and networks.

Architected, designed, and coded the ThreatX WAF sensor. Architected highly scalable, global, multi-cloud (AWS, GCP, IBM) environment comprising ThreatX Web Application and API Protection (WAAP) platform. Authored multiple microservices in Rust and Python. Established and ran "follow the sun" Security Operations Center (SOC) as a service offering. Spearheaded Penetration testing professional services, specializing in testing of custom web applications and APIs. Implemented and maintained SOC2 Type II compliance.

Spearheaded Telespace's journey to compliance with PCI and HIPAA standards within six-month timeframe. As both Technical Architect and Solutions Architect, orchestrated the planning, design, and oversight of security technology deployment to proactively address and mitigate security challenges inherent in Telespace's offerings. Formulated and published the core Information Security Policy, along with supplementary policies and procedures.

As ESA operated between the information security committee, information security management team and IT Operations Security.In addition to Enterprise Architect role, often acted as Technical Architect and Solutions Architect - planning, designing and supervising deployment of new security technologies.In cooperation with information management team and IT Operations was one of the drivers in developing centrally hosted global set of policies, guidelines and procedures based on International security frameworks and compliance requirements.Maintained Security Reference Architecture and Architectural Building Blocks.Seeked out new security technologies in order to help secure the enterprise and reduce the risk to the organization. When needed I served as a bridge between technical groups and upper management.

Responsibilities included:Consulting in penetration testing.Consulting in computer forensics.Consulting in Malware dissection.Consulting in gap analysis and risk assessmentsCreation of the company’s security policies, standards and proceduresConsulting in secure network designConsulting in complex firewall and IPS system deploymentsDesign and deployment of NetSieben’s core network architecture.Consulting to customers on policies, network design, firewall and intrusion detection technologies.Architecting of company’s Managed Firewall and Managed IDS architecture.Architecting of NetSieben’s multi vendor firewall management softwareAuthor of NetSieben SSH C++ Library distributed under dual license model.

Responsibilities included but not limited to:Consulting in penetration testing.Consulting in computer forensics.Consulting in Malware dissection.Consulting in gap analysis and risk assessments.Designing the company’s network infrastructure.Deployment and maintenance of firewalls and other security systems.Development of the company’s security policies and standards.Development of Managed Security Offering.DigiMerc was contracted by NetScreen to provide security consulting to their clients including:Designing secure redundant networks.Deploying NetScreen firewalls in complex Enterprise environments.Installing Global Pro firewall management software.Troubleshooting firewall and other security issues.Training customers in NetScreen products.

Nupremis was an International ASP company, with data centers in USA, England, Germany and Hungary. As a lead security engineer my responsibilities included:Secure network design.Deployment of variety of NetScreen firewalls in full mesh redundant environments.Maintenance of security infrastructure.Deployment of RSA SecurID two-factor authentication.Setting up VPN tunnels between remote sites.Deployment and maintenance of Websense web filtering software.Enforcement of company’s security standards.