• Conducted meticulous vulnerability assessments on web and mobile applications, including source code analysis, binary app analysis.• Identified and remediated numerous critical vulnerabilities within customers' applications through thorough investigation and analysis.• Produced comprehensive reports detailing the vulnerabilities discovered and recommended remediation strategies.• Engaged in research activities to stay updated with the latest security trends, techniques, and tools, ensuring a proactive approach to security assessments.• Automated security processes within CI/CD pipelines and integrated secure software development lifecycle (SSDLC) practices.• Developed and supported security champions within the organization to enhance security awareness.• Conducted GRC (Governance, Risk, and Compliance) security risk assessments in collaboration withtechnical unit leads and top management.• Implemented web application firewall (WAF) coverage across multiple domains for enhanced security.• Developed and deployed an Application Security course for developers in a PaaS environment.

• Developed and implemented procedures and methodologies for conducting ongoing security assessments of the environment.• Have thoroughly examined the outcomes of security tests, drawn appropriate conclusions, and formulated specialized testing approaches based on the findings.• Enhanced the efficiency and functionality of Ruby and Python scripts utilized by the department.

• Developed articles and screencasts on attacks on wireless networks and ethical hacking.• Explained the principles underlying wireless networks.• Provided guidance on how to conduct attacks on wireless networks, offering understanding on the appropriate application of these techniques.• Elaborated on the technique of decrypting intercepted handshakes.• Discussed the process of analyzing wireless traffic.

• Conducted comprehensive penetration tests on web applications, mobile applications, and infrastructure, encompassing critical infrastructure facilities.• Offered expert technical consultations on Security Tools and Technical Controls.• Gained privileged access to multiple domain controllers across various projects.• Delivered lectures at the university on behalf of the company, sharing insights and knowledge in the field.• Enhanced the efficiency and functionality of ruby and python scripts utilized by the department.• Conducted reconnaissance through various methods, including passive and active fuzzing.• Utilized OSINT techniques for gathering information.• Collected relevant information about target websites.• Determined and assessed vulnerabilities using Vulnerability Assessment and Fuzzing (VAF) techniques and operating systems (OS) in use.• Explored avenues for social engineering attacks by identifying corporate email addresses.• Exploited discovered vulnerabilities to assess their potential impact.• Developed a python script capable of scanning over 8.5 million devices, enabling the identification of vulnerable systems and facilitating the acquisition of new customers for the company.

Taught Olympiad programming in Python to children 12-old.Ended because of Covid Restrictions.