• Offensive Security - Developing application and infrastructure pen-testing methodologies, performing ethical hacking attacks, developing malware and evasion techniques. • Incident Response - Investigating cyber-security incidents and performing malware analysis using static and dynamic techniques.• Consulting - Secure architecture and design of applications, code review, examine application security technologies to find gaps and suggesting suitable security controls.• Business Development - Contacting potential customers and providing an offer for the project including its work plan according to the customer's needs and requirements.

Conducted dozens of web and mobile application penetration tests and forensic investigations for international companies in the financial, government and military sectors. By the end of each project a detailed report containing the findings and recommendations was written.Ethical Hacker / Penetration Tester• Performing manual web application testing in order to find vulnerabilities such as SQL injection, XSS, CSRF, Broken authentication and unique vulnerabilities in the web application.• Looking for vulnerabilities in mobile applications using designated tools and by performing reverse engineering on the applicationComputer Forensic Investigator• Conducted internal forensic investigations in customer’s network environment in order to detect whether malicious code is present • Performed reverse engineering on malicious codes to trace their actions and determine what can be done in order to eliminate them• Provided an opinion as a digital forensics expert witness on trials that took place in courts

Provided technical support for Check Point customers that mostly were international companies in the financial, government and military sectors. Prior to work I did a two months comprehensive course that included training on networking, operating systems (Linux) and how to operate with Check Point products. I received a top of the class diploma. Work included using various tools for diagnosis of the problem such as debugging the firewall core and analyze its output, capturing network sample using Tcpdump application and diagnose it using WireShark network protocol analyzer application.