Vulnerability Analyst Ii
CurrentAs a member of the global Enterprise Security Team, I lead and execute comprehensive security assessments, focusing on vulnerability scans, penetration testing, and risk evaluation across Mastercard’s diverse ecosystem, including Kubernetes, AWS, Azure AD, On-Prem, cloud, and mainframe environments. My mission is to uncover security weaknesses, regardless of the complexity or scale.• Advanced Network Penetration Testing: I oversee all stages of penetration testing, from initial scoping and pre-engagement discussions to the detailed reporting and remediation recommendations. By exploiting vulnerabilities, I provide a realistic assessment of potential business risks, ensuring comprehensive security coverage.• Human Vulnerability Testing: Understanding that security involves both technology and people, I regularly design and execute social engineering scenarios to assess human vulnerabilities within the organization, further fortifying our overall security posture.• Communication, Reporting and Remediation Recommendations: Beyond identifying vulnerabilities, I deliver clear, actionable technical reports, complete with proofs of concept, risk ratings, and prioritized remediation strategies to ensure swift and effective resolution of security issues.• Record Management: I manage penetration test records using Archer, ensuring efficient organization and swift accessibility for PCI audits or review purposes.• Cross-Collaborative, Self-Initiated Project: I conducted comprehensive Identity and Access Management (IAM) security controls evaluation of conditional access policies in a test environment mirroring production for Azure, ensuring proper functionality across various environments and access control conditions.