IT Security Consultant | Ethical Hacker | Pentester
Aktualisiert am 04.09.2023
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 04.09.2023
Verfügbar zu: 80%
davon vor Ort: 50%
IT-Security
Penetrationstest
Secure coding
Social Hacking
Cyber Security
Pentest
Phishing
Awareness
Training
Schulung
Trainer
IT Sicherheit
Deutsch
Muttersprache
Englisch
Fortgeschritten

Einsatzorte

Karlsruhe (Baden) (+50km)
Deutschland
möglich

Projekte

1 Jahr 3 Monate
2022-06 - heute

IT security assessments and consulting

IT Security Consultant
IT Security Consultant
  • Managing and carrying out penetration tests (short pentest)
    • Web applications
    • Infrastructure
    • Mobile Apps
  • Consulting for IT Security
  • Source Code Reviews
  • Vulnerability Scans
  • Social Hacking Campaigns, e.g. phishing exercises
  • Red Teaming
on Request
1 Monat
2022-07 - 2022-07

Penetration test of a web application

Penetration tester Penetrationstest IT-Security Beratung
Penetration tester
  • Planning the scope of the penetration test with the client
  • Conducting the audit
  • Documentation of findings according to CVSS v3.1 and possible mitigations
  • Presentation of the results and handover of the final report


PHP Linux Angular
Penetrationstest IT-Security Beratung
Remote
2 Jahre 5 Monate
2020-01 - 2022-05

Project management for penetration tests

Information Security Consultant & Project Manager
Information Security Consultant & Project Manager
  • Project manager for penetration tests and social engineering engagements 
  • Penetration tester with focus on (web) applications 
  • Source code reviews 
  • Trainer for IT security assessments 
  • Social engineering engagements 
  • Consulting for IT security topics
aramido GmbH, Germany
2 Jahre 6 Monate
2017-05 - 2019-10

PAL SAaaS research project and publication in the area of homomorphic encryption (see below)

Academic staff
Academic staff
  • Supervisor for various courses (security in web applications, security in heterogeneous systems and network security) 
  • Developer and supervisor for a hands-on exercise of the master's program Enterprise and IT Security
  • Responsible for the internal Capture the Flag team and associated workshops 
  • Supervisor of the IT security course of startING (orientation semester for school-leavers) 
University of Applied Sciences Offenburg, Germany
4 Monate
2016-10 - 2017-01

Tutor for programming

Tutor
Tutor
University of Applied Sciences Offenburg, Germany
6 Monate
2015-09 - 2016-02

Internship IT Security

  • Security assessments of applications (web, Java fat-client) 
  • Malware analysis 
  • Development of internal tools 
  • Creation of training material 
cirosec GmbH in Heilbronn, Germany
10 Monate
2014-10 - 2015-07

Implementation of customer satisfaction survey as a web application (Java)

Working student
Working student
Burda Digital Systems GmbH in Offenburg, Germany

Aus- und Weiterbildung

1 Monat
2023-08 - 2023-08

OffSec Web Assessor (OSWA)

OffSec
OffSec

Web Application Security Certification

  • Perform security assessments of web applications
  • Identify & exploit common web application vulnerabilities
  • Assist software engineers securing their applications with detailed and easy to understand recommendations


https://www.credential.net/3d312540-54eb-4efc-8158-6389c8c2e875

2 Jahre 3 Monate
2017-10 - 2019-12

Master's program Enterprise and IT Security

University of Applied Sciences Offenburg
University of Applied Sciences Offenburg
 Thesis: on Request  
3 Jahre 7 Monate
2013-10 - 2017-04

Bachelor's program Unternehmens- und IT-Sicherheit

University of Applied Sciences Offenburg
University of Applied Sciences Offenburg
Thesis: on Request

Kompetenzen

Top-Skills

IT-Security Penetrationstest Secure coding Social Hacking Cyber Security Pentest Phishing Awareness Training Schulung Trainer IT Sicherheit

Produkte / Standards / Erfahrungen / Methoden

IT Security
Experte
Web Application Assessments
Experte
Source Code Reviews
Experte
Mobile Security
Fortgeschritten
Vulnerability Scans
Experte
Social Hacking Campaigns
Experte
Burp Suite Pro
Experte
Reverse Engineering
Basics
Kali Linux
Experte
Metasploit
Experte
Docker
Fortgeschritten
Services
  • Managing and carrying out penetration tests (pentest, pen-test)
    • Web applications
    • Infrastructure
    • Mobile Apps
  • Consulting for IT Security
  • Source Code Reviews
  • Vulnerability Scans
  • Social Hacking Campaigns, e.g. phishing exercises
  • Red Teaming


Web application assessments

  • OWASP (API Security) Top 10 
  • Good handling with Burp Suite Pro and other tools 
  • OSINT 


Others 

  • Mobile Security 
  • Reverse Engineering (Android, x86/x64) 
  • Networks 
  • Linux / Windows / macOS 

Programmiersprachen

Python
Experte
PHP
Fortgeschritten
JavaScript
Fortgeschritten
Java
Fortgeschritten
Golang
Fortgeschritten
C
Basics
Bash
Basics

Vertrauen Sie auf GULP

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das GULP Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.