Canada
- Researched newly disclosed CVEs by reproducing vulnerable code paths, analyzing root causes, and documenting exploitability conditions and detection opportunities. - Authored technical vulnerability reports covering root cause analysis, attack surface, exploitation workflow, affected versions, indicators of compromise, and mitigation guidance for security engineering and threat research teams. - Developed and validated Snort IDS signatures for SQL injection, buffer overflow, and directory traversal exploitation patterns, using hands-on vulnerability reproduction to reduce false positives and improve detection accuracy.
- Led tutorials and hands-on labs in computer and network security, covering cryptography, network attacks, stack-based buffer overflows, web vulnerabilities, and secure coding practices. - Supported student learning in offensive and defensive security topics including XSS, SQL injection, CSRF, memory corruption, and authentication weaknesses. - Assisted with grading, technical explanations, lab troubleshooting, and exam preparation for security concepts involving exploitation, threat modeling, and applied network defense.
- Performed manual penetration testing of internal and external web applications using the OWASP Web Security Testing Guide, identifying critical XSS and SQL injection vulnerabilities. - Integrated authenticated OWASP ZAP dynamic application security testing into GitLab CI/CD, automatically routing findings into a bug tracker with severity, criticality, and risk-based prioritization; increased security flaw detection by 40%. - Built a standardized SIEM alert triage and filtering workflow, enabling operational monitoring for a previously unmonitored security deployment. - Authored endpoint detection and response policies to strengthen workstation security, reduce endpoint risk, and improve organizational hardening standards. - Developed and delivered OWASP Top 10 security training for web developers, translating penetration testing findings into practical secure coding guidance. - Briefed the VP of Technology on application security risk posture by synthesizing manual penetration testing results, automated DAST findings, and remediation priorities. - Owned incident response for a cryptomining malware compromise on an AWS-hosted server, containing the affected instance, restoring from a clean snapshot, and performing root cause analysis to identify likely intrusion path and hardening actions.