United States
Security minded, solutions driven professional, with a background in technology. Six years of practical experience in performing manual vulnerability assessments against both browser-based and mobile web applications. I have since transitioned to a more customer facing role within Solutions Engineering. I work with customers to ensure that they are able to understand our vision of the product, and work internally to make sure that we are able to deliver on that vision.
Supported the Corporate Sales team on demonstrating the value of WhiteHat's DAST, SAST, SCA, and MAST (mobile) product lines and ensuring the technical win during the sales process. Aided Customer Success teams in ensuring smooth transfer of accounts from sales to onboarding/account teams. Evangelized the WhiteHat's Mobile product internally and externally and continually helped in training and awareness of the product. Hosted company events within a committee aimed at improving the work culture at WhiteHat.
Responsible for performing Business Logic Assessments on mobile applications across iOS and Android. This includes testing mobile apps against the OWASP Mobile Top 10, such as Improper Platform Usage, Insecure Data storage, Insecure Communication, Insecure Authorization, and Extraneous Functionality. Familiar with using mobile testing tools such as Android Debug Tool, apktool, dex2jar, Santouku, iOS Jailbreaking tools, Keychain Dumper, Class Dump Z, and Hopper. Accomplishments ● Nominated for the WhiteHat Superhero award for organizing processes and formalizing documentation to improve inter-departmental efficiency ● Created an internal iOS ‘tick-tock’ Cycle to allow the Mobile team to always have the latest jailbreak available for testing
Well practiced in testing & showcasing application security vulnerabilities, including the OWASP top 10 such as cross-site scripting (XSS), Cross-Site Request Forgery (CSRF), SQL injection, and insufficient Authorization/Authentication. Responsible for Level 2 Escalations in responding to missed vulnerability reports, answering questions regarding new vulnerability tests, and ensuring timely & proactive scan coverage. Familiar with using applications such as Burp Suite, Virtualbox, Jira, Salesforce, & Splunk. Accomplishments ● Discovered a need and took initiative to create documentation mapping Whitehat vulnerabilities classes to PCI compliance and OWASP Top 10 2013 ● Streamlined internal procedures to create a much more efficient workflow ● Submitted the most JIRA tickets regarding bugs & enhancement requests ● Assisted the Sentinel UI team for Sentinel UI v3 design
Responsible for running six production machines simultaneously in order to produce the highest efficiency output. Trained new-hires in learning how to operate the machines. Knowledgeable with FAB clean room safety guidelines.
Maintained a professional demeanor inside the Casino Cardroom. Personally trained & certified by the casino to host California Cardroom tables for Blackjack, Baccarat, Paigow (Double Hand) Poker, Three Card Poker, and Ultimate Texas Holdem. Ensured that the experience was positive, comfortable and entertaining for our customers.
Provided assistance for faculty and students in fixing various computer issues including virus removal, reformatting, re-imaging and performing hardware upgrades. Familiar with all operating systems, including OSX, Windows XP & Vista. Additionally helped customers with router/networking problems.