Experienced information security professional - conscientious and thorough, with excellent research and data analysis skills. I have conducted mainly external grey & black box tests with some internal test experience. Conducted automated & manual black and grey box penetration tests of web applications, networks, routers and firewalls on behalf of blue chip companies, public sector clients, financial institutions, organisations, law firms in the UK and USA.
Conducted web services, wireless, social engineering, bespoke applications, information leakage, forensic, ASV (approved scanning vendor) and reverse engineering tests.
I have a very good working knowledge & experience of: automated and manual web application, network, OS, perimeter device and wireless tests. Also web service, social engineering, bespoke applications, information leakage, UNIX and Windows security, SQL injection, forensic, ASV (approved scanning vendor) and reverse engineering tests. Strong awareness of PCI-DSS and ISO27001 and OWASP top threats.
Tools include: Backtrack 5, Burp Pro, Aircrack-NG, Metasploit, Wireshark, Cain & Abel, Nessus, HP Webinspect, SQLmap, Nmap, IDA Pro and SOAPUI.
I have achieved one of the highest penetration certifications in the UK - the Crest Registered Tester exam. I am also CISSP qualified.
I am currently employed by a top penetration tester company but have lots of spare time to complete other projects.
I look forward to hearing from you soon, Abi