3W Security | Cybersecurity Developer | Aug 2023 - Present

Actively Working on developing a tool called shadowkat  with 20+ years of experienced professionals at 3w Security contributing to the creation of a pioneering cybersecurity tool designed to oversee digital asset management, ensure continuous monitoring, and bolster the security of corporate assets. My role involves implementing comprehensive vulnerability scanning through open-source tools like Nmap Automator and AutoRecon, as well as integrating commercial solutions such as Qualys and Tenable products. Additionally, I am working on exploit detection, API security enhancements, and cloud connectors to facilitate the extraction and updating of critical data, including DNS information, URLs, open ports, device types, and metadata.

Registrar Graduate Assistant | University Of Tampa | Nov 2022 - Present

Assisted students & faculty users with technical and non-technical issues.

Provided administrative support, including phone inquiries, email correspondence, assisting students in grasping academic policies and procedures, and maintaining the security of confidential student records.

These responsibilities equipped me with strong collaboration skills, enabling me to efficiently convey pertinent information within the office team, ultimately contributing to swift resolution of client issues—a skill set that is invaluable in the field of cybersecurity, where clear and timely communication is essential for addressing security threats and vulnerabilities effectively.

During my tenure as a Registrar Graduate Assistant, I took on the challenge of balancing my work responsibilities with personal and professional growth. While diligently contributing to various projects, I pursued a master's degree and actively worked towards earning certifications, notably achieving both the CEH Master and OSCP certifications. 

Penetration Tester | Cybriq | June 2020 - July 2022

Conducted comprehensive vulnerability assessments using industry-standard tools like Nessus, Acunetix and OpenVAS.

Conducted in-depth web application penetration testing using tools like Burp Suite and OWASP ZAP.

Identified and exploited vulnerabilities in web applications, including critical issues like remote code execution, sql injection and privilege escalation.

Performed network penetration tests to evaluate the security of clients' internal and external network infrastructure.

Collaborated with team members to emulate sophisticated adversaries and assess the organization's incident response capabilities.

Employed manual testing techniques to identify and validate vulnerabilities, such as SQL injection, Cross-Site Scripting (XSS), and authentication bypass.

 Worked closely with cross-functional teams, including security analysts and incident response teams, to improve overall security posture.