Cybersecurity Analyst

Candidate brings a robust background with 3 years of experience specializing in penetration testing, particularly on the offensive side. In terms of technical proficiency, the candidate demonstrates proficiency in web and mobile security, with a specific focus on Android platforms. They have also delved into the intricacies of API security, showcasing a comprehensive understanding of the modern technology landscape. The candidate's versatility extends to unique areas such as game security and blockchain security testing, demonstrating a willingness to tackle emerging challenges in the cybersecurity domain. With 3 years dedicated to web and API security, they have built a solid foundation in identifying and addressing vulnerabilities in these crucial areas. Candidate has accumulated over a year of experience in Android testing, further enhancing their capabilities in mobile security assessments. candidate has engaged in penetration testing, assumed roles as a security manager, and demonstrated proficiency in reporting and documentation. Their involvement in the ISO certification process highlights a commitment to adherence to international security standards. Additionally, the candidate is adept at creating tickets and managing tasks efficiently, contributing to a streamlined and organized workflow. 

Dokuz Eylül University / Electrical and Electronics Engineering (Undergraduate)

Sep 2015 – Jul 2022

Security Engineer / Cyrex Ltd 

Feb 2022 – Aug 2023

• Conducted white-grey-black box penetration tests on web and mobile applications, games, and APIs, identifying key vulnerabilities and security flaws

• Performed comprehensive static (source code review) and dynamic analyses, utilising tools like SonarQube and open-source software for secret detection and Software Composition Analysis (SCA).

• Worked closely with development teams to address vulnerabilities and strengthen overall security posture.

• Specialised in smart contract security, conducting audits and assessments to ensure the integrity of blockchain implementations, including gas optimisation for cost efficiency.

• Developed expertise in blockchain security principles, addressing unique challenges and vulnerabilities in this technology. Conducted both audits and penetration tests on blockchain-based applications.

• Provided recommendations and best practices for secure smart contract development, contributing to enhanced blockchain security efforts.

• Played a pivotal role in reviewing and refining security reports for customer delivery, ensuring accuracy and clarity. Established report writing and reviewing guidelines to maintain high-quality standards.

• Led the organisation's ISO 27001 certification process, managing tasks and aligning processes for successful audits.

• Initiated and spearheaded internal process improvements, boosting operational efficiency and promoting a culture of continuous improvement in security practices.

Security Engineer; Penetration Tester / Purplebox, Inc. 

Aug 2020 – Dec 2021

• Vulnerability Assessment | Web Application Pentest | Network Pentest | Technical and Informational Reporting

• Conducted vulnerability assessments and penetration tests on web applications and network infrastructures, especially on healthcare organisations

• Utilised tools like Burp Suite, Netsparker, and Nessus for system and network scanning, identifying vulnerabilities

• Prioritised and reported vulnerabilities based on severity and exploitation likelihood, enhancing system security

• Executed targeted penetration tests to deeply analyse and address specific security vulnerabilities

• Collaborated with IT teams to implement security enhancements and risk mitigation strategies

• Developed and presented comprehensive security reports to both technical and non-technical stakeholders

• Documented lessons learned and best practices, contributing to the organisational knowledge base

• Facilitated client meetings to discuss and clarify security findings and resolutions

Electronics Engineer / Tork Robotik 

Internship

Jul 2019 – Sep 2019

• Embedded Software | Circuit Analysis & Simulation | PCB & Circuit Design