Project Manager Security
Resume:
Gerardo Di Giacomo
Via R. Mauri **
Via A. Salieri 1
Mobile: +393*********
Email: **********@*****.***
Website: http://www.linux.it/~gerardo/
EDUCATION:
2001 - 2003 Universit degli Studi di Salerno
Degree in Computer Science
Not graduated
1995 - 2001 Liceo Scientifico F. Severi Salerno
Mathematics and Sciences
Graduated with 72/100
TECHNICAL SKILLS:
. OS: Linux, MacOS X and Windows as user, engineer and hardener
. Security web (SQL injection, cross site scripting, cross site request
forgery, etc) and system (buffer overflow, format string, etc)
vulnerabilities, attack scenarios and defense techniques
. Penetration test and vulnerability assessment tools (Tenable Nessus,
eEye Retina, NMap, etc) and methods (OSSTMM, OWASP, etc)
. Programming skills in PHP, experience in Perl, C and Bash
. Distributed logging systems and SIM/SEM (syslog, splunk, OSSIM, etc)
. IDS/IPS technologies (Snort)
. IT security framework design and implementation
. LAMP (Linux/Apache/MySQL/PHP) stack
. TCP/IP suite
ORGANISATIONAL SKILLS:
. Excellent problem solving abilities
. Strong experience in management of group of people and projects
. Lateral thinking and attention in details
. Ability to deal with a quickly changing environment
. Ability to balance multiple priorities to meet deadlines
. Strong analytical and strategic capabilities
SOCIAL SKILLS:
. Both team spirit and individuality
. Excellent communication skills thanks to consulting and lecturing
activities
LANGUAGES:
. Italian
- Understanding: native language
- Speaking: native language
- Writing: native language
. English
- Understanding: Independent User*
- Speaking: Independent User*
- Writing: Independent User* Common European Framework Reference (CEF) level
ADDITIONAL DETAILS:
. International High IQ Society member (membership #187725)
. Official Ubuntu Linux developer, former MOTU (Master of the Universe):
- https://launchpad.net/~gerardo
. Italian Linux Society member
. Cooperator with Italian press and e-press (PC World, punto-
informatico.it)
- http://punto-informatico.it/p.aspx?i=1272231
- http://punto-informatico.it/p.aspx?id=1004202
- http://punto-informatico.it/p.aspx?i=1014952&p=3
- http://punto-informatico.it/p.aspx?i=1008133
- http://punto-informatico.it/p.aspx?i=1003141
. Author of several security advisories, most of them web related
- http://securitytracker.com/archives/idreportedby/2165.html
- http://securitytracker.com/archives/idreportedby/2118.html
. Second place at Capture the Flag competition during Hack in The Box
Conference in Kuala Lumpur (Malaysia) in 2006 and 2007 editions
. Author of several web-based hack-games and simulations for Zone-H
project
. ISECOM OPSA Certification (June 2010)
WORK EXPERIENCE:
2008 - Techub SPA
present Senior Security Consultant
Vulnerability assessment and penetration test activities for
external customers, both direct and partners' (RSA, Symantec).
Security designs, distributed logging solutions, SIM/SEM.
2007 - 2008 WabiSabiLabi Ltd
Security Analyst, Security Researcher and Project Manager
Vulnerability analyst and researcher, project manager for
internal projects
2002 - 2008 Zone-H - Domina Security - Security Lab AG
Security Engineer and Analyst, Lecturer
Vulnerability analyst and researcher, author and teacher of
ethical hacking courses, in charge of systems security and
engineering
2004 - 2007 Telecom Italia SPA
Senior Security Consultant
Researcher, vulnerability assessment and penetration test
activities, leader of internal teams
2003 - 2007 PIT Consulting SPA
Senior Security Consultant
Vulnerability assessment and penetration test activities for
external customers
2000 - 2002 Freelance
Security Consultant, Web Developer
Vulnerability assessment and penetration test activities, web
developer
Contact this candidate