Post Job Free
Sign in

Security Service

Location:
Marulas, 1441, Philippines
Salary:
50000
Posted:
September 02, 2019

Contact this candidate

Resume:

MARK RAENIER N. CASTILLO

BS Electronics Engineering

Technological Institute of the Philippines

M: 094********

Address: *** ** ****** ******* *********, Valenzuela City

E: *******************@*****.***

Professional Summary

I worked in Microfocus as a Web Application Security Testing service of Fortify on

Demand to companies with the objective of identifying vulnerability signatures, exploiting possible surface attacks and evaluating the potential security risk that can be used to leverage cyber security attacks.

Plays a key role in automation team for delivering managed application security testing service of HP Fortify on Demand to Fortune 500 companies with the objective of conducting false positive validation, risk assessment and remediation testing based on the findings of automated vulnerability scanning tool.

Experience

Web Application Security Consultant

Microfocus (formerly Hewlett Packard Enterprise)

April 2015 to May 2019

Conducts false positive validation to vulnerabilities tagged by HP WebInspect using a handful of open source penetration testing tools (BurpSuite, nmap, sqlmap, sslyze) and security testing practice from OWASP ensuring findings are found true positive.

Communicates validated security issues to clients based on vulnerability handling set upon by the HPE Fortify Team and OWASP Top 10 ensuring a concise and accurate technical report. Custom based vulnerability handling and procedures are modified based on customer handling requests.

Conducts end to end process of web vulnerability assessment for custom based workflows. This covers up from running WebInspect up to performing manual exploitation of authentication and session management in addition to false positive validation of findings from the automated tool.

Provides feedback and consultation to Automation Team for proper optimization of HP Web Inspect on better coverage and vulnerability findings.

Ensures validated vulnerabilities and false positives are accurate with no miscategorization and is delivered within customer SLA.

Back up Operations Lead (Automated Team)

Microfocus (formerly Hewlett Packard Enterprise)

October 2018 to May 2019

Worked closely with Dynamic Testing Team Managers, manage and ensure tasks are being executed by appropriate team resources.

Responsible for productivity, utilization and upskilling of staff, ensuring that the practice side of the business runs smoothly.

Character Reference

Reggie Paguia

Operations Lead – EMEA Automated and Manual Team

Microfocus

+639*********

Lester Galit

Technical Lead – EMEA Automated and Manual Team

Microfocus

+639*********



Contact this candidate