ad3z3b@r.postjobfree.com
Stamford, CT
CONTACT
SKILLS
• DAST
• SAST
• SCA
• OWASP Top 10
• Snyk
• Burp Suite
• Qualys
• Detectify
• Microsoft Intune
• Microsoft Defender for
Endpoint (MDE)
• AWS IAM
• Security vulnerability
management
• Wireshark
• Threat Modeling
• MS Office
• Github
• SDLC
• NMAP
• JavaScript
• Python
• HTML
• CSS
SAMUEL ACHEAMPONG
Computer security professional with 4 plus years of progressive experience in Information Technology.
Demonstrated skill in application security, vulnerability management, DAST and SAST, securtiy code review, threat modeling and OWASP 10 framework.
WORK HISTORY
April 2022 to Jan 2023
Application Security Engineer, Spotify, Remote
• Suggested and implemented the integration of Snyk code as a Static Application Security Testing (SAST) tool, conducting comprehensive security scans on code repositories to identify vulnerabilities.
• Conducted threat model sessions for new acquisitions and product designs using the STRIDE method, identifying additional vulnerabilities and security risks to enhance the security review process.
• Developed concise runbooks and templates for code reviews and threat modeling, enhancing team efficiency in collaboration with developers and stakeholders.
• Offered developers/engineers concise guidelines on security best practices, resulting in more secure software development. February 2020 to Current
Lead Security Engineer, KFT Church, Volunteer, Darien, CT
• Implemented automation to speed up vulnerability management process.
• Led the management and training efforts for team members, ensuring seamless adoption of new tools, fostering cohesive collaboration within the team.
• Designed and developed applications using SDLC, IT security development, static code analysis, and secure code best practices.
• Formulated and implemented robust processes to streamline workflow, contributing to enhanced team efficiency in project execution.
Jan 2023 to Nov 2023
• Took time off for personal growth and career planning while working with a non-profit organization.
• Performed DAST security scans, identifying OWASP Top 10 vulnerabilities including XSS and SQL Injection.
• Collaborated with pen-testers to validate findings, ensuring accuracy in identifying false negatives and false positives.
• Collaborated with developers to implement fixes for security vulnerabilities and other application maintenance activities. August 2019 to February 2020
Security Analyst, Local Wisdom, Lambertville, NJ
• Coordinated with third-party security information and event management providers to maintain protections and predict threats.
• Monitored and assessed threats, risks, and vulnerabilities from emerging security issues to advise pertinent
stakeholders on appropriate measures.
June 2017 to February 2019
Front-End Web Developer, iMedia Inc, Boonton, NJ
• Managed website development, transforming mockups into a live web presence through proficiency in HTML, CSS, and JavaScript.
• Performed continuous efficiency and security maintenance, including patching on the website interface to sustain its effectiveness post-launch.
• Conducted front-end website development utilizing WordPress.
• Executed cross-browser testing and fine-tuned newly designed websites before their launch.
EDUCATION
12/2024 – In Progress
Master of Science, Cyber Security
New York University, Brooklyn, NY
05/2017
Bachelor of Science, Information Technology (I.T)
Montclair State University, Montclair, NJ
March 2021 to August 2021
Web Security Engineer, Aon, Remote