Cyber Security Engineer

Hansilkumar Patel Cyber Security Engineer

: *************@*****.*** +1-224-***-**** Overland Park, KS, USA. Professional Summary:

A Motivated professional Cyber Security Engineer committed to defending systems and networks against digital threats. Able to implement security measures, conduct risk assessments, and react to various incidents in keeping sensitive information confidential, integral, and available. I apply my skills in such security frameworks as NIST and ISO, taking measures to proactively reduce vulnerabilities and protect organizations from constantly changing threats against information. These, combined with my ethical hacking and security tool skills, further enhance me to be able to implement robust security solutions in a framework that answers business needs and regulatory requirements. I also hold a CompTIA Security+ certification, which further cements my professional quality in maintaining high standards in cybersecurity best practices and being up-to-date on industrial advancements. Work Experience:

Penetration Tester, Meta, USA. 08/2023 - Present

● Conduct extensive network penetration testing using tools such as Nmap, Wireshark, and Nessus to identify and analyze vulnerabilities effectively.

● Performed thorough web application penetration tests, identifying and resolving over 50 vulnerabilities annually using tools such as Burp Suite and OWASP ZAP.

● Test and evaluate encryption techniques to identify vulnerabilities, ensuring data security and contributing to 99% compliance with PCI-DSS encryption standards.

● Identify and address security weaknesses in network architectures, aiming to reduce potential attack surfaces by 30% through strategic assessment of routing and firewall configurations.

● Manage comprehensive vulnerability scanning and mitigation processes, decreasing critical vulnerabilities by 40% through the use of automated scanning tools and manual verification.

● Conduct penetration testing and vulnerability assessments, helping reduce incident resolution time by 25% through the rapid identification and reporting of security weaknesses.

● Conduct ethical hacking exercises to simulate real-world cyber attacks, identifying and mitigating 15 critical vulnerabilities annually.

Security Analyst, Guvi, India. 01/2021 - 07/2022

● Develop and enforce security policies in alignment with NIST and ISO standards, consistently achieving full compliance during quarterly audits.

● Conduct regular compliance audits adhering to CIS Benchmarks and HIPAA regulations, maintaining a 95% success rate in audit outcomes.

● Perform digital forensic analysis on compromised systems, successfully recovering critical evidence for 10 major incidents annually.

● Implement real-time network monitoring solutions, achieving a 30% reduction in response time to anomalous activities through custom network scanners.

● Execute proactive DDoS prevention strategies, ensuring 99% uptime during peak traffic periods.

● Develop and maintain incident reporting procedures, facilitating timely escalation and resolution of security incidents.

● Conduct comprehensive risk assessments, prioritizing risks based on CVE severity scores and business impact assessments.

● Create custom security tools such as file interceptors and packet sniffers, enhancing network traffic analysis capabilities.

Skills:

● Programming Languages: Python, Java, C, JavaScript, HTML, CSS.

● Networking Protocols: HTTPS, TCP/IP, DNS, OSI, Routing, Switching, Firewall.

● Cryptography: Digital certificates, PKI, Encryption types.

● IDE: Visual Studio, IntelliJ.

● Penetration Testing: Network and web application penetration testing, vulnerability analysis, and mitigation.

● Scripting and Tools Development: ARP/DNS spoofers, file interceptor, code injector, network scanner, packet sniffer.

● Security Practices: DDoS and SQL injection prevention, ethical hacking, proactive defense strategy development.

● Security Tools: Burp Suite, Wireshark, OWASP ZAP, DirBuster.

● Authentication Bypass and Attack Mitigation: Identifying and mitigating authentication bypass vulnerabilities, port scanning, and attack recognition.

● Virtualization and Deployment: Docker, VirtualBox, VMware.

● Security and Compliance Standards: CVE, CIS Benchmarks, NIST, PCI, HIPAA, ISO.

● Systems: Linux, Windows.

● Networking: HTTPS, TCP/IP, DNS, OSI, Firewalls.

Education:

Master’s Degree, University Of Central Missouri, MO, USA. May 2024 Cybersecurity and information assurance.

Bachelor's Degree, Ganpat University, India. May 2022 Information Technology.

Certifications:

● eLearnSecurity's Junior Penetration Tester.

● Ethical Hacking by TCOE.

● Introduction to Cybersecurity Tools & Cyber Attacks by IBM.

● CompTIA Security+.

Contact this candidate