Test Engineer Cybersecurity Analyst
Resume:
Kamran Vakili
Aliso Viejo, CA *****
Email: **********@*****.*** Phone: 949-***-****
PROFESSIONAL SUMMARY
Cybersecurity professional and QA security test engineer with extensive experience in security testing, software validation, and infrastructure security. Adept at vulnerability assessment, penetration testing, and compliance management across various industry standards. Proficient in software testing methodologies, automation frameworks, and network security analysis. Strong background in project management, cross-functional collaboration, and system integration within highly regulated industries, including aviation, healthcare, and enterprise IT.
CORE COMPETENCIES
Cybersecurity & Compliance
Vulnerability assessment, penetration testing, and risk management.
Proficiency in testing enterprise servers (Linux and Windows) for vulnerabilities and security risks.
Experience using tools to perform web-based vulnerability testing, including SQL Injection, XSS, CSRF, and other web application security assessments.
Compliance expertise: ISO 27002, ISO 14971, IEC 62304, NIST 800-53, HIPAA, GDPR, SOC 2, COBIT, PCI-DSS.
Experienced in Secure Development Lifecycle (SDLC) and threat modeling.
Knowledge of incident response, forensic analysis, and disaster recovery planning.
Proficient in security architecture for cloud platforms, enterprise networks, IoT environments, and hybrid infrastructures.
Network Security & Technical Expertise
Proficient in intrusion detection, threat hunting, and log-based security analysis to identify vulnerabilities and safeguard systems.
Strong understanding of network protocols including TCP/IP, UDP, SNMP, and their role in comprehensive security testing.
Extensive knowledge of Firewall, VPN, IDS/IPS configuration, monitoring, and secure deployment.
Expertise in assessing vulnerabilities in routers, switches, virtualization technologies, and various internet-connected devices.
Skilled in testing and implementing secure application architectures, incorporating multi-factor authentication, RBAC, encryption, and access control to enhance data protection.
Experience in social engineering tactics like phishing and vishing campaigns to evaluate organizational security readiness.
Proficient in virtualization and network segmentation strategies to optimize security infrastructure.
In-depth knowledge of encryption, authentication, and access control implementations across diverse systems.
Tools and Methodologies
Experience of penetration testing tools, such as Burp Suite, Metasploit, Nessus, Wireshark, and Nmap.
Familiarity with security frameworks like OWASP and PTES for structured assessments.
Experience with scripting and automation for security tests in Python, PowerShell, or other programming languages.
Additional Cybersecurity Skills
In-depth knowledge of Active Directory security and wireless technologies.
Capability to assess mobile applications (iOS and Android) and IoT devices for vulnerabilities.
Understanding of cloud environments (AWS and Azure) and hybrid systems.
Analytical mindset with a focus on providing remediation steps for identified vulnerabilities.
Software Testing & Quality Assurance
•End-to-end software testing, including unit, integration, system, and regression testing
•Automated test frameworks (Selenium, Python) and CI/CD pipeline integration
•Performance, scalability, and stress testing for complex distributed systems
•Wireless communication protocol testing (Wi-Fi, Bluetooth, 4G/5G, NFC)
•GUI, web, API, and embedded systems functional and security testing
Project Management & Technical Leadership
•Agile, Scrum, and Waterfall methodologies; tools: JIRA, Confluence, MS Project
•Cross-functional team coordination and stakeholder engagement
•Technical documentation, compliance reporting, and security audits
PROFESSIONAL EXPERIENCE
Thales Avionics, Irvine, CA
Senior IVV Engineer – In-Flight Entertainment & Communication (IFEC) 2024 – Present
• Conducted system integration and system and software security testing for IFEC components.
• Configured test environments, executed test cases, and validated compliance with aviation standards.
• Led security assessments and penetration testing for Boeing 787 IFEC and Crew Server System.
• Successfully validated In-Flight Server Controller (IFSC) for major airline clients.
Johnson & Johnson, Irvine, CA
Technical Lead Engineer / Project Manager 2021 – 2023
• Led cybersecurity initiatives and SaaS field support for CartoNet cloud platform.
• Spearheaded security compliance efforts for Microsoft Azure cloud integrations.
• Reduced CartoNet installation timelines by 50% through process optimization.
• Managed end-to-end project lifecycle, increasing successful deployments by 40%.
Panasonic Avionics, Irvine, CA
Senior System Test Engineer 2020 – 2021
• Developed and executed test plans for in-flight entertainment systems.
• Ensured regulatory compliance through rigorous system integration testing.
• Collaborated with Boeing and Airbus engineers to support IFE certification.
Snap One / Control 4, Irvine, CA
Senior Network and Security Engineer in Test & Automation 2018 – 2020
• Conducted extensive testing for IoT, home automation, and networking devices.
• Assessed and test security vulnerabilities in wireless and network protocols such as Routers, Switches, and wireless access points.
• Developed automated test frameworks to enhance product validation.
Oracle Corporation / Sun Microsystems, Irvine, CA
Senior Lead Software Engineer in Test 2006 – 2017
• Designed and implemented automated testing for Solaris SMB and Enterprise storage systems.
• Developed security and performance test plans, reducing development cycles.
• Conducted performance benchmarking for SUN and Oracle Storage Servers (SPECsfs certified).
EDUCATION & CERTIFICATIONS
• Master of Science (MS) in Cybersecurity & Planning – National University, San Diego, CA
• Bachelor of Science (BS) in Electrical Engineering – University of Kansas, Lawrence, KS
• Computer Networking Certificate – Mt. Sierra College, Pasadena, CA
• A+ Certification
• In Progress: Certified Information Systems Security Professional (CISSP)
Contact this candidate