Brief on my skill sets based on work experience & personal development period : I have around eight years of ‘Software Tester’ , ‘QA Tester’ , ‘System Consultant’ testing experience for both web and client server application. I performed testing from some security prospective such as authentication & authorization, provisioning factors, ID proofing, access control mechanism and so. Most of the testing was executed from quality assurance & quality control perspective to support the risk management. Have knowledge on risk management framework and security compliance such as NIST publication, ISO, FIPS, FISMA, ITIL etc. I got an opportunity to work on BurpSuite for intrusion detection in few project. Now I am planning to merge my career into cyber security so did some training, participating to workshops both physical and virtual webinar session; please see the details in attached personal development worksheet. Now I know the following and looking for an opportunity to work: Application & network threats & vulnerabilities Security testing tools and techniques Concept on OSI Reference Model and TCP/IP Stack Common ports and protocols Validation & verification of PCAP file Create VM in VirtualBox to create security testing environment Few computer forensics such as email header etc. Check network configuration by using command line in windows and Kali Linux Check network connectivity in Kali Linux Concept of cryptography such as encryption, hashing (MD5), and digital signature for both symmetric & asymmetric cryptography Connect to network analyzer tool i.e. Nessus, WireShark from Kali Linux

Brief on my skill sets

Download DOCX Report

Upload
sharda-s-khati
View
84
Download
0

Embed Size (px)

Citation preview

Brief on my skill sets based on work experience & personal development period :

I have around eight years of ‘Software Tester’ , ‘QA Tester’ , ‘System Consultant’ testing experience for both web and client server application. I performed testing from some security prospective such as authentication & authorization, provisioning factors, ID proofing, access control mechanism and so. Most of the testing was executed from quality assurance & quality control perspective to support the risk management. Have knowledge on risk management framework and security compliance such as NIST publication, ISO, FIPS, FISMA, ITIL etc. I got an opportunity to work on BurpSuite for intrusion detection in few project.

Now I am planning to merge my career into cyber security so did some training, participating to workshops both physical and virtual webinar session; please see the details in attached personal development worksheet. Now I know the following and looking for an opportunity to work:

Application & network threats & vulnerabilities Security testing tools and techniques Concept on OSI Reference Model and TCP/IP Stack Common ports and protocols Validation & verification of PCAP file Create VM in VirtualBox to create security testing environment Few computer forensics such as email header etc. Check network configuration by using command line in windows and Kali Linux Check network connectivity in Kali Linux Concept of cryptography such as encryption, hashing (MD5), and digital signature for

both symmetric & asymmetric cryptography Connect to network analyzer tool i.e. Nessus, WireShark from Kali Linux Have Security+ certification One week training on CISSP (no certification) Completed Cybersecurity Fundamental class. Starting Network Fundamental class Continuously attending different workshop and webinar such as competition practices on

penetration testing, intrinsic security, vulnerability scanning and pen testing, webinar bootcamp on application security, citrix security strategy, bridging the gap between your security defenses and critical data, ethical hacking etc.

Recently elected for ‘Sergeant at Arms’ position for WSC ToastMaster