I design, implement, and manage network security infrastructure, including firewalls, intrusion detection/prevention systems (IDS/IPS), virtual private networks (VPNs), and network segmentation. This involves configuring security policies, monitoring network traffic for malicious activity, and ensuring the confidentiality, integrity, and availability of network resources.
I conduct simulated cyberattacks on systems and networks to identify vulnerabilities that could be exploited by malicious actors. This involves using various techniques and tools to probe for weaknesses in applications, operating systems, and network devices. The goal is to proactively uncover and address security flaws before they can be exploited.
I perform systematic scans and analyses of systems and networks to identify known vulnerabilities. This involves using automated tools and manual techniques to discover security weaknesses, such as outdated software, misconfigurations, and missing patches. I then prioritize these vulnerabilities based on their severity and potential impact.
I develop and implement plans and procedures for responding to security incidents, such as data breaches, malware infections, and denial-of-service attacks. This involves identifying, containing, eradicating, and recovering from security incidents, as well as conducting post-incident analysis to prevent future occurrences.
I conduct independent assessments of security controls and practices to ensure compliance with industry standards, regulations, and best practices (e.g., ISO 27001, NIST). This involves reviewing policies, procedures, and technical controls to identify gaps and weaknesses in the security posture.
