Apply as Developer Hire Developer

Vadym R, Security Engineer & Penetration Tester

Security Operations (SecOps)
english B1 (Intermediate) English
seniority Senior (5-10 years)
location Kyiv, Ukraine

Summary

- Bachelor's and Master's degree in Cybersecurity with a focus on application design, coding, static and dynamic analysis.
- Expertise in full-cycle testing of mobile applications, web applications, and AWS cloud environments.
- Identifying and exploiting vulnerabilities in mobile systems using both automated and manual techniques, whitebox and blackbox testing.
- Proficient in a wide range of testing tools and frameworks, including Frida, Jeb, Burp Suite, OWASP ZAP, Ghidra, and Metasploit.
- Possesses a deep understanding of the latest mobile and web application security threats, trends, and best practices.
- Experience in reverse engineering of mobile applications and APIs, blackbox testing, and dynamic and static analysis.

Hire Vadym R

Main Skills

Java, Security Engineer & Penetration Tester

Java 5 yr.

Penetration testing, Security Engineer & Penetration Tester

Penetration testing 7 yr.

Full-cycle testing of mobile applications, Security Engineer & Penetration Tester

Full-cycle testing of mobile applications

Security

Burp Suite

Programming Languages

C 2 yr. C++ 2 yr. Java 5 yr.

Mobile Frameworks and Libraries

Flutter

JavaScript Libraries and Tools

React Native

Cloud Platforms, Services & Computing

AWS

Industry Domain Experience

Information Security

QA, Test Automation, Security

Blackbox testing Burp Suite Dynamic and static analysis Frida Full-cycle testing of mobile applications Full-cycle testing of web applications Ghidra Identifying and exploiting vulnerabilities in mobile systems Jeb Metasploit Mobile application security threats OSINT OWASP ZAP Penetration testing 7 yr. Security testing of web applications and cloud infrastructure web application security Whitebox testing

iOS Libraries and Tools

Xamarin

Other Technical Skills

POC Reverse engineering of mobile applications and APIs
ID: 100-118-103
Last Updated: 2023-10-02

Work Experience

Mobile/Api Security Engineer, Mesh (ex Font Finance)

Duration: 2023 - now
Summary:

  • Reverse engineering of mobile applications and APIs, blackbox testing, dynamic and static analysis.
  • Experience with native applications, React Native, Xamarin, Flutter.

Mobile Security Pentester, Red Team Activities (Samsung Electronics Ukraine) 

Duration: 2019 - 2021
Summary: Full cycle of Red Team activities aimed at finding vulnerabilities in web applications and cloud infrastructure

  • Was a part of the team that created and checked the tasks for SCTF 2021/2022
  • Pentested the trust zone of the mobile processor
  • Participated in planning and conducting Red Team assessment of the entire mobile operating
    system and creating POCs from the chains of found vulnerabilities

Responsibilities: Pentesting, Red Team assessment
Technologies: Web Application Security, Cloud Infrastructure

Mobile Security Pentester, Android Application Testing (Samsung Electronics Ukraine) 

Duration: 2017 - 2019
Summary:

  • Full cycle of Red Team activities aimed at finding vulnerabilities in web applications and cloud
    infrastructure.
  • The activity required a full process: from OSINT to full takeover of cloud accounts.
  • Experience in blackbox and whitebox applications testing created for Android OS. Using OWASP MSTG at work. Created exploits for found vulnerabilities.

Responsibilities: Application Testing, Exploit Creation
Technologies: OWASP MSTG

Software Developer, IoTivity (Samsung Electronics Ukraine) 

Duration: 2016 - 2017
Summary:  Membership of the security team in an open source project called IoTivity.
Responsibilities: Software Development
Technologies: IoT, Software Development

Education

  • Master Degree in Cyber Security
    2021 - 2023
  • Bachelor's Degree in Cyber Security
    2017 - 2018