Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...
Brief on my skill sets
1. Brief on my skill sets basedon work experience & personal development period:
I have around eight years of ‘Software Tester’ , ‘QA Tester’ , ‘System Consultant’ testing
experience for both web and client server application. I performed testing from some security
prospective such as authentication & authorization, provisioning factors, ID proofing, access
control mechanism and so. Most of the testing was executed from quality assurance & quality
control perspective to support the risk management. Have knowledge on risk management
framework and security compliance such as NIST publication, ISO, FIPS, FISMA, ITIL etc. I
got an opportunity to work on BurpSuite for intrusion detection in few project.
Now I am planning to merge my career into cyber security so did some training, participating to
workshops both physical and virtual webinar session; please see the details in attached personal
development worksheet. Now I know the following and looking for an opportunity to work:
Application & network threats & vulnerabilities
Security testing tools and techniques
Concept on OSI Reference Model and TCP/IP Stack
Common ports and protocols
Validation & verification of PCAP file
Create VM in VirtualBox to create security testing environment
Few computer forensics such as email header etc.
Check network configuration by using command line in windows and Kali Linux
Check network connectivity in Kali Linux
Concept of cryptography such as encryption, hashing (MD5), and digital signature for
both symmetric & asymmetric cryptography
Connect to network analyzer tool i.e. Nessus, WireShark from Kali Linux
Have Security+ certification
One week training on CISSP (no certification)
Completed Cybersecurity Fundamental class.
Starting Network Fundamental class
Continuously attending different workshop and webinar such as competition practices on
penetration testing, intrinsic security, vulnerability scanning and pen testing, webinar
bootcamp on application security, citrix security strategy, bridging the gap between your
security defenses and critical data, ethical hacking etc.
Recently elected for ‘Sergeant at Arms’ position for WSC ToastMaster