Hernan Rodriguez
Consultor en Ciberseguridad Senior - Pentester at Entelgy Innotec Security- Claim this Profile
Click to upgrade to our gold package
for the full feature experience.
Topline Score
Bio
Roger Menendez
El trabajo con Hernan es bastante gratificante, es un profesional competente en su materia y a la vez muy colaborador con el equipo, siempre está en paso adelante en los requerimientos técnicos que se solicitan.
Arturo Simich ,.
He disfrutado del talento y calidades humanas de Hernán desde marzo del 2021, cuando se integró al equipo del Banco Pichincha para armar capacidades en el ámbito de ciberseguridad ofensiva, Si las entrevistas iniciales no tuve dudas de su ingreso al Banco, a la pocas semanas demostró una gran conocimiento en su tema, una permanente capacidad de autoaprendizaje y un compromiso con los objetivos del Banco, volviéndose un personal clave en el equipo, Hernán ha asumido nuevos retos en otra entidad, en donde estamos seguro que seguirá derrochando el talento y calidades humanas que lo hicieron un profesional importante no sólo en el área sino en la vicepresidencia de riesgos del banco.
Roger Menendez
El trabajo con Hernan es bastante gratificante, es un profesional competente en su materia y a la vez muy colaborador con el equipo, siempre está en paso adelante en los requerimientos técnicos que se solicitan.
Arturo Simich ,.
He disfrutado del talento y calidades humanas de Hernán desde marzo del 2021, cuando se integró al equipo del Banco Pichincha para armar capacidades en el ámbito de ciberseguridad ofensiva, Si las entrevistas iniciales no tuve dudas de su ingreso al Banco, a la pocas semanas demostró una gran conocimiento en su tema, una permanente capacidad de autoaprendizaje y un compromiso con los objetivos del Banco, volviéndose un personal clave en el equipo, Hernán ha asumido nuevos retos en otra entidad, en donde estamos seguro que seguirá derrochando el talento y calidades humanas que lo hicieron un profesional importante no sólo en el área sino en la vicepresidencia de riesgos del banco.
Roger Menendez
El trabajo con Hernan es bastante gratificante, es un profesional competente en su materia y a la vez muy colaborador con el equipo, siempre está en paso adelante en los requerimientos técnicos que se solicitan.
Arturo Simich ,.
He disfrutado del talento y calidades humanas de Hernán desde marzo del 2021, cuando se integró al equipo del Banco Pichincha para armar capacidades en el ámbito de ciberseguridad ofensiva, Si las entrevistas iniciales no tuve dudas de su ingreso al Banco, a la pocas semanas demostró una gran conocimiento en su tema, una permanente capacidad de autoaprendizaje y un compromiso con los objetivos del Banco, volviéndose un personal clave en el equipo, Hernán ha asumido nuevos retos en otra entidad, en donde estamos seguro que seguirá derrochando el talento y calidades humanas que lo hicieron un profesional importante no sólo en el área sino en la vicepresidencia de riesgos del banco.
Roger Menendez
El trabajo con Hernan es bastante gratificante, es un profesional competente en su materia y a la vez muy colaborador con el equipo, siempre está en paso adelante en los requerimientos técnicos que se solicitan.
Arturo Simich ,.
He disfrutado del talento y calidades humanas de Hernán desde marzo del 2021, cuando se integró al equipo del Banco Pichincha para armar capacidades en el ámbito de ciberseguridad ofensiva, Si las entrevistas iniciales no tuve dudas de su ingreso al Banco, a la pocas semanas demostró una gran conocimiento en su tema, una permanente capacidad de autoaprendizaje y un compromiso con los objetivos del Banco, volviéndose un personal clave en el equipo, Hernán ha asumido nuevos retos en otra entidad, en donde estamos seguro que seguirá derrochando el talento y calidades humanas que lo hicieron un profesional importante no sólo en el área sino en la vicepresidencia de riesgos del banco.
Credentials
-
Certified AppSec Pentester (CAPen)
The SecOps GroupAug, 2023- Oct, 2024 -
eMAPT - Mobile Application Penetration Tester
eLearnSecurityDec, 2022- Oct, 2024 -
CRTO - Certified Red Team Operator
Zero-Point Security LtdJun, 2022- Oct, 2024 -
eCPPTv2 - Certified Professional Penetration Tester
eLearnSecurityAug, 2021- Oct, 2024 -
CRTP - Certified Red Team Professional
Pentester AcademyJan, 2021- Oct, 2024 -
eWPTXv2 - Web Application Penetration Tester eXtreme
eLearnSecuritySep, 2020- Oct, 2024 -
CEH Practical - Certified Ethical Hacker
EC-CouncilJul, 2020- Oct, 2024 -
CNSS | Certified Network Security Specialist
ICSI (International CyberSecurity Institute), UKMay, 2020- Oct, 2024 -
eWPT - eLearnSecurity Web Application Penetration Tester
eLearnSecurityApr, 2020- Oct, 2024 -
eJPT - eLearnSecurity Junior Penetration Tester
eLearnSecurityMar, 2020- Oct, 2024 -
Certified ISO/IEC 20000-1:2018
CertiProfMar, 2020- Oct, 2024 -
Cybersecurity Certified Expert
CertiJoin LLCMar, 2020- Oct, 2024 -
Innovation Management Certified Professional
CertiProfMar, 2020- Oct, 2024 -
Kanban Essentials Professional Certificate
CertiProfMar, 2020- Oct, 2024 -
Big Data Professional Certificate
CertiProfFeb, 2020- Oct, 2024 -
C)PTE - Certified Penetration Testing Engineer
Mile2Feb, 2020- Oct, 2024 -
Certified ISO/IEC 27001 Foundations
CertiProfFeb, 2020- Oct, 2024 -
Ethical Hacking Avanzado
BSG InstituteFeb, 2020- Oct, 2024 -
Lead Cybersecurity Professional Certificate
CertiProfFeb, 2020- Oct, 2024 -
Scrum Developer Professional Certificate
CertiProfFeb, 2020- Oct, 2024 -
Scrum Product Owner Professional Certificate
CertiProfFeb, 2020- Oct, 2024 -
Scrum Master Professional Certificate - SMPC
CertiProfJan, 2020- Oct, 2024 -
Six Sigma Yellow Belt Professional - SSYB
6SIGMAstudy - The global certification body for six sigma certificationsJan, 2020- Oct, 2024 -
Scrum Foundation Professional Certificate
CertiProfJul, 2019- Oct, 2024 -
ISO/IEC 27001 Certified Lead Implementer
CertiProfJan, 2022- Oct, 2024 -
C)SA1 - Certified Security Awareness 1
Mile2Oct, 2020- Oct, 2024 -
Survey Contributor of The Agile Adoption Report 2021
CertiProfMay, 2021- Oct, 2024 -
Certified ISO/IEC 27001 Internal Auditor
CertiProfSep, 2020- Oct, 2024 -
Corporate Sales Fundamentals
SCRUMstudy - Accreditation Body for Scrum and Agile;Download Free Scrum Body of Knowledge(381 pages)Mar, 2020- Oct, 2024 -
Digital Marketing Fundamentals
SCRUMstudy - Accreditation Body for Scrum and Agile;Download Free Scrum Body of Knowledge(381 pages)Mar, 2020- Oct, 2024 -
Remote Work and Virtual Collaboration Professional Certificate
CertiProfFeb, 2021- Oct, 2024 -
Scrum Fundamentals Certified
SCRUMstudy - Accreditation Body for Scrum and Agile;Download Free Scrum Body of Knowledge(381 pages)Jan, 2020- Oct, 2024 -
Foundations of Operationalizing MITRE ATT&CK
AttackIQOct, 2020- Oct, 2024 -
Lifelong Learning
CertiProfAug, 2020- Oct, 2024 -
NSE 1 Network Security Associate
FortinetApr, 2020- Oct, 2024 -
NSE 2 Network Security Associate
FortinetApr, 2020- Oct, 2024 -
Cybersecurity Fundamentals Certification
Kaspersky Lab LatinoaméricaJul, 2019- Oct, 2024 -
CertiProf Platinum Partner 2020
CertiProfDec, 2020- Oct, 2024 -
CertiProf Knowledge Ambassador
CertiProfFeb, 2020- Oct, 2024 -
CertiProf Partner Program
CertiProfFeb, 2020- Oct, 2024 -
Autopsy 8-Hour Online Training
Basis TechnologyApr, 2020- Oct, 2024 -
D-Link Basic Certification
D-LinkSep, 2016- Oct, 2024
Experience
-
Entelgy Innotec Security
-
Spain
-
IT Services and IT Consulting
-
300 - 400 Employee
-
Consultor en Ciberseguridad Senior - Pentester
-
Jun 2023 - Present
- I currently do pentesting tests nationally and internationally in different sectors: Banking, Maritime, Automobiles, Life insurances, Corporations etc.- I currently do OSINT research.- I currently do the Vulnerability analysis in Webapps services based on the OWASP standard. - I currently do Pentesting tests in Blackbox in applications Web, Mobile, API and infrastructure. - I currently do Ethical Hacking tests on Blackbox, GreyBox and WhiteBox. - I currently do realized that I am testing RedTeam.- I currently implement offset proposals. Show less
-
-
Consultor en Ciberseguridad - Pentester
-
Oct 2022 - Jun 2023
- I currently do pentesting tests nationally and internationally in different sectors: Banking, Maritime, Automobiles, Life insurances, Corporations etc.- I currently do OSINT research.- I currently do the Vulnerability analysis in Webapps services based on the OWASP standard. - I currently do Pentesting tests in Blackbox in applications Web, Mobile, API and infrastructure. - I currently do Ethical Hacking tests on Blackbox, GreyBox and WhiteBox. - I currently do realized that I am testing RedTeam.- I currently implement offset proposals. Show less
-
-
-
Banco Pichincha Perú
-
Peru
-
Banking
-
700 & Above Employee
-
Senior Offensive Cybersecurity Specialist
-
Mar 2022 - Oct 2022
- Currently a leader in the bank's internal Ethical Hacking projects.- Currently I carry out the Vulnerability analysis in Webapps services based on the OWASP standard 2021 and 2019. - Currently I perform Pentesting tests in Blackbox in applications webs. - Currently I doing Ethical Hacking tests on Blackbox, GreyBox and WhiteBox.- Currently doing SAST and DAST tests in the development of the projects. (Zona Digital, New HomeBanking)- Currently developed use case models for SIEM. - Currently occasionally perform attack analysis on web application infrastructure logs.- Currently manage the analytics of security patches.- Currently Monitoring of External Pentesting & Ethical Hacking projects.- Currently do project consulting.- Currently that I am testing RedTeam. Show less
-
-
Offensive Cybersecurity Specialist
-
Aug 2021 - Mar 2022
- Currently a leader in the bank's internal Ethical Hacking projects.- Currently I carry out the Vulnerability analysis in Webapps services based on the OWASP standard 2021 and 2019. - Currently I perform Pentesting tests in Blackbox in applications webs. - Currently I doing Ethical Hacking tests on Blackbox, GreyBox and WhiteBox.- Currently doing SAST and DAST tests in the development of the projects. (Zona Digital)- Currently developed use case models for SIEM. - Currently manage the analytics of security patches.- Currently Monitoring of External Pentesting & Ethical Hacking projects Show less
-
-
Information Security Specialist
-
Mar 2021 - Aug 2021
- Currently a leader in the bank's internal Ethical Hacking projects.- Currently I carry out the Vulnerability analysis in Webapps services based on the OWASP standard 2017 and 2019.- Currently I perform Pentesting tests in Blackbox in applications webs. - Currently I doing Ethical Hacking tests on Blackbox, GreyBox and WhiteBox.- Currently doing SAST and DAST tests in the development of the projects.
-
-
-
CertiProf International
-
United States
-
Education Administration Programs
-
1 - 100 Employee
-
SME
-
Mar 2020 - Sep 2022
https://www.youracclaim.com/badges/cdcffe2d-68a8-419f-8974-da3d1f6a20e8
-
-
Associate Partner
-
Feb 2020 - Mar 2022
https://www.youracclaim.com/badges/9aa59883-b1a4-4a1b-8bd4-102550fe3573/
-
-
-
Certif-Online
-
Peru
-
Education Administration Programs
-
CEO Founder
-
Feb 2020 - Feb 2022
-
-
-
Secure Soft S.A.C.
-
Peru
-
IT Services and IT Consulting
-
200 - 300 Employee
-
Specialized Services Engineer
-
Aug 2020 - Feb 2021
- I performed the risk analysis for the vulnerability patch management. - I performed the Vulnerability analysis in Webapps services based on the OWASP standard. - I did Pentesting tests in Blackbox in applications and infrastructure. - I did Ethical Hacking tests on Blackbox, GreyBox and WhiteBox. - I realized that I am testing RedTeam. - I performed the risk analysis for the vulnerability patch management. - I performed the Vulnerability analysis in Webapps services based on the OWASP standard. - I did Pentesting tests in Blackbox in applications and infrastructure. - I did Ethical Hacking tests on Blackbox, GreyBox and WhiteBox. - I realized that I am testing RedTeam.
-
-
-
Hospital de Apoyo Nasca
-
Peru
-
Hospitals and Health Care
-
1 - 100 Employee
-
Lead Project Manager
-
Dec 2019 - Jul 2020
Project manager of the occupational health hospital system. (U.E. 402 SALUD PALPA NASCA - HOSPITAL DE APOYO RICARDO CRUZADO RIVAROLA DE Nasca) Project manager of the occupational health hospital system. (U.E. 402 SALUD PALPA NASCA - HOSPITAL DE APOYO RICARDO CRUZADO RIVAROLA DE Nasca)
-
-
-
CertJoin
-
United States
-
Professional Training and Coaching
-
1 - 100 Employee
-
Associate Partner
-
Mar 2020 - Jun 2020
-
-
-
Clínica Holosalud
-
Peru
-
Medical Practices
-
1 - 100 Employee
-
Information systems analyst
-
Aug 2019 - Jan 2020
I carried out my work as an information systems analyst, my main objective was to protect and ensure the continuity of the information assets in the company. Implement and develop business strategies. I carried out my work as an information systems analyst, my main objective was to protect and ensure the continuity of the information assets in the company. Implement and develop business strategies.
-
-
-
-
Full-time teaching staff
-
Aug 2019 - Dec 2019
I was in charge of the following courses at the Computer Center Administration School. Linux Operating Systems Administration Server Infrastructure Implementation Infrastructure Services Virtualization Server Implementation Projects Advanced Administration of Operating Systems Ethical Hacking and Forence Analysis Security and Threats Infrastructure Services Security Total Security Tools I was in charge of the following courses at the Computer Center Administration School. Linux Operating Systems Administration Server Infrastructure Implementation Infrastructure Services Virtualization Server Implementation Projects Advanced Administration of Operating Systems Ethical Hacking and Forence Analysis Security and Threats Infrastructure Services Security Total Security Tools
-
-
-
-
Systems Engineering Intern
-
Aug 2019 - Nov 2019
Systems Engineering Internship at Government Institution "Red de Salud Ica U.E 406" I carried out my internship as a systems analyst in SQL Server making queries in the HIS MINSA records, requested by my boss in charge of the statistics and informatics area. Systems Engineering Internship at Government Institution "Red de Salud Ica U.E 406" I carried out my internship as a systems analyst in SQL Server making queries in the HIS MINSA records, requested by my boss in charge of the statistics and informatics area.
-
-
-
Ap Terranova Srl
-
Departamento de Ica
-
IT Administrative
-
Jul 2018 - Dec 2018
My main function was to give support to any failure of the information and communication systems of the company. Perform information security audits, talks on ICT and support management of Telefonica systems such as CITRIX and ATIS. My main function was to give support to any failure of the information and communication systems of the company. Perform information security audits, talks on ICT and support management of Telefonica systems such as CITRIX and ATIS.
-
-
-
CodebladeRM
-
Provincia de Ica, Peru
-
CEO & Co-Founder
-
Jan 2017 - Dec 2018
Founder of the information and communication technologies community. Founder of the information and communication technologies community.
-
-
-
Ap Terranova Srl
-
Ica
-
IT chief
-
Jan 2017 - Dec 2017
I worked in the area of Servers and Telecommunications systems for the Call Center company. I was responsible for managing the company's information and implementing strategies and solutions in the asterisk and gnudialer teleinformatics servers. I worked in the area of Servers and Telecommunications systems for the Call Center company. I was responsible for managing the company's information and implementing strategies and solutions in the asterisk and gnudialer teleinformatics servers.
-
-
-
Sony
-
Entertainment Providers
-
700 & Above Employee
-
Security Research Engineer
-
Jul 2016 - Dec 2016
Sony USA Hall of Fame Member - Computer Security Researcher Sony USA Hall of Fame Member - Computer Security Researcher
-
-
-
Open Bug Bounty
-
IT Services and IT Consulting
-
1 - 100 Employee
-
Bug Hunter
-
Apr 2015 - Apr 2015
Freelance Freelance
-
-
Education
-
Universidad Privada San Juan Bautista
Ingeniería de Computación y Sistemas -
Universidad Nacional Mayor de San Marcos
Curso de Especialización, Ingenieria de Sistemas de Información -
Universidad Nacional Mayor de San Marcos
Curso de Especialización, Seguridad informática y Protección del comercio electrónico -
BSG Institute
Programas de Extensión -
Universidad César Vallejo
Diploma curso de certificación internacional cisco CCNA R&S MODULO I -
CEUPE - Centro Europeo de Postgrado y Empresa
Máster en Ciberseguridad, Seguridad informática y de sistemas