Experience

AlfaStrakhovanie

• Insurance
• 200 - 300 Employee

• Lead Application Security Engineer

  • Apr 2023 - Present

  - Incident investigation; - Analysis of threats and security of web and mobile applications (Application Security, SAST / DAST / IAST); - Internal and external penetration testing of corporate systems (black box, gray box, white box); - Incident investigation; - Analysis of threats and security of web and mobile applications (Application Security, SAST / DAST / IAST); - Internal and external penetration testing of corporate systems (black box, gray box, white box);



FREE2EX

• Cyprus
• Financial Services
• 1 - 100 Employee

• Penetration Tester

  • Mar 2023 - Apr 2023



Bank Otkritie Financial Corporation

• Russian Federation
• Banking
• 400 - 500 Employee

• Application Security Engineer

  • Nov 2022 - Mar 2023

  - Analysis of threats and security of web, mobile applications and privacy (Application Security, SAST / DAST / IAST); - Internal and external penetration testing of corporate systems (black box, gray box, white box); - Threat hunting; - Red team. - Analysis of threats and security of web, mobile applications and privacy (Application Security, SAST / DAST / IAST); - Internal and external penetration testing of corporate systems (black box, gray box, white box); - Threat hunting; - Red team.



AlfaStrakhovanie

• Insurance
• 200 - 300 Employee

• Application Security Engineer

  • Jul 2021 - May 2022

  - Security analysis of IT infrastructure elements; - Participation in penetration testing; - Conducting a security analysis of the company's wireless networks; - Conducting an extended security assessment of IT processes and web applications; - Working and maintenance of information security scanners (Nessus, acunetix, nmap, redcheck); - Presentation of the results of the work done. - Security analysis of IT infrastructure elements; - Participation in penetration testing; - Conducting a security analysis of the company's wireless networks; - Conducting an extended security assessment of IT processes and web applications; - Working and maintenance of information security scanners (Nessus, acunetix, nmap, redcheck); - Presentation of the results of the work done.



GLEG Ltd

• Dubna, Moscow, Russia

• Penetration Tester

  • May 2019 - May 2022

  - Participation in penetration testing; - Search for vulnerabilities in web applications (IoT, SCADA, agora); - Writing exploits for frameworks - Immunity Canvas, Core Impact, EAST Freamwork. - Participation in penetration testing; - Search for vulnerabilities in web applications (IoT, SCADA, agora); - Writing exploits for frameworks - Immunity Canvas, Core Impact, EAST Freamwork.