Ayub Roti

Senior Application Security Engineer at Cellulant
  • Claim this Profile
Contact Information
us****@****om
(386) 825-5501
Location
Nairobi County, Kenya, KE
Languages
  • English Professional working proficiency
  • Swahili Professional working proficiency

Topline Score

Topline score feature will be out soon.

Bio

Generated by
Topline AI

You need to have a working account to view this content.
Join now
You need to have a working account to view this content.
Join now

Credentials

  • Nessus Fundamentals
    Tenable®, Inc.
    Sep, 2022
    - Nov, 2024
  • eJPT Junior Penetration Tester
    eLearnSecurity
    Feb, 2022
    - Nov, 2024
  • Linux Enterprise Professional Certification (LPIC-2)
    A Cloud Guru
    Jul, 2019
    - Nov, 2024
  • Ansible
    A Cloud Guru
    Jun, 2019
    - Nov, 2024
  • AWS Certified Cloud Practitioner
    Amazon Web Services (AWS)
    Oct, 2022
    - Nov, 2024
  • Certified Ethical Hacker (CEH)
    EC-Council
    May, 2019
    - Nov, 2024
  • AWS Certified Cloud Practitioner
    A Cloud Guru
  • Certified CompTIA Linux+ and LPIC-1: System Administrator
    A Cloud Guru

Experience

  • Cellulant
    • Kenya
    • Financial Services
    • 400 - 500 Employee
    • Senior Application Security Engineer
      • May 2023 - Present

      🔹 Identifying and addressing emerging business logic issues across various applications and devising strategic remediation plans 🔹 Conducting security-focused code reviews to evaluate static, dynamic, and runtime aspects 🔹 Collaborating with product, development, and operations teams on application security, including threat modeling and consultations 🔹 Supporting engineering teams in reproducing, triaging, and resolving application security vulnerabilities 🔹 Contributing to the development of security processes and automation tools to prevent security issues 🔹 Leading the implementation of automated security testing to ensure adherence to secure coding best practices 🔹 Serving as a Subject Matter Expert (SME) in application security, guiding and advising product development teams 🔹 Developing and disseminating secure application development training materials for internal product and engineering teams 🔹 Actively participating in and supporting initiatives to enhance the overall quality and security of our products Show less

  • Dimension Data
    • South Africa
    • IT Services and IT Consulting
    • 700 & Above Employee
    • Senior Information Security Engineer
      • Jan 2022 - May 2023

      My responsibility is to lead the evaluation of the security posture of Dimension Data clients by conduction discoveries, exploitations, and reporting vulnerabilities. I perform penetration testing and attack simulations on business-critical infrastructure systems, servers, networks, and applications to identify weaknesses and flaws and provide reports on findings and recommendations. I conduct vulnerability assessments and security audits to identify security risks and flaws within the clients’ network, systems, and applications. Main Duties AND Responsibilities: • Lead application (web and mobile) and infrastructure penetration testing on different platforms and technologies • Lead vulnerability assessments • Perform security configurations review • Where applicable, conduct real-time cyber-attacks using red team/blue team assessments • Conduct source code review to identify software program vulnerabilities and detect malware or malicious embedded code • Prepare a report on identified security vulnerabilities and possible recommendations to remediate the vulnerabilities • Collaborate with sales and solution architect teams to ensure cyber security solutions (penetration testing, vulnerability assessments and audit) are well-scoped and engineering the team is fit to handle the delivery • Remain up to date on emerging cyber security threats and vulnerabilities • Continuous professional development on relevant technologies • Mentor junior engineers Show less

  • Serianu Limited
    • Computer and Network Security
    • 1 - 100 Employee
    • Security Engineer
      • Jan 2018 - Jan 2022

      Red Teaming - Responsible for creating, standardizing and documenting Red Teaming Tactics, Techniques, and Procedures (TTPs). I use the MITRE ATT&CK Framework for adversarial tactics and techniques based on real-world observations. I am responsible for recommending mitigation and detection procedures for TTPs Penetration Testing and Vulnerability Assessment (VAPT) Testing - Responsible for creating, standardizing, automating and documenting VAPT methodologies. Responsible for carrying out automated and procedural Database, Application and Network security assessments. Responsible for creating issues repositories, trackers and remediation roadmaps of vulnerabilities. Responsible for writing and creating reports for technical and management audience Systems and Network Administration - Responsible for Installing and Configuring Linux &Windows Systems, Performing System Maintenance, Creating System Backups, Monitoring System Performance, Providing Technical Support and Guidance Show less

  • Wananchi Group
    • Telecommunications
    • 500 - 600 Employee
    • Network Operations Center Engineer
      • May 2017 - Dec 2017

      Network Monitoring using SolarWinds, Cacti, Observium. etc Hybrid Fiber Coax (HFC) administration and troubleshooting Gigabit Passive Optical Network (GPON) administration and troubleshooting Network and Systems administration automation Network Monitoring Automation using bash, python, and Perl Network Monitoring using SolarWinds, Cacti, Observium. etc Hybrid Fiber Coax (HFC) administration and troubleshooting Gigabit Passive Optical Network (GPON) administration and troubleshooting Network and Systems administration automation Network Monitoring Automation using bash, python, and Perl

  • Adrian Kenya
    • Kenya
    • Telecommunications
    • 200 - 300 Employee
    • Graduate Telecommunication Engineer
      • Aug 2016 - Dec 2016

      Fiber optics - FTTX installation,fiber transmission network maintenance and Link Creation Radio Network optimization - 2G,3G and 4G LTE network optimization. GSM power systems – Installation of GSM power system, Rectifier installation configuration TCP/IP configuration Fiber optic communication and link creation Engineering Design and Applications Very small aperture terminal operations Network routing and cabling Basic network configuration Switch configuration and port security LAN, WAN design and troubleshooting EIGRP Show less

  • Empire Microsystems Ltd
    • Kenya
    • Information Technology & Services
    • 1 - 100 Employee
    • Technical Intern
      • Jan 2013 - May 2013

      Wimax installation, commissioning,maintenance and optimisation Fixed data support services Wimax installation, commissioning,maintenance and optimisation Fixed data support services

Education

  • DEDAN KIMATHI UNIVERSITY OF TECHNOLOGY (DeKUT)
    Bachelor of Science (BS), Telecommunications and Information Engineering
    2011 - 2016
  • DEDAN KIMATHI UNIVERSITY OF TECHNOLOGY (DeKUT)
    Bachelor's degree, Electrical and Electronics Engineering
    2011 - 2016

Community

You need to have a working account to view this content. Click here to join now