top of page

Are you an A+ Series startup?     Get first talent FREE OF CHARGE!     Check if you qualify →

 

Hire as Freelancer

22 €

/hour

Not available

or

Hire as Employee

3000 €

/month

$

TALENT-25624

Yunus

Cybersecurity Analyst

Turkey

Seniority

Middle

Language skills

English B1

Hire employees directly using our Employer Of Record & Payroll tool:
- Recruitment fee, talent's one month salary
- EOR €199/month

Skills

api testing cybersecurity web testing mobile testing penetration testing

Industry

IT Services and IT Consulting Information Technology & Services Computer and Network Security

Professional Summary

Candidate brings a robust background with 3 years of experience specializing in penetration testing, particularly on the offensive side. In terms of technical proficiency, the candidate demonstrates proficiency in web and mobile security, with a specific focus on Android platforms. They have also delved into the intricacies of API security, showcasing a comprehensive understanding of the modern technology landscape. The candidate's versatility extends to unique areas such as game security and blockchain security testing, demonstrating a willingness to tackle emerging challenges in the cybersecurity domain. With 3 years dedicated to web and API security, they have built a solid foundation in identifying and addressing vulnerabilities in these crucial areas. Candidate has accumulated over a year of experience in Android testing, further enhancing their capabilities in mobile security assessments. candidate has engaged in penetration testing, assumed roles as a security manager, and demonstrated proficiency in reporting and documentation. Their involvement in the ISO certification process highlights a commitment to adherence to international security standards. Additionally, the candidate is adept at creating tickets and managing tasks efficiently, contributing to a streamlined and organized workflow. 

Video of Talent

Portfolio

Education

Dokuz Eylül University / Electrical and Electronics Engineering (Undergraduate)

Sep 2015 – Jul 2022

Certifications and Trainings

  • CompTIA PenTest+ PT1-002

  • eMAPT

Experience

Security Engineer / Cyrex Ltd 

Feb 2022 – Aug 2023


  • Conducted white-grey-black box penetration tests on web and mobile applications, games, and APIs, identifying key vulnerabilities and security flaws

  • Performed comprehensive static (source code review) and dynamic analyses, utilising tools like SonarQube and open-source software for secret detection and Software Composition Analysis (SCA).

  • Worked closely with development teams to address vulnerabilities and strengthen overall security posture.

  • Specialised in smart contract security, conducting audits and assessments to ensure the integrity of blockchain implementations, including gas optimisation for cost efficiency.

  • Developed expertise in blockchain security principles, addressing unique challenges and vulnerabilities in this technology. Conducted both audits and penetration tests on blockchain-based applications.

  • Provided recommendations and best practices for secure smart contract development, contributing to enhanced blockchain security efforts.

  • Played a pivotal role in reviewing and refining security reports for customer delivery, ensuring accuracy and clarity. Established report writing and reviewing guidelines to maintain high-quality standards.

  • Led the organisation's ISO 27001 certification process, managing tasks and aligning processes for successful audits.

  • Initiated and spearheaded internal process improvements, boosting operational efficiency and promoting a culture of continuous improvement in security practices.




Security Engineer; Penetration Tester / Purplebox, Inc. 

Aug 2020 – Dec 2021


  • Vulnerability Assessment | Web Application Pentest | Network Pentest | Technical and Informational Reporting

  • Conducted vulnerability assessments and penetration tests on web applications and network infrastructures, especially on healthcare organisations

  • Utilised tools like Burp Suite, Netsparker, and Nessus for system and network scanning, identifying vulnerabilities

  • Prioritised and reported vulnerabilities based on severity and exploitation likelihood, enhancing system security

  • Executed targeted penetration tests to deeply analyse and address specific security vulnerabilities

  • Collaborated with IT teams to implement security enhancements and risk mitigation strategies

  • Developed and presented comprehensive security reports to both technical and non-technical stakeholders

  • Documented lessons learned and best practices, contributing to the organisational knowledge base

  • Facilitated client meetings to discuss and clarify security findings and resolutions




Electronics Engineer / Tork Robotik 

Internship

Jul 2019 – Sep 2019


  • Embedded Software | Circuit Analysis & Simulation | PCB & Circuit Design

Projects

Can’t find the needed talent?

 
Tekla get in touch banner
bottom of page