Oct. 2015 - Mar. 2022Petaẖ Tiqwa, Central, Israel
Migdal GroupCyber & Information Security Expert and Project Manager
Dec. 2014 - Jan. 2020Security architect: design & management of various projects.
Understanding of financial region regulations and compliance programs (PCI,357,257). Designing complex security solutions
Risk Management/Assessments
Vulnerability Assessment & mitigation recommendation
• Management of development and security projects throughout the project life cycle starting from initiation, planning, development and transfer to production in aspects of security (SDLC).
• Writing presentations and guidance abilities at the information security field.
• Writing security procedures and policies for the organisation.
• Performing Security Code Review with Checkmarx.
• Performing Web Services (SOA) penetration testing.• Performing Security Code Review
• Expertise with many penetration testing & security tools.
• Familiarity with a variety of types of attacks-Web Application Attack's.
• Black Box, Grey Box & White Box pen-testing methodologies.
• Work experience with : WAF - Imperva DB Firewall - Sentrigo DLP - Fidelis XML Firewall - IBM WebSphere DataPower Web Penetration Tools - IBM Appscan, Acunetix, Burp Suite Pro, Metasploit, Cobalt Strike Mobile Security Reversing Tools
• Full control with Microsoft and Linux environments.
Discount BankInformation Security Expert
Apr. 2009 - Nov. 2014
• Setting of the bank's information security policies in accordance with relevant regulations (357,
27001, SOX, Bank of Israel procedures, Israel Privacy Law etc)
• Performing of the bank's IT Risk Assessment projects and execution of tests for prevention of
technological system hacking
• Vast knowledge in network (infrastructure) & web application security.
• Guidance and support secure application development.
• Responsible for Assign the tasks of auditing& proposing solutions to improve current security levels. • Writing security procedures and policies for the organisation.
• Writing presentations and guidance abilities at the information security field.
• Performing penetration testing of various systems. • Working with: WAF - Imperva DLP - Fidelis
• Expertise with many penetration testing & security tools.
• Familiarity with a variety of types of attacks-Web Application Attack's.
• Black Box, Grey Box & White Box pen-testing methodologies.
QualiTest GroupSenior Qa Software Tester
Jan. 2007 - Jan. 2009Israel
Intch is a Professional Networking App for the Future of Work