Alex Shuchman - DevSecOps Architect, Phoenix

Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app

Work Background

Phoenix Holdings קבוצת הפניקסDevSecOps Architect

Mar. 2022

Migdal GroupApplication Security Expert & Cyber Security Architect

Oct. 2015 - Mar. 2022Petaẖ Tiqwa, Central, Israel

Migdal GroupCyber & Information Security Expert and Project Manager

Dec. 2014 - Jan. 2020Security architect: design & management of various projects. Understanding of financial region regulations and compliance programs (PCI,357,257). Designing complex security solutions Risk Management/Assessments Vulnerability Assessment & mitigation recommendation • Management of development and security projects throughout the project life cycle starting from initiation, planning, development and transfer to production in aspects of security (SDLC). • Writing presentations and guidance abilities at the information security field. • Writing security procedures and policies for the organisation. • Performing Security Code Review with Checkmarx. • Performing Web Services (SOA) penetration testing.• Performing Security Code Review • Expertise with many penetration testing & security tools. • Familiarity with a variety of types of attacks-Web Application Attack's. • Black Box, Grey Box & White Box pen-testing methodologies. • Work experience with : WAF - Imperva DB Firewall - Sentrigo DLP - Fidelis XML Firewall - IBM WebSphere DataPower Web Penetration Tools - IBM Appscan, Acunetix, Burp Suite Pro, Metasploit, Cobalt Strike Mobile Security Reversing Tools • Full control with Microsoft and Linux environments.

Discount BankInformation Security Expert

Apr. 2009 - Nov. 2014 • Setting of the bank's information security policies in accordance with relevant regulations (357, 27001, SOX, Bank of Israel procedures, Israel Privacy Law etc) • Performing of the bank's IT Risk Assessment projects and execution of tests for prevention of technological system hacking • Vast knowledge in network (infrastructure) & web application security. • Guidance and support secure application development. • Responsible for Assign the tasks of auditing& proposing solutions to improve current security levels. • Writing security procedures and policies for the organisation. • Writing presentations and guidance abilities at the information security field. • Performing penetration testing of various systems. • Working with: WAF - Imperva DLP - Fidelis • Expertise with many penetration testing & security tools. • Familiarity with a variety of types of attacks-Web Application Attack's. • Black Box, Grey Box & White Box pen-testing methodologies.