DeloitteSenior Consultant
Apr. 2015 - Sep. 2018Budapest, HungaryI joined Deloitte as a senior consultant in 2015. Deloitte was one of the leading consulting companies in cyber security. They had a big team of penetration testers, and I was curious about what can I learn at a consulting company. According to my position, I was responsible for technical leading the penetration testing projects and teaching the junior colleagues during the ongoing projects. We provide penetration testing services to clients all around the world. • I performed remote penetration testing of web applications and on-site testing of internally hosted web applications.
• I performed binary application-level penetration tests of managed (e.g. C#, VB) and unmanaged applications (e.g. C/C++).
• I participated in and performed hardware-level penetration tests of embedded/IoT/automotive devices, including reverse engineering device firmware and firmware extraction from hardware components.
• I performed internal and external infrastructure-level penetration testing for, e.g. financial clients to retain their PCI-DSS certificate.
• I performed penetration tests on critical infrastructures, like car and food manufacturing, chemical, energy, and oil and gas industries. To test their SCADA/DCS network and production lines.
• I participated in incident handling, forensics, and malware analysis projects.