Summary
- Motivated self-starter and continuous learner. Made the move from quality assurance to cybersecurity by studying on the job.
- Experienced in managing several bug bounty programs, performing manual web application penetration testing, and configuring automated security vulnerability scans (SAST/DAST) at scale.
- Strong background in automating security processes via Python and Bash scripting.
Skills & Certifications
- Top Skills: Application security program management, penetration testing, quality assurance
- Languages: English (Native), French (Limited Working)
- Certifications: CISSP, AWS Certified Solutions Architect, CompTIA Cybersecurity Analyst (CySA+), CompTIA Pentest+, CompTIA Security+, CompTIA Project+
Experience
Samsung Ads
Application Security Technical Lead | Sep 2021 - Present
- Implemented automated static analysis, secret scans, and SCA checks on pull requests to prevent security issues.
- Deployed public-facing attack surface monitoring to prioritize vulnerability resolution.
- Implemented program maturity model to measure progress and identify key processes and practices to be rolled out.
Application Security Analyst | Jan 2020 - Sep 2021
- Implemented automated SAST and DAST scans on deployment, enabling early detection of vulnerabilities.
- Developed secure coding guidelines and trained over 100 engineers.
MindGeek
Web Application Security Analyst | Oct 2016 - Dec 2019
- Managed bug bounty programs for multiple brands, conducting triage, providing guidance to engineers on how to apply fixes, and testing both vulnerabilities and their fixes.
- Conducted manual penetration tests against various sites and supporting infrastructure.
- Delivered general security training for new hires and secure coding raining for engineers.
Education
Champlain College - Computer Systems Networking and Telecommunications (2018)
Dawson College - Creative Arts Literature & Languages (2010 - 2011)