Profiles search
Andre C.
Cyber Security - Threat and Vulnerability Management
Des Moines, IA, United States
Details
Experience:
• Promoted from Associate Information Security Analyst
• Perform remediation, compliance, and web application penetration tests
• Review source code statically and dynamically, addressing concerns such as OWASP Top 10 security risks
• Collaborate with internal teams to eliminate identified threats and risks
• Identify and implement automation opportunities for security and compliance reporting, reducing time for threat hunting
2021 : Present
Wellmark Blue Cross and Blue Shield
Information Security Analyst (Threat and Vulnerability Management)
• Conducted internal and external network, web application, and host-based penetration tests within clients’ defined scope
• Communicated penetration test and risk analysis results to clients
• Advised clients on security best practices for remediating discovered security risks
2020 : 2021
RSM US LLP
Security, Privacy, and Risk Consultant (Penetration Tester)
Promoted from CSSM IT Support
2019 : 2020
Iowa State University
System Analyst
I had the opportunity to be a Teaching Assistant for three separate courses : Cyber Security Fundamentals, Cyber Security Tools and Concepts, and Introduction to Cryptography.
In this role I aided students' learning by creating vulnerable virtual machines and web applications that the students could attack and compromise. I also provided guidance throughout the week inside a lab environment where students could ask questions and receive additional aid to help establish fundamentals in cyber security and cryptography.
2018 : 2020
Iowa State University
Undergraduate Teaching Assistant
• Collaborated with Identity and Access Management to verify user accounts are terminated, enabled, or disabled in the established timeframe
• Parsed log files and present data to Audit and Compliance for review
• Implemented a Python linter to mitigate security and design flaws that appear in Ansible Playbooks during cloud development
2019 : 2019
Wellmark Blue Cross and Blue Shield
Information Security Cloud Engineering Intern
• Perform remediation, compliance, and web application penetration tests
• Review source code statically and dynamically, addressing concerns such as OWASP Top 10 security risks
• Collaborate with internal teams to eliminate identified threats and risks
• Identify and implement automation opportunities for security and compliance reporting, reducing time for threat hunting
2021 : Present
Wellmark Blue Cross and Blue Shield
Information Security Analyst (Threat and Vulnerability Management)
• Conducted internal and external network, web application, and host-based penetration tests within clients’ defined scope
• Communicated penetration test and risk analysis results to clients
• Advised clients on security best practices for remediating discovered security risks
2020 : 2021
RSM US LLP
Security, Privacy, and Risk Consultant (Penetration Tester)
Promoted from CSSM IT Support
2019 : 2020
Iowa State University
System Analyst
I had the opportunity to be a Teaching Assistant for three separate courses : Cyber Security Fundamentals, Cyber Security Tools and Concepts, and Introduction to Cryptography.
In this role I aided students' learning by creating vulnerable virtual machines and web applications that the students could attack and compromise. I also provided guidance throughout the week inside a lab environment where students could ask questions and receive additional aid to help establish fundamentals in cyber security and cryptography.
2018 : 2020
Iowa State University
Undergraduate Teaching Assistant
• Collaborated with Identity and Access Management to verify user accounts are terminated, enabled, or disabled in the established timeframe
• Parsed log files and present data to Audit and Compliance for review
• Implemented a Python linter to mitigate security and design flaws that appear in Ansible Playbooks during cloud development
2019 : 2019
Wellmark Blue Cross and Blue Shield
Information Security Cloud Engineering Intern
Company:
Wellmark Blue Cross and Blue Shield
About
I am a Cyber Security Professional with 5+ years of IT/Security experience, and my background includes both defensive and offensive security. I am open to opportunities where I can primarily leverage my offensive security skills to help clients and/or the business secure their assets in the Cloud and On-Premise.
Profile Photo
