Profiles search
Ryan Brown
Analyst at SecureState
Berea, OH, United States
Details
Experience:
• Created and maintained content for the library website utilizing programming languages such as HTML, CSS, JQuery and JavaScript. • Acted as a liaison between the organization and third party technical vendors.• Worked with fellow staff members within project teams to ensure projects were on track.• Supervised lower level staff.• Provided standard help desk support and answer questions of technical essence for staff members and patrons typically via face-to-face.• Performed video production and photo editing of web related content.• Provided Audio/Visual support for library programs.
2014 : 2015
Hudson Library and Historical Society
IT Technician II
• Performed website content updates.• Performed programming to assist in the development of compliance and regulatory related product models utilizing VBA. • Delivered end-user support to internal staff as well as clients via phone, remotely and face-to-face.• Performed data cleansing of record sets prior to its implementation into the organizations CRM.
2013 : 2014
Young and Associates Inc.
IT Support
• Perform penetration tests against web applications, web services and API’s to assist clients in identifying security gaps in their software development efforts. • Meet with clients and developers to gain a better understanding of the internal workings of applications undergoing testing, as well as deliver a better understanding of vulnerability findings.• Provide tactical recommendations to clients, that will ultimately help them strengthen their security posture.
2017 :
SecureState
Research Analyst/Red Team Focused Information Security Analyst
• Performed freelance Web Application Penetration Tests for a variety of customers in the private and public sector.• Worked with fellow co-founder to obtain the startup capital necessary to begin the development process on an innovative software solution.
2016 :
Owl Eye Security, LLC
President
• Performed penetration tests on corporate web applications utilizing various automated and manual testing techniques.• Utilized the OWASP testing guide v 4 checklist as test case criteria for manual vulnerability identification, primarily using Burp Suite.• Ran dynamic scans against target applications.• Scanned HTTP Requests and analyzed responses to identify deviations in application behavior.• Created reports on vulnerabilities identified during testing procedures.• Met with developers to gain a better understanding of the application architecture, as well as communicate vulnerability findings and outline target remediation dates.• Performed vulnerability assessments against various hosts within the company’s network infrastructure.• Wrote a Secure-SDLC, that outlines a methodological approach to secure software development practices, enabling flexibility contingent on project and business needs.• Evaluated industry accepted practices and procedures associated with the integration of security within each phase of the SDLC. • Performed network monitoring and identified anomalies by leveraging the organizations SIEM and logging solutions.• Reviewed firewall and B2B VPN modification requests, evaluating risk associated with production implementation.• Leveraged various resources in the information security community to stay current on trending threats and stay up to date on best practices.
2015 : 2016
Windstream
Information Security Analyst
2014 : 2015
Hudson Library and Historical Society
IT Technician II
• Performed website content updates.• Performed programming to assist in the development of compliance and regulatory related product models utilizing VBA. • Delivered end-user support to internal staff as well as clients via phone, remotely and face-to-face.• Performed data cleansing of record sets prior to its implementation into the organizations CRM.
2013 : 2014
Young and Associates Inc.
IT Support
• Perform penetration tests against web applications, web services and API’s to assist clients in identifying security gaps in their software development efforts. • Meet with clients and developers to gain a better understanding of the internal workings of applications undergoing testing, as well as deliver a better understanding of vulnerability findings.• Provide tactical recommendations to clients, that will ultimately help them strengthen their security posture.
2017 :
SecureState
Research Analyst/Red Team Focused Information Security Analyst
• Performed freelance Web Application Penetration Tests for a variety of customers in the private and public sector.• Worked with fellow co-founder to obtain the startup capital necessary to begin the development process on an innovative software solution.
2016 :
Owl Eye Security, LLC
President
• Performed penetration tests on corporate web applications utilizing various automated and manual testing techniques.• Utilized the OWASP testing guide v 4 checklist as test case criteria for manual vulnerability identification, primarily using Burp Suite.• Ran dynamic scans against target applications.• Scanned HTTP Requests and analyzed responses to identify deviations in application behavior.• Created reports on vulnerabilities identified during testing procedures.• Met with developers to gain a better understanding of the application architecture, as well as communicate vulnerability findings and outline target remediation dates.• Performed vulnerability assessments against various hosts within the company’s network infrastructure.• Wrote a Secure-SDLC, that outlines a methodological approach to secure software development practices, enabling flexibility contingent on project and business needs.• Evaluated industry accepted practices and procedures associated with the integration of security within each phase of the SDLC. • Performed network monitoring and identified anomalies by leveraging the organizations SIEM and logging solutions.• Reviewed firewall and B2B VPN modification requests, evaluating risk associated with production implementation.• Leveraged various resources in the information security community to stay current on trending threats and stay up to date on best practices.
2015 : 2016
Windstream
Information Security Analyst
Company:
SecureState
About
I currently possess 5 years of hands on working experience in various areas within the field of information technology, as well as years of IT oriented education with a concentration in Digital Science. I possess the communication skills necessary to facilitate a mutual understanding on technological concepts between technical and non-technical personnel. I have performed several penetration tests on web-based applications, that possess truly robust and complex functionality. I have worked with various enterprise logging systems and SIEM solutions to identify, track, and mitigate potential threats.
Profile Photo
