Ищу работу/Looking for a job

[expl0iter]

Всех приветствую! Оказался в сложной ситуации. В связи с чем ищу работу в сфере. Официально работал с КИИ, обеспечивал бэкапами парк АРМ на промышленных предприятиях по добыче нефти, разворачивал и настраивал CI/CD для разработчиков на базе Harbor, SonarQube, Jenkins, разворачивал, настраивал и поддерживал SIEM-систему сбора, мониторинга и корреляции логов и событий на базе Elasticsearch, Logstash, Kibana. Развивал практики DevOps/DevSecOps в крупных интеграторах: деплой кластеров k8s, работа с продуктами от TrendMicro DSSC, PaloAlto Networks (имеются сертификаты Cisco, IBM, PaloAlto CloudSec), настройка SAML-аутентификации.
Работал руководителем направления ИБ в нескольких банках, отвечал за направление рисков. Работал с файрволами от российского вендора (UserGate) Выстраивал и составлял модели угроз телеметрических систем удаленно управляемых автомобилей. Знаком с практиками GitOps, генерацией статических веб-сайтов (Jekyll, Hugo) Также занимался системным администрированием какое-то время, поэтому о наличии опыта с различными дистрибутивами вопросов возникнуть не должно. Знаком с OWASP Top10, Att&ck Mitre, OSINT, HUMINT, BSSIM, Cyber Kill Chain, методологии Lockheed Martin и Mitre, TTP (Tactics, Methods, Procedures), LPE linux.
Уже продолжительное время не могу найти официальную работу. Прошу помощи у сообщества, быть может, кому-то я окажусь полезным.
Связь со мной через jabber: advancedpersist@jbr.am
____________________________________

Greetings everyone! I've found myself in a life-changing situation. Therefore, I'm looking for a job in this field. I've officially worked with critical information infrastructure (CII), managing backups of automated workstations at industrial oil production facilities. I deployed and configured CI/CD for developers using Harbor, SonarQube, and Jenkins. I deployed, configured, and maintained a SIEM system for collecting, monitoring, and monitoring logs and events using Elasticsearch, Logstash, and Kibana. I developed a DevOps/DevSecOps practice at a major integrator: deploying K8S clusters, working with TrendMicro DSSC and PaloAlto Networks products (I have Cisco, IBM, and PaloAlto CloudSec certifications), and configuring SAML authentication.

I worked as the head of information security at several banks, conducting risk assessments. I worked with firewalls from a Russian vendor (UserGate). I built and supported threat models for telemetry systems in remotely controlled vehicles. I'm familiar with GitOps practices and generated static websites (Jekyll, Hugo). I've also spent some time exclusively performing system administration, so if you have experience with various distributions, you shouldn't have any problems. I'm familiar with OWASP Top 10, Att&ck Mitre, OSINT, HUMINT, BSSIM, Cyber Kill Chain, Lockheed Martin and Mitre methodologies, TTP (Tactics, Methods, Procedures), and LPE Linux.

I've been struggling to find official work for a long time. I'm asking for help from the community; maybe someone will find me in a role.

Communication with me: advancedpersist@jbr.am

 

[LeaksPlus]

can you implement/code zero days if provided (all info needed to implement) into weaponized exploits ?

 

[expl0iter]

can you implement/code zero days if provided (all info needed to implement) into weaponized exploits ?

We can move to jabber to discuss this issue.

But Ill tell you right away that it all depends on the description of the bug or vulnerability. It could be a logical error in a C-library, or it could be a network error in a router - we need to think about it and figure it out. I might need a reverse engineer to help.

 

[LeaksPlus]

We can move to jabber to discuss this issue.

But Ill tell you right away that it all depends on the description of the bug or vulnerability. It could be a logical error in a C-library, or it could be a network error in a router - we need to think about it and figure it out. I might need a reverse engineer to help.

Ok I messaged you from the jabber CrypterBTC@exploit.im more info there.