Ahmed Ramadan
Security Engineer
Summary
Driven and detail-oriented Security Engineer with 2+ years of experience specializing in application security. Adept at identifying, exploiting, and mitigating vulnerabilities across web applications through penetration testing, security code reviews, and threat modeling. Skilled in developing Python tools to automate security tasks, improving efficiency in vulnerability scanning and reporting. Recognized for contributions to bug bounty programs, uncovering critical security flaws and earning rewards. Committed to enhancing security best practices and fostering a proactive approach to application security.
Overview
2
2
years of professional experience
2
2
Languages
Work History
Security Engineer
Deepstrike.io
12.2023 - Current
Here’s a description you can use for your Security Engineer role at Deepstrike:
Job Description:
As a Security Engineer at DeepStrike, I am responsible for ensuring the security of the company's applications and infrastructure. I specialize in identifying vulnerabilities and managing security risks by performing penetration testing and secure code reviews. I collaborate closely with development teams to enforce best practices for secure coding and actively contribute to threat modeling efforts.
Key responsibilities and achievements:
- Conducted thorough penetration testing on web applications, uncovering and mitigating critical vulnerabilities, including IDOR, XSS, SQL injection, CSRF and logic vulnerabilities.
- Developed automated security tools using Python to streamline vulnerability scanning and reporting, resulting in a 30% reduction in manual effort.
- Led security audits and code reviews for newly developed features, ensuring compliance with security best practices and mitigating potential risks before deployment.
- Collaborated with cross-functional teams to identify, assess, and address application security risks and weaknesses.
Freelancer
HackerOne
09.2023 - Current
As a Freelancer on HackerOne, I engage in bug bounty programs to identify and report security vulnerabilities in web applications. My work spans various platforms, where I contribute to the security community by uncovering issues like XSS, SQL injection, and Privilege Escalation. I’ve earned rewards for multiple high-impact vulnerabilities across a range of programs and continue to improve my skills by collaborating with developers to mitigate risks effectively.
Key Highlights:
- Participated in multiple bug bounty programs, identifying critical vulnerabilities and earning recognition and rewards.
- Consistently submitted high-quality findings, with several vulnerabilities.
Skills
- Application Security (including vulnerability management and risk assessment)
- Penetration Testing (Web Apps, APIs, Networks)
- Bug Bounty Hunting (HackerOne, Bugcrowd)
- Python (automation, scripting, tool development)
Static & Dynamic Code Analysis ( OWASP ZAP, Burp Suite)
- Security Audits (code reviews, vulnerability scanning)
- Vulnerability Exploitation & Remediation
- Security Documentation & Reporting (creating clear and actionable reports)
Timeline
Security Engineer
Deepstrike.io
12.2023 - Current
Freelancer
HackerOne
09.2023 - Current
Similar Profiles
Cebanu DumitritaCebanu Dumitrita
Security Engineer at ATOSSecurity Engineer at ATOS
Gilli Anne BautistaGilli Anne Bautista
Security Engineer at RT&Co. Cybersecurity, Inc.Security Engineer at RT&Co. Cybersecurity, Inc.
Scott SuterScott Suter
Security Engineer at Modern 42Security Engineer at Modern 42
Nil Hayat YöneyNil Hayat Yöney
Security Engineer at About You Holding X ZalandoSecurity Engineer at About You Holding X Zalando
Akash Kumar ShrivastavaAkash Kumar Shrivastava
Senior Security Analyst at TrinetSenior Security Analyst at Trinet