joSePH arellano

Cybersecurity Engineer / Consultant / Pentester

A results-driven Cybersecurity Engineer and Penetration Tester with a proven track record of conducting comprehensive security assessments. Educated at the Cybersecurity Boot Camp at the University of California, Los Angeles, I bring a unique blend of technical expertise and genuine, compassionate, and humorous approach to my work.

I thrive on assessing and purposefully exploiting computer systems to detect and correct vulnerabilities in web apps, APIs, and cloud systems. Committed to staying ahead of evolving threats, I bring a keen eye for customer and organizational standards.

Professional Experience

Penetration Tester | Aerstone

Remote | Aug 2022 - April 2024

  • Conduct risk assessments, vulnerability analysis, and ethical hacking to fortify client cybersecurity.

  • Leverage expertise in Parrot, Windows, Mac, Kali Linux, and more for comprehensive penetration testing.

  • Collaborate remotely to enhance system security, detect weaknesses, and implement corrective measures.

Cybersecurity Engineer | Ronin_Protocol

Remote | Apr 2022 - PRESENT

  • Assessed security systems, conducting purposeful exploitation to detect and correct weaknesses.

  • Applied skills in Vulnerability Assessment, Threat Analysis, and Penetration Testing to fortify systems.

  • Operated as a freelance cybersecurity professional, ensuring the integrity of organizational security.

Security Researcher | Bug-crowd

Sep 2020 - Aug 2022 | 2 yrs

  • Performed web application security assessments and API testing for select business applications.

  • Contributed to Bug-crowd's mission by identifying vulnerabilities and enhancing overall security.

  • Gained experience in the freelance penetration testing landscape.

Associate Penetration Tester | DOT Security | Impact Networking

Los Angeles Metropolitan Area | Oct 2021 - Feb 2022 | 5 mos

  • Collaborated with the security team to assess and fortify organizational systems.

  • Conducted penetration testing activities, ensuring the security of business web applications.

  • Contributed to the improvement of security protocols within the company.

Skills

  • Vulnerability Assessment

  • Parrot OS | Kali Linux

  • Windows | Mac

  • Threat Analysis

  • Risk Assessment

  • Penetration Testing

  • Ethical Hacking

  • Web Application Security Assessment

  • API Testing

  • Cloud Assessments

    • / AWS / AZURE / GCP

  • Assessor / Fed Ramp & Cloud Compliance Cyber-security Engineer

Education and certs:

Cybersecurity Boot Camp | University of California, Los Angeles

Anticipating and Preparing for Russian Cyber Activity

Cyber Threat Hunting Level 1

Purple SANS Summit 2021

AWS Cloud Practitioner