Projects

Cognito Authentication
View on GitHub
Data Pipeline For CSV Files
View on GitHub
Root Account Access Alarm
View on GitHub
Cloud Resume Challenge
View on GitHub
Disable IAM User Access Keys
View on GitHub
AWS Security Hub Compliance Dashboard
View on GitHub
KodeKloud AWS Labs Solutions
View on GitHub

Experience

Senior Security Consultant

NetSPI
  • Conducting penetration tests on web applications to uncover OWASP Top 10 vulnerabilities.
  • Performing comprehensive AWS assessments, identifying configuration weaknesses and IAM gaps.
  • Evaluating security of AWS environment, ensuring compliance with AWS security pillar.
  • Recommending solutions for enhancing IAM policies and enforcing granular access controls.
  • Performing security assessments of AWS infrastructure leading to minimized potential network attack vectors.
  • Creating comprehensive reports outlining vulnerabilities, their potential impact, and recommended remediations.
  • Collaborating across teams to assess new AWS services, evaluating security features and potential risks.
  • Leading AWS environment security assessments and mentoring new team members.
  • Staying updated on emerging threats and security vulnerabilities, consistently refreshing knowledge.
January 2022 - Present

Product Validation Engineer

Daimler Trucks North America
  • Developed and executed test plans for automotive powertrain systems to ensure compliance with and emissions requirements.
  • Conducted performance testing on powertrain systems to measure and analyze emissions characteristics.
  • Designed and implemented test procedures for powertrain calibration for adherence to regulatory standards.
  • Collaborated with cross-functional teams to define test requirements and specifications.
  • Conducted root cause analysis of powertrain issues to identify and resolve technical challenges.
  • Evaluated and validated new powertrain components, assessing their performance, and compatibility for integration into production vehicles.
  • Analyzed and interpreted test data, preparing comprehensive reports and summaries to communicate test results and findings to stakeholders.
  • Contributed to the development and improvement of testing methodologies, procedures, and tools.
  • Developed a web application for centralized management of test results using Python.
November 2018 - January 2022

Education

Portland State University

Bachelor of Science
Mechanical Engineering
September 2014 - June 2017

Skills

Programming Languages & Tools
Security Assessment Tools
  • Rhino Security Labs / pacu
  • Rhino Security Labs / IAMActionHunter
  • NCC Group / ScoutSuite
  • NCC Group / PMapper

Ivan Sidorchuk

Security Consultant · AWS · WaPen · ivan.m.sidorchuk@gmail.com

Hi, I'm Ivan, a Web Application Penetration Tester with a proven track record in AWS security. My engineering background has equipped me with a unique analytical mindset and problem-solving skills, which I've applied to the cybersecurity domain. I've successfully identified and mitigated risks in numerous web applications, ensuring they align with industry best practices. With my expertise, I've provided teams with actionable security recommendations, enhancing their cloud security posture. If you're looking to fortify your web applications and AWS environment, let's connect and make your digital assets more secure.

certified-ai-security-professional-caisp aws-certified-solutions-architect-associate aws-certified-security-specialty letsdefend-aws-certificate azure-administrator-associate comptia-security-ce-certification comptia-network-ce-certification