Open to opportunities

Matteo Conti

@matteoconti

Message

Penetration tester specializing in web application and network assessments with CREST and OSCP.

Sri Lanka

Message

What I'm looking for

I'm seeking remote penetration testing roles focused on web and network assessments for large enterprises, where I can run ISO/IEC 17025-aligned vulnerability assessments, expand technical skills, and contribute to collaborative security teams.

I have over 15 years in IT and discovered a passion for penetration testing, earning the OSCP in January 2020 and working as a penetration tester since March 2020, primarily focused on web applications and remote engagements from Sri Lanka.

I hold CREST CPSA and CRT (January 2023) and Hack The Box CBBH (June 2025), and I bring hands-on experience in network testing, penetration testing automation, Python/C#/bash scripting, ISO/IEC 17025-aligned vulnerability assessments, and creating virtual labs for complex enterprise testing.

Experience

Work history, roles, and key accomplishments

Current

Penetration Tester

Current

Ts-Way Srl

Nov 2021 - Present (3 years 9 months)

Perform web application and network penetration tests and deliver ISO/IEC 17025-compliant vulnerability assessments for large enterprise clients to improve security posture.

Penetration Testing Vulnerability Assessment ISO IEC 17025 Burp suite OWASP Python BASH Virtual Lab Creation

Penetration Tester

Deltaspike

Mar 2020 - Nov 2021 (1 year 8 months)

Conducted web application and network penetration tests and built virtual labs to reproduce and validate findings for clients while working remotely and on-site.

Penetration Testing Virtual Lab Creation Burp suite Python BASH Reporting

Software Assistant

Millenium SRL

Jan 2009 - Mar 2020 (11 years 2 months)

Provided helpdesk, installations, and classroom training for accounting and payroll software, resolving customer issues and supporting deployments from 2009 to 2020.