Open to opportunities

Yamin Oraibe

@yaminoraibe

Message

Cybersecurity specialist skilled in penetration testing and vulnerability assessment.

Jordan

Message

What I'm looking for

I am looking for a role that challenges me and allows for continuous learning in cybersecurity.

I am a dedicated cybersecurity specialist with a degree in Cybersecurity and extensive experience in penetration testing, bug hunting, and ethical hacking. My expertise lies in identifying security vulnerabilities, analyzing threats, and implementing effective remediation strategies. I have a strong proficiency in using both static and dynamic analysis tools to evaluate code security, and I am committed to advising development teams on best practices for secure software development.

Throughout my career, I have successfully identified over 60 vulnerabilities across 25+ organizations on platforms like Bugcrowd and Hackerone, earning recognition from industry leaders such as Western Union, Sony, and Cisco. My work has included analyzing security risks and providing actionable recommendations to enhance application security. I thrive in challenging environments and have consistently ranked among the top competitors in various Capture the Flag (CTF) competitions, showcasing my problem-solving skills and technical expertise.

In addition to my professional experience, I have developed proprietary security tools and frameworks that streamline vulnerability detection and improve security assessment efficiency. I am passionate about continuous learning and staying updated with the latest trends in cybersecurity, and I am eager to contribute my skills to a forward-thinking organization.

Experience

Work history, roles, and key accomplishments

Current

Information Security Clerk

Current

Bank of Jordan

Oct 2024 - Present (10 months)

Conducted internal and external penetration tests to identify vulnerabilities in the bank's infrastructure and applications. Supported security audits and risk analysis to ensure compliance with industry standards.

Penetration Testing Security Auditing Risk Analysis Infrastructure Security Application Security Compliance Vulnerability Management

Current

Web Security

Current

Bugcrowd and Hackerone

Jan 2022 - Present (3 years 7 months)

Identified over 60 vulnerabilities in 25+ organizations, including SQLi, Stored and Reflected XSS, CSRF, leaked Information, and BAC. Recognized by leading companies such as Western Union, Sony, AT&T, Cisco, and Lenovo for successful bug submissions.

Web Security API Security SQL Injection XSS)CSRF Vulnerability Assessment Bug Bounty Penetration Testing Risk Analysis

Current

CTF Competitor

Current

TryHackMe, VulnHub, PentesterLab

Competed in various Capture the Flag (CTF) competitions, consistently ranking in top positions with my team. Demonstrated expertise in solving complex security challenges and designed and developed challenges for YUCTF, focusing on web security.

CTF Web Security Problem Solving Team Collaboration

Education

Degrees, certifications, and relevant coursework

Yarmouk University

Bachelor of Cybersecurity, Cybersecurity

Activities and societies: Competed in various Capture the Flag (CTF) competitions, consistently ranking in top positions with my team. Demonstrated expertise in solving complex security challenges on platforms like TryHackMe, VulnHub, and PentesterLab. Designed and developed challenges for YUCTF, focusing on web security.

Graduated in 2024 with a Bachelor of Cybersecurity. Focused on identifying security vulnerabilities, analyzing threats, and implementing effective remediation strategies. Adept at using static and dynamic analysis tools to evaluate code security and advising development teams on best practices for secure software development.