NICK KELLEY
Penetration Tester
Remote
Summary
Experienced Security Consultant and Penetration Tester with a proven track record of planning and conducting comprehensive security assessments across the UK, Europe, and the US. Specialized in web application and web services testing, internal and external infrastructure assessments (including PCI and segmentation testing), Active Directory security, source code reviews, and in-depth evaluations of cloud/server configurations, firewall setups, and container environments such as Kubernetes and Docker. Known for a disciplined, detail-oriented approach, strong leadership skills, and the ability to thrive in diverse and remote work environments.
Overview
7
7
years of professional experience
2
2
Languages
Work History
Security Consultant
NCC Group
04.2022 - Current
- Experienced Security Consultant/Penetration Tester with a track record of planning and conducting Security Assessments across the UK/europe/US, specializing in web applications/web services, Internal/External Infrastructure (PCI/segmentation testing), Active Directory, Source code review, cloud/server configuration reviews, firewall reviews and container (Kubernetes/docker) reviews.
- Skilled in creating comprehensive technical reports and presenting findings to both technical and non-technical audiences
- Engaged in both presales activities and leveraging my expertise as a pentester, I contribute to scoping various projects, encompassing web applications/apis and internal/external infrastructure assessments
- My role involves collaborating closely with clients to understand their requirements and tailor solutions that align with their specific needs and objectives
- By leveraging my experience and technical proficiency, I play a key role in shaping project scopes and ensuring that our services effectively address clients' security concerns and challenges
- Proficient in advising clients on mitigation strategies and coordinating internal resources to ensure efficient project delivery
- Adept at mentoring and training junior staff members and leading multiple assessments, ranging from small to medium, to successful completion
- Contributed to a Wiki to share knowledge on various topics with other employees
Security Consultant/Penetration Tester
HackerOne
05.2018 - Current
- Experienced Security Consultant/Penetration Tester with a proven track record of actively participating in Public/Private Bug Bounty Programs
- Skilled in identifying and exploiting vulnerabilities in a variety of systems and applications, including web applications, web services, and infrastructure
- Adept at utilising a range of tools and techniques to uncover security weaknesses and provide actionable recommendations for mitigation
Junior Security Consultant
NCC Group
06.2021 - 04.2022
- Having undergone a comprehensive 6-month graduate program at NCC Group, I had the privilege of learning from industry experts and completing courses covering a range of topics, including web application/API security, network infrastructure, and build review methodologies
- These courses equipped me with a solid foundation in cybersecurity principles and practical skills essential for conducting thorough security assessments
- Under the guidance of seasoned professionals, I gained invaluable hands-on experience and developed a deep understanding of the intricacies involved in assessing and securing various digital assets, including web applications, APIs, and network infrastructures
- Received comprehensive training in these areas and shadowed senior consultants on various jobs to gain practical experience
- Skilled in contributing to technical reports and presenting findings to clients
Director/Consultant
Procsecure LTD
05.2018 - 06.2019
- Experienced Security Consultant/Penetration Tester with a background in running a small Consultancy business specializing in Web Application Assessments
- Skilled in conducting independent assessments, scoping client/customer assessments, and providing detailed reports to clients
Skills
Web application Testing
Web Services/API testing
PCI Testing
Infrastructure Testing
Configuration Reviews
Details - Location
Remote, UK,Europe,US
Accomplishments
I’ve been recognized in the Hall of Fame programs of major tech companies like Apple, Microsoft, Sony, and CheckPoint for finding and reporting critical security vulnerabilities. These recognitions highlight my ability to identify risks and help protect millions of users by improving the security of their platforms. These acknowledgments reflect my commitment to ethical hacking and working with organizations to make their systems safer for everyone.
Timeline
Security Consultant
NCC Group
04.2022 - Current
Junior Security Consultant
NCC Group
06.2021 - 04.2022
Security Consultant/Penetration Tester
HackerOne
05.2018 - Current
Director/Consultant
Procsecure LTD
05.2018 - 06.2019
Similar Profiles
Erica WhelanErica Whelan
Senior Project Manager/Program Manager at NCC GroupSenior Project Manager/Program Manager at NCC Group
Tara Goodwin-RuffusTara Goodwin-Ruffus
Sr. Project Manager at NCC GroupSr. Project Manager at NCC Group
Randy RodriguezRandy Rodriguez
Senior Security Consultant at NCC GroupSenior Security Consultant at NCC Group
Sheldon RobertsSheldon Roberts
Account Manager at NCC GroupAccount Manager at NCC Group
Mara CovingtonMara Covington
Quality Control Specialist at Resolution Life InsuranceQuality Control Specialist at Resolution Life Insurance