Fatih Bülbül

During my internship, I supported the company’s information technology operations and successfully carried out the following tasks:

• Printer installations and server disk replacement operations.
• Upgrading and maintaining VMware ESX servers.
• Using tools such as Nmap, Burp Suite, Acunetix, Metasploit, Nessus, and OpenVAS during local network penetration testing.
• Writing technical reports and communicating technical processes to clients.
• Providing helpdesk support to resolve users’ technical issues.

This experience allowed me to gain hands-on knowledge of technical infrastructures and develop competence in corporate IT processes.

In this position, I provided comprehensive cybersecurity consultancy services to clients. My duties and responsibilities included:

• Conducting extensive web penetration tests, local network penetration tests, and Wi-Fi penetration tests to identify and report security vulnerabilities within clients' systems.
• Performing the setup and hardening of systems such as domains, switches, and firewalls.
• Working on infrastructures including Fortigate and Sophos firewalls, Active Directory, file servers, and Veeam backup systems to deliver tailored solutions for clients.
• Re-performing penetration tests after vulnerabilities had been remediated to verify the effectiveness of the implemented security measures.

Through these experiences, I gained specialized expertise in the setup and management of security infrastructures.

While working at Newex Security, I was actively involved in source code analysis, web application penetration testing, and mobile penetration testing. I gained extensive knowledge and hands-on experience in these areas. Additionally:

• I conducted penetration tests targeting local networks, Wi-Fi, denial-of-service attacks, and web-based systems. Within the team, I was responsible for coordinating these tests and directly communicating with clients when any vulnerabilities were identified.
• I worked on deploying honeypot systems to detect potential cyber threats and develop defense mechanisms against them.
• I enhanced my skills in cybersecurity tool development by learning Python and Go, and I created custom tools tailored to specific security scenarios.
• I completed the Certified Red Teamer (MRT) program by Mosse Cyber Security, receiving advanced red team training and gaining the ability to develop my own exploits.

Through these experiences, I have deepened my expertise in the field of cybersecurity and continue to deliver innovative and effective solutions to projects.