Javier Carlos Martinez Ayala

Pentester & SecOps — Copenhagen | Remote/On-site

I ethically find and validate vulnerabilities in apps and networks—and put defensive controls in place so risk keeps going down. Hands-on experience (labs + real projects), a 4-month bootcamp, CEH, eJPTv2 and ~1 year in IT.

Core services

• Web/API & Network Pentests: OWASP Top 10, business-logic flaws, internal/external network paths. Executive summary + technical report with PoCs, clear remediation, and retest.
• Hardening & Firewalls: CIS/NIST baselines, Linux/Windows hardening, segmentation; rules design/review (iptables/UFW/Windows Firewall, cloud SGs).
• SIEM & Detection: log onboarding (servers/endpoints/firewalls), use-cases & alerts, dashboards, basic threat hunting (ELK/Graylog/Wazuh/Splunk).
• Continuous Controls: vulnerability assessment & CVSS prioritization, patch plans, least privilege, measurable security KPIs.

Stack & approach

Kali, Nmap, Burp Suite, Metasploit, Gobuster, Nikto, Wireshark; Linux/Bash; clear communication for technical and non-technical stakeholders.

Languages: Spanish & English • Timezone: CET.

Let’s scope a focused assessment and a practical hardening plan for your environment.