Jinny Ramsmark

070XXXXXXX (new number coming) ยท jinny@witches.se

I am an experienced Cyber Security Consultant. I have reviewed networks, source code, and running applications for ten years profesionally; even more if I count all the time I have spent on my free time before in my teens. I breathe security and finding ways to breach a system is one of my great passions. My methods have developed from industry standards over the years and I have almost never written an empty report for a client.


Experience

Senior Security Consultant

Defensify AB

I mainly do penetration tests of applications (both web, desktop clients, and apps), code reviews, and internal penetration tests (Red Team exercises, often with assumed breach scenarios). Once in a while I do background checks on individuals for certain clients, and exposure analysis where we try to find as much information as possible about an individual to help them limit their own exposure online.

Oct 2019 - June 2021

Security Software Engineer / GDPR Officer

CoolStuff

At CoolStuff I have been working in a small team where we always strive to try new methods of working and doing our tasks to finish our sprints as efficiently as possible. My role in the team was to maintain and build new features for the old part of the system which when I started was most of the applications. Over time this has changed more and more to a newer model and languages. The old parts of the system is old, and with very old code comes often a certain amount of chaos, and I thrive in chaos. I enjoy diving into old broken code and make it better, fix weird bugs that someone wrote ten plus years ago or rewrite parts of the system to welcome new features into it.

Aug 2018 - Oct 2019

Software Development Engineer

One Agency Sweden AB

Helped various customers with their development projects with a focus on secure development.

Dec 2017 - Aug 2018

Security Consultant

TrueSec AB

My responsibilities include penetration testing of various systems, code review, report writing and development of tools when the need arises. I also do a lot of security research when there's time for it. I have developed a system in PHP/Laravel that has been included in the packages we offer our customers. This project was developed parallel to another project that I did on my free time (Oddtale). This has been a good experience as code that turned out good and stable in Oddtale was later borrowed and further perfected in the other project at work.

Jan 2014 - Nov 2017

Security Software Engineer

Avalon Innovation

I worked with both back end and front end parts of a system, developing functionality in an underlying API that communicates with the different services and databases on the customer network. During my time at Avalon I mostly wrote C#.Net, but I also used Java in some other minor projects that I had been in (mostly prototype work). I have an extremely high interest for IT-security, and I try to keep my coding and usually the whole process of making the application as security minded as possible. I also try to encourage all my colleagues to think this way as well, so that the quality and security of the end product will be high. During my free time all (or at least most) my projects are IT-security related, and very often involve breaking stuff (I like to break things and then figure out how to un-break them, and prevent them from breaking in the same way again ... yeah, that's probably a good way to describe it). Most other languages that I use frequently (Perl, C/C++ and PHP) is used mostly during my free time for my own projects (I use Java and C# for private projects as well, although C# not as often since I don't use Windows at home for development usually).

Jun 2011 - Jan 2014

Education

Blekinge Institute of Technology

Bachelor of Science
Computer Software Engineering
2008 - 2011

Georgia Institute of Technology

Bachelor of Science
Computer Software Engineering
2010 - 2010

Parkskolan Ystad

Computer/Electrician Program
Computer Science
2005 - 2008

Skills

  • Source Code Review (Ruby, C#, C, C++, Java, PHP, Python, Perl, and more)
  • Penetration Testing / Security Review of web and desktop applications
  • Internal Network Security Assessment (Windows/Linux)
  • Secure Software Development (C#, PHP, Python, Java)
  • Internet Exposure Review / Background Assessment
  • Metasploit Framework
  • Burp Suite Pro
  • Kali Linux with toolbox
  • Maltego Casefile

Interests

Apart from being a security consultant, I enjoy writing novells. I have published one science fiction novell (self-publishing) and currently working on two more.

I used to play a lot of games and watch a lot of TV-series, but in recent years my security research and my writing has taken up all of my time. I am very driven by my interests and always aspire to take it to the next level and have maximum fun while doing so.