resume.bendh.kim

Ben Kim

Ben Donghyun Kim

Security Engineer • Diver

Currently working as a security engineer in Republic of Korea. Interested in CNCF Security, Public Cloud Security, Web Exploit, DevSecOps and some compliance security. With many years of experience, I look at the whole scope of security from an attacker’s point of view.

Languages

Korean (Fluent)

English (Advanced)

Hobbies

Scuba Diving

Free Diving

Overseas Trip

Hardware Hacking

Experiences

Security Engineer • infrastructure

Sendbird · Dec, 2021 - *Present

Security Engineer • Cloud Infra Team

Watcha · Mar, 2021 - Dec, 2021

Watcha is OTT start-up in Republic of Korea. I worked at Security Engineer. I operated security in the AWS Cloud and EKS System. Also I tested many security opensource project(e.g Sonarqube or GateKeeper)

Security Engineer • Risk Management Team

Class101 · Aug, 2020 - Feb, 2021

Class101 is online education start-up in Republic of Korea. I made the cloud infrastructure more secure. I operated security in the AWS cloud. I built the endpoint security system using Azure AD and Microsoft enterprise security.

Redteam Leader & Co-Founder

LINARENA · May, 2016 - Dec, 2019

LINARENA is security start-up in Republic of Korea. Focus on Redteaming. It provided services through network hacking, web hacking, mobile hacking, and hardware hacking technologies. I led the team and pentested a lot of companies.

R&D Team Leader

NORMA · Jan, 2015 - Mar, 2016

Security start-up in Republic of Korea. NORMA is pioneering wireless network and IoT security fields. I was the head of research and development at NORMA, where I developed and serviced a variety of wireless security solutions and services.

Education

Masters of Science in Computer Engineering

Korea University · 2016 - Current

Thesis: Writing ...

Bachelor's degree of Information Security

The Academic Credit Bank System · 2013 - 2015

Projects

Securias

Orgnizer · Aug, 2021 - Present

SECURIAS is a cyber security conference held in Republic of Korea

Hardware hacking project

Co-Worker · Jul, 2021 - Present

The Wise DevSecOps Life with Watcha

Speacker · Jul, 2021

It presented of the transition from DevOps environment to DevSecOps environment. Also, I talked about building a security system using Datadog solution.

Secuinside 2017 Presentation

Speacker · Jun 2017

SECUINSIDE is a cyber security / hacking conference held in Repulic of Korea. I Presented at the conference on ‘Bypassing Web Browser Security Policies’

Tendollar Hacking Team

Inital Members · Jan, 2015 - May, 2016

I worked at the Korean hacking team Tendollar and participated in all the tournaments held during the period.

Korea CMS System Pentesting

Solo · Sep, 2013 - Apr, 2014

Gnuboard & KimsQ CMS(Comtenet Managemt System) Bug Hunt. Found 6 0-Day (XSS, CSRF, Webshell Upload and etc)

Skills

Pentest(Web, Mobile, Hardware, Wireless)

CNCF, Public Cloud Security

Development(Python3)

Security Architecting for CIS

Analysis Malware

Pwnable, Reversing