Ben Kim
Security Engineer • Diver
Currently working as a security engineer in Republic of Korea. Interested in CNCF Security, Public Cloud Security, Web Exploit, DevSecOps and some compliance security. With many years of experience, I look at the whole scope of security from an attacker’s point of view.
Languages
Korean (Fluent)
English (Advanced)
Hobbies
Scuba Diving
Free Diving
Overseas Trip
Hardware Hacking
Experiences
Security Engineer • infrastructure
Sendbird · Dec, 2021 - *Present
Security Engineer • Cloud Infra Team
Watcha · Mar, 2021 - Dec, 2021
Watcha is OTT start-up in Republic of Korea. I worked at Security Engineer. I operated security in the AWS Cloud and EKS System. Also I tested many security opensource project(e.g Sonarqube or GateKeeper)
Security Engineer • Risk Management Team
Class101 · Aug, 2020 - Feb, 2021
Class101 is online education start-up in Republic of Korea. I made the cloud infrastructure more secure. I operated security in the AWS cloud. I built the endpoint security system using Azure AD and Microsoft enterprise security.
Redteam Leader & Co-Founder
LINARENA · May, 2016 - Dec, 2019
LINARENA is security start-up in Republic of Korea. Focus on Redteaming. It provided services through network hacking, web hacking, mobile hacking, and hardware hacking technologies. I led the team and pentested a lot of companies.
R&D Team Leader
NORMA · Jan, 2015 - Mar, 2016
Security start-up in Republic of Korea. NORMA is pioneering wireless network and IoT security fields. I was the head of research and development at NORMA, where I developed and serviced a variety of wireless security solutions and services.
Education
Masters of Science in Computer Engineering
Korea University · 2016 - Current
Thesis: Writing ...
Bachelor's degree of Information Security
The Academic Credit Bank System · 2013 - 2015
Projects
Securias
Orgnizer · Aug, 2021 - Present
SECURIAS is a cyber security conference held in Republic of Korea
Hardware hacking project
Co-Worker · Jul, 2021 - Present
The Wise DevSecOps Life with Watcha
Speacker · Jul, 2021
It presented of the transition from DevOps environment to DevSecOps environment. Also, I talked about building a security system using Datadog solution.
Secuinside 2017 Presentation
Speacker · Jun 2017
SECUINSIDE is a cyber security / hacking conference held in Repulic of Korea. I Presented at the conference on ‘Bypassing Web Browser Security Policies’
Tendollar Hacking Team
Inital Members · Jan, 2015 - May, 2016
I worked at the Korean hacking team Tendollar and participated in all the tournaments held during the period.
Korea CMS System Pentesting
Solo · Sep, 2013 - Apr, 2014
Gnuboard & KimsQ CMS(Comtenet Managemt System) Bug Hunt. Found 6 0-Day (XSS, CSRF, Webshell Upload and etc)
Skills
Pentest(Web, Mobile, Hardware, Wireless)
CNCF, Public Cloud Security
Development(Python3)
Security Architecting for CIS
Analysis Malware
Pwnable, Reversing