Colin Gigool

Experience

• 

  Static.Int Educare

  Jan 2021 - Jan 2023

  Information Security Consultant

  ● Conducted thorough source code reviews and executed vulnerability assessments using Burp Suite, ensuring a secure and flawless release of the company website, mitigating potential risks, and safeguarding customer data privacy● Applied a robust security and testing framework, fortifying the website against major security incidents and enhancing overall data protection, resulting in increased trust from customers and stakeholders● Instructed over 100 Diploma students in cybersecurity upskilling sessions, educating students on mobile security, OS security, web security and critical cybersecurity tools, achieving a 95% satisfaction rating from attendees● Onboarded 10 engineering colleges as clients to facilitate diverse engineering workshops, leading to a 40% growth in company revenue and an expanded market reach● Coordinated workshop logistics and supervised faculty teams to deliver engaging sessions, increasing student interest in new technologies by an average of 40% Show less

• 

  California State University, Fullerton

  Mar 2023 - now

  ●Assisting Professor on a research project in the exploration of FPGA and GPU applications for password cracking, employing a rapid development paradigm to engineer a system that surpasses the performance of traditional multicore CPUs●Optimizing GPU performance and strengthened password cracking capabilities by leveraging NVIDIA CUDA technology, which enhanced computational capacity through parallel computing and efficient utilization of multiple cores on the GPU●Employing Vitis IDE and Vivado to configure and implement designs for FPGA cores, thus leveraging the Vitis HLS tool to efficiently synthesize C++ functions into RTL, enabling the deployment of the Hashing algorithm for password cracking Show less ● Employed Qualys services, including VMDR and Cloud Agent, for vulnerability scanning and real-time monitoring, resulting in 90% risk mitigation and protection of sensitive data for 500 users across school network and cloud environments● Performed website accessibility testing and continuous website monitoring, ensuring WCAG-compliance accessibility score of 98% using PopeTech and facilitated seamless content updates for the website, leveraging HTML, CSS, via Modern Campus CMS● Migrated virtual desktops from Virtual Computer Labs to AWS AppStream 2.0 using image builder, enhancing the efficiency and scalability of the College of Communication, resulting in 20% better performance and 35% less downtime● Managed and administered Windows Active Directory, adding users to groups, creating organizational units, managing and maintaining two domains, and adding new systems to the specific domain to ensure efficient user access control● Managed and maintained 150+ devices across different labs with a mixture of MacOS and Windows devices, reducing downtime by 30% through cleaning, updates, performance monitoring, teamwork, and dedication to seamless operations● Delivered efficient technical support to faculty and staff, resolving an average of 20 hardware and software issues per week, achieved a remarkable 98% satisfaction rate, surpassing departmental benchmarks Show less

  • Graduate Research Assistant

    Oct 2023 - now

  • Graduate Student Assistant to IT Consultant

    Mar 2023 - now
• 

  Offensive Security Society (OSS) @ CSUF

  Jan 2024 - now

  ● Facilitated weekly cybersecurity workshops, educating 40 participants on techniques including Web vulnerabilities such as XSS, CSRF, XXE, physical security with lock picking, and secure coding in the SDLC lifecycle in Application Security● Conducted workshop on Web enumeration, covering techniques like brute force file discovery with Gobuster, Web technology identification with wafw00f and wappalyzer, and vulnerability scanning with Nikto, Burp Suite, and wpscan● Revitalized the Blue Team with a dedicated Proxmox server, fostering a red vs. blue competitive environment through virtual attack simulations and regular training to enhance defensive capabilities and incident response readiness● Led a 7-member team to organize events, boosting campus-wide cybersecurity awareness, orchestrating guest speaking events with industry professionals, delivering valuable insights on current trends, career paths, and best practices Show less ● Engaged in penetration testing competition, uncovering SQL injection in AI chatbot, ESC8 privilege escalation in Certificate Services, Active Directory golden ticket and kerberoasting exploit and GitLab RCE in SCADA using Metasploit● Collaborated with UC Irvine in red team exercise on a simulated bank network using Nmap for service discovery, Hydra for FTP brute-force login, and Burp Suite with Python payload for SSTI exploit via Netcat to gain reverse shell● Ranked 4th at the 2024 CyberSEED CTF Competition, securing a $1,500 prize while achieving 98.5% challenge completion across categories such as OSINT, Cryptography, Network Traffic, Reverse Engineering, and Web Exploitation● Leveraged Kali Linux's toolset and followed penetration testing frameworks such as OWASP, PTES, Cobalt Strike, and NIST CSF to exploit vulnerabilities across Linux and Windows operating systems in HackTheBox platform Show less ● Leveraged a wide range of tools for reconnaissance and post-exploitation to practice exploiting vulnerabilities across different services on both Linux and Windows operating systems on the platform HackTheBox● Conducted weekly cybersecurity workshops educating 30 participants on techniques including Web enumeration, Lock picking, Reverse Engineering, SQL Injection, and Active Directory, offering guidance and support throughout● Ranked 4th at the CSI CyberSEED 2024 CTF Competition, securing a $1,500 prize while achieving 98.5% challenge completion across categories such as OSINT, Cryptography, Network Traffic, Reverse Engineering, and Web Exploitation Show less

  • President

    May 2024 - now

  • Red Team Member

    Apr 2024 - now

  • Student Advisor (Board Member)

    Jan 2024 - May 2024