About Me

David Jiménez Salcedo
Cybersecurity Engineer

Cybersecurity Engineer with SOC N1/N2 and Digital Risk Protection experience at Telefonica Tech, combining defensive operations with hands-on training in Offensive Security, Active Directory, Web & API Security and Enterprise Pentesting.

Offensive Security

  • Penetration Testing over infrastructure, WebApps and APIs
  • Vulnerability discovery, validation and exploitability analysis
  • Active Directory Security, internal networks and enterprise attack paths
  • Privilege Escalation, Lateral Movement, Pivoting and Post-Exploitation
  • eJPTv2 certified and CPTS currently in progress

Reporting & Communication

  • Technical reporting with findings, risk, impact and remediation guidance
  • Ability to explain technical ideas clearly to different audiences
  • Spanish native and English B2
  • Documentation of methodologies, writeups and lab evidence
  • Comfortable working with procedures, priorities and delivery quality

Enterprise AD Laboratory

  • Enterprise Active Directory lab designed for Red Team simulations
  • Attack paths aligned with MITRE ATT&CK techniques
  • Kerberoasting, AS-REP Roasting, NTLM Relay and Password Spraying
  • Pass-the-Hash, Pass-the-Ticket, DCSync, Golden Ticket and Silver Ticket
  • Blue Team detectability analysis and mitigation reporting

Tools & Scripting

  • Burp Suite, Nmap, Wireshark, Metasploit, FFUF and Gobuster
  • Python, PowerShell, Bash, Java, SQL, HTML, CSS and JavaScript
  • BloodHound, SharpHound, Impacket, NetExec, Mimikatz, Responder and Rubeus
  • Windows, Windows Server, Kali Linux, Ubuntu and Debian
  • TCP/IP, DNS, HTTP/S, SMB, LDAP, Kerberos, WinRM, SSH and RDP

Blue Team Background

  • SOC N1/N2 operations, alert triage and incident escalation
  • Digital Risk Protection and external threat analysis
  • IoC correlation, threat validation and defensive visibility
  • Microsoft Sentinel, Splunk, QRadar, NetWitness and Cortex XSIAM
  • Useful attacker mindset with defender context

Professional Mindset

  • Passion for technology, offensive security and continuous learning
  • Proactive attitude toward challenges and hands-on labs
  • Analytical thinking and attention to technical detail
  • Creative approach to attack paths and vulnerability validation
  • Motivated to join an Offensive Security team
Logo 1Logo 2Logo 3Logo 4Logo 5Logo 6Logo 7Logo 8Logo 9Logo 10Logo 11Logo 12Logo 13Logo 14Logo 15Logo 16Logo 17Logo 18Logo 19Logo 20Logo 21Logo 22Logo 23Logo 24Logo 25Logo 26Logo 27Logo 28Logo 29Logo 30Logo 31Logo 32