Hijun Kim (김희준)

Operations Associate

Seoul, South Korea2 yrs 5 mos experience

Key Highlights

  • Expert in penetration testing and incident response.
  • Delivered training for OffSec OSCP course.
  • Recognized for excellence in cybersecurity competitions.
Stackforce AI infers this person is a Cybersecurity expert specializing in penetration testing and compliance consulting.

Contact

LinkedIn

Skills

Core Skills

Penetration TestingIncident ResponseCompliance Consulting

Other Skills

Vulnerability AssessmentCybersecurity Solutions ManagementSolidStepSource Code AnalysisFortifyVulnerability AnalysisCTF Challenge DevelopmentCollaborationISO StandardsEvent OrganizationActive Directory Penetration TestingAttacking Common ServicesAttacking Windows & LinuxAuthentication & Authorization AttacksBlind SQL Injection

About

침투 테스트와 침해사고 대응(DFIR)을 모두 수행하는 보안 전문가로, 웹/AD/클라우드 환경에서 공격 관점의 취약점 진단과 증거 기반의 사고 분석을 결합해 실질적인 리스크 감소에 집중합니다. 현장에서 재현 가능한 PoC, 명확한 영향도 설명, 실행 가능한 개선안까지 끝까지 책임지는 결과물로 책임을 다합니다. 👨‍💻 Expertise - Penetration Testing - Incident Response - Web Application Security - Digital Forensics & Threat Hunting 👨‍🎓 Education - M.S. Candidate in Information Security, Graduate School of International Information Security, Dongguk University - B.S. in Software Engineering and Computer Systems 🪪 Licenses & Certifications - OffSec Instructor Bootcamp (OSIB) - OffSec Experienced Penetration Tester (OSEP) - OffSec Web Expert (OSWE) - OffSec Certified Professional (OSCP) - Hack The Box Certified Web Exploitation Expert (HTB CWEE) - Hack The Box Certified Penetration Testing Specialist (HTB CPTS) - Hack The Box Certified Web Exploitation Specialist (HTB CWES) - TryHackME PT1 Certificate - CWL Certified Red Team Analyst(CRTA) - CWL Red Team Infrastructure Developer (CRT-ID) - CWL Active Directory Red Team Specialist (AD-RTS) - CWL Multi-Cloud Red Team Analyst (MCRTA) - CWL Multi-Cloud Blue Team Analyst (MCBTA) - CWL Web Red Team Analyst (Web-RTA) - CWL API Red Team Analyst (API-RTA) - CWL Certified Red Team - CredOps Infiltrator (CRT‑COI) - CWL Process Injection Analyst (CPIA) - CWL Certified Process Injection Analyst (CPIA) - Hackviser CAPT (Certified Associate Penetration Tester) - Hackviser CWSE (Certified Web Security Expert) - CPPS (Certified Phishing Prevention Specialist) - CAIS (Certified Al Security Specialist) - ISO/IEC 27001 - ISO/IEC 19011 - Exterro ACE - Fundamentals of Dark Web - Secondary School Teacher (Level 2) Certificate in Information and Computer Science 📖 Books - In Progress 📄 Research Papers - In Progress 🏆 Awards - 2025 Internal Audit Contest - Excellence Award - 2024 6th "Find TS Security Loopholes" Encouragement Award - 2024 Internal Audit Contest - Encouragement Award - 2024 Offsec Cyber Range Red Team Training Competition - 2nd Place - 2024 Jeollanam-do Web Vulnerability Competition - Encouragement Award - 2023 NPS Jeonbuk Youth Cyber Threat Response Competition - 2nd Place(Excellence Award)

Experience

2 yrs 5 mos
Total Experience
1 yr 9 mos
Average Tenure
8 mos
Current Experience

Tsis integrated security dept.

Assistant

Sep 2025Present · 8 mos · 대한민국 서울 중구 남대문로 · On-site

  • ● 신규 및 고도화 프로젝트 보안성 검토
  • 인프라 : 시스템 취약점 진단 솔루션(SolidStep)을 활용한 인프라 진단 수행
  • 소스코드 : 소스코드 진단 솔루션(Fortify)을 활용한 소스코드 진단 수행
  • 모의해킹 : 전자금융기반시설 취약점 분석·평가 기준 모의해킹 수행
  • ● 취약점 조치 가이드
  • 전자금융기반시설 취약점 분석·평가 취약점 이행진단 및 추적 관리
  • 사이버침해위협대비 정기 취약점 이행진단 및 추적 관리
  • 금보원 공개용 홈페이지 취약점 분석·평가 이행진단 및 추적 관리
  • 상반기 모바일앱 취약점 이행진단 및 추적 관리
  • ● 보안솔루션 운영·관리
  • 시스템 취약점 진단 솔루션(SolidStep) 운영 및 관리
  • 소스코드 진단 솔루션(Fortify) 운영 및 관리
  • 앱 취약점 진단 솔루션(Zyroid) 운영 및 관리
  • 웹 취약점 진단 솔루션(AppScan) 운영 및 관리
Vulnerability AssessmentPenetration TestingIncident ResponseCybersecurity Solutions Management

Cis

Lead Researcher

Nov 2023Aug 2025 · 1 yr 9 mos

  • [Compliance Consulting & Penetration Testing]
  • Conducted joint penetration testing for multiple government-affiliated organizations in 2024
  • Provided ISO certification consulting for companies and research institutes in various sectors
  • [OffSec Authorized Training]
  • Delivered OffSec OSCP Course (1st batch, May 2025~)
  • [CTF Operations & Challenge Development]
  • Organized and created challenges for a government-hosted CTF competition
Penetration TestingCompliance ConsultingCTF Challenge Development

Education

Dongguk University

Master — Information Security

Sep 2024Present

Stackforce found 100+ more professionals with Penetration Testing & Incident Response

Explore similar profiles based on matching skills and experience

Shashi Kumar H

Shashi Kumar H

Penetration Tester

at Hewlett Packard Enterprise

Bengaluru, India9 yrs 4 mos exp
Anirban Bain

Anirban Bain

Junior Security Researcher

at FireCompass

India3 yrs 3 mos exp
Cyber-security
SB

Soumyadeep Basu

Senior Security Analyst

at Google

Kolkata, India3 yrs 9 mos exp
Cloud SecurityOffensive SecurityThreat Detection Engineering
Narek Babajanyan

Narek Babajanyan

Senior Incident Response and Threat Prevention Engineer

at ServiceTitan

Yerevan, Armenia5 yrs 11 mos exp
CybersecurityDigital Forensics
AS

Ashwini Saravanan

Ericsson

at Full-time

Chennai, India1 yr 10 mos exp
Information SecurityVulnerability Management
Vignu Bharath

Vignu Bharath

Manager

at ICON plc

Hyderabad, India11 yrs 7 mos exp
Cyber Threat Intelligence (CTI)Security Risk
Adam Bacchus

Adam Bacchus

Security Engineering Manager

at Google

Minneapolis, United States26 yrs 4 mos exp
Application SecurityInformation SecurityProgram ManagementProject ManagementSecurity Consulting
Gautam Kumawat 🚀

Gautam Kumawat 🚀

Chief Executive Officer

at HackingFlix

Jaipur, India11 yrs 5 mos exp
Cyber SecurityLeadershipEducation TechnologyCyber Crime InvestigationTechnical Assistance