Nathaniel has extensive experience in information security testing, audit, and implementation. He has over 4 years working experience as a consultant in the country's largest professional services firm. He was involved, both staff and supervisory roles, in vulnerability assessment and penetration testing, security controls testing, and information security policy review, development and implementation in various industries including banks, insurance, utilities, real estate and manufacturing. His projects consist of identifying technical and non-technical vulnerabilities and weaknesses in the clients information technology resources, validating risks and implications affecting the clients' business, operation and reputation, and formulating recommendations to help the clients address the risks.
He is familiar with widely accepted standards and methodologies in information technology such as ISO27001, COBIT5, OWASP and OSSTMM. He has advanced technical knowledge on various technologies such as Windows and Linux operating systems, MS SQL, Oracle and MySQL databases and IIS and Apache web applications. He has basic knowledge on Java, C++ and Python programming languages as required for performing security testing of thick and thin applications and to effectively use security testing tools written in such programming languages. 