About
Jonathan · RootSec
About Me
I'm Jonathan (rootsec), a penetration tester and CHECK Team Member with extensive experience in offensive security. I specialize in web application security, phishing campaigns, and internal network testing, with particular interests in SAP security, IoT devices, phishing and red team operations.
In my 2 years as a Penetration Tester, I've developed a passion for uncovering complex vulnerabilities and helping organizations strengthen their security posture through comprehensive penetration testing and security assessments.
When I'm not working, I enjoy sharing knowledge through research, developing security tools, and contributing to the cybersecurity community through detailed write-ups and public talks (check out my BSides London 2025 talk).
Certifications
Career
Cyber Security Consultant @ Aristi
Involved in various security engagements such as external infrastructure, vulnerability assessments, build reviews, phishing and web application assessments.
Ethical Hacking Consultant @ Forvis Mazars
Responsible for undertaking different types of assessments including web applications, APIs and thick client applications as well as experience with phishing engagements and infrastructure setup for tools such as GoPhish and EvilginX
Ethical Hacking Intern @ Forvis Mazars
Supported colleagues during assesments including OSINT and web applications. Created and ran an Azure hacking CTF and redesigned a penetration test report to better convey findings and results of the assessment.