Michael Azoulay

Performs application security assessments across Web, API, Mobile, and Thick Client environments, with ownership of the testing lifecycle from scoping through exploitation, proof-of-concept development, and reporting.

Identifies complex vulnerabilities beyond OWASP Top 10, including business logic flaws and authorization weaknesses, and collaborates directly with developers, DevOps, and product teams on remediation guidance.

Provides application security consulting. Among my clients: Plonter and R2M Group.

Scope can include application security review, site feature consultation, and practical remediation guidance where public disclosure is approved.

Performed proactive threat analysis and incident response for cybersecurity events, helping protect healthcare data and infrastructure while investigating malware activity, network abnormalities, and breach attempts.

Developed custom tools and dashboards to improve detection accuracy and streamline investigations. Enriched cyber threat intelligence using sources including CERT-IL and NGOs, converting raw indicators into actionable recommendations for engineering and SecOps teams.

Conducted threat analysis in a 24/7 environment, responded to alerts from multiple security systems, and documented security incidents in English and Hebrew.

Worked hands-on with EDR, SIEM, SOAR, firewall, cloud security, IDS, proxy, NAC, mail relay, sandboxing, ticketing, and Active Directory tooling across MSSP customer environments.

Provided computer setup, system installation, hardware troubleshooting, and specification assembly for clients, alongside scripting for automated system testing and security consultation for site features.

Supported computer setup, system installation, hardware installation, BIOS and system troubleshooting, and on-demand client workstation specifications.