Penetration Tester
Matty Simpson
Security consultant at LevelBlue with 3+ years leading penetration tests for global clients. AWS cloud security specialist. Based in London.
What I Do
Infrastructure Testing
Internal and external network penetration tests. Active Directory, lateral movement, privilege escalation.
Web Application Testing
OWASP Top 10 methodology. API testing, authentication bypass, business logic flaws.
Cloud Security
AWS specialist. IAM misconfigurations, cloud-native attack paths, container security.
Threat Modelling
Identifying attack surfaces, mapping threat actors, and prioritising risk before testing begins.
Secure Code Review
Manual source code analysis for security vulnerabilities. Identifying injection flaws, insecure cryptography, and logic errors in application code.
Experience
Aon — Security Testing
2022 — PresentConsultant leading complex cloud, web application and infrastructure penetration tests for multinational corporations. AWS security SME for Aon's EMEA testing team. 30+ engagements delivered end-to-end, from scoping to final report presentation.
Education
Durham University
2017 — 2021MEng General Engineering (Renewable Energy) — First Class. Master's project: scalable, secure data-sharing framework for SCADA data using Hyperledger Fabric blockchain.