Richard Picado

Richard Picado has a diverse work experience in the field of cybersecurity. Richard is currently working at Evonik as an Offensive Security Specialist since December 2022. Prior to that, they worked at Bugcrowd as a Security Researcher starting from August 2020.

From December 2021 to December 2022, Richard worked at WhiteJaguars Cyber Security as a Penetration Tester. In this role, they conducted dynamic and static analysis of web applications, mobile applications, APIs, and infrastructure for global clients. Richard also performed manual testing for web applications and conducted attack surface discoveries from Red Team operations.

Before joining WhiteJaguars, Richard was a Cyber Security Analyst at IBM from March 2019 to December 2021. In this role, they analyzed IPS/IDS logs for multiple platforms, participated in weekly meetings with the Security services manager to discuss process improvements, and reported outages and tuning opportunities to clients.

Prior to IBM, Richard worked as a Cisco TAC Security Network Engineer (CSE) at SYKES LATAM from March 2018 to March 2019, providing support and troubleshooting for Cisco networking products.

Richard started their career at End to End Nearshore Solutions as a NOC Engineer from October 2017 to March 2018. In this role, they handled on-call escalations, performed daily operational checks for network and system infrastructure, and initiated incident management and response for production issues.

Richard began their professional journey as a Tech Support Specialist at Align Technology from June 2014 to October 2017.

Richard Picado is currently pursuing a degree in Information Technology at Universidad Fidélitas, with an expected completion date in 2024. Prior to this, they obtained a Network Technician degree in Network and System Administration/Administrator from Universidad Nacional de Costa Rica, where they studied from 2016 to 2017. Additionally, Richard has obtained several certifications in various areas of cybersecurity, including the Foundations of Breach & Attack Simulation from AttackIQ, API Security Architect from API Academy, Automated Mobile Application Security Assessment – MAS from OpSecX, Professional Ethical Hacker from TechRuptive Cyber Academy, CompTIA Network Security Professional – CNSP, CompTIA Network Vulnerability Assessment Professional – CNVP, and CompTIA PenTest+ from CompTIA, PenTest & Forensics Analysis from iQ4 - Internships / Apprenticeships, Cyber Security Foundation Professional Certificate - CSFPC™ from CertiProf, Splunk Fundamental 7.x from Splunk, eJPT from eLearnSecurity, Certified Ethical Hacker (CEH) from EC-Council, Foundations of Operationalizing MITRE ATT&CK from AttackIQ, Scrum Fundamentals Certified (SFC) from SCRUMstudy, Qualys Certified Specialist - Web Application Scanner and Qualys Certified Specialist - Vulnerability Manager from Qualys, IBM Certified Associate Administrator - Security QRadar SIEM V7.2.8 from IBM, CompTIA Security+ ce Certification from CompTIA, VMware vSphere 6.5 Foundations from VMware, and CompTIA Linux+ (Powered by LPI) Certification from CompTIA.