CV

Enrique Sobrados

enrique.sobrados@gmail.com
+1 (424) 454-7914
https://esobrados.com
Albuquerque, NM, US
Google Scholar ORCID GitHub

Summary

Second year Ph.D. student in Computer Science at the University of New Mexico, specializing in cybersecurity with a focus on mobile application security and VPN vulnerabilities. Experienced in penetration testing, research automation, and dynamic analysis infrastructure. Proven track record in enhancing cybersecurity measures through internships and research assistant roles.

Education

  • Ph.D in Computer Science
    2027 (expected)
    University of New Mexico
  • M.S. in Computer Science
    2025
    University of New Mexico
    GPA: 4.0
  • B.S. in Computer Science
    2024
    University of Engineering and Technology
    GPA: 3.8

Publications

  • Trusted Software, hidden threats: Multi-Vector Supply Chain Attacks Using Coordinated and Independent Components in Small Satellite
    2026
    In Submission: IEEE Symposium on Security and Privacy, 2026
    Introduced a novel attack vector in small satellite systems, demonstrating how independent components can be exploited to create coordinated supply chain attacks.
  • MVPNalyzer: An Investigative Framework for the Security & Privacy Audit of Mobile VPNs
    2026
    In Submission: Network and Distributed System Security Symposium (NDSS), 2026
    Developed a comprehensive framework for auditing the security and privacy of mobile VPN applications, focusing on traffic leaks, obfuscation, and VPN misconfiguration.

Work Experience

  • Research Assistant
    2023-07 - Now
    University of New Mexico
    Conducting research in the field of cybersecurity, focusing on mobile application security and VPN vulnerabilities.
    • Performed mobile penetration testing on Android applications and identified weak implementations.
    • Researched VPN security issues in South Asia, analyzing regional cyber threats and vulnerabilities
    • Automated data collection on top 30 VPN apps used in South Asia, streamlining analysis.
    • Built a dynamic analysis infrastructure using Virtual Machines and networks to simulate real-world scenarios.
    • Conducted comprehensive analysis of VPN apps, using reverse engineering and transparent proxies.
  • Security Analyst Internship
    2022-07 - 2022-12
    National Bank, Peru
    Worked as a Security Analyst Intern at the National Bank of Peru, focusing on enhancing the bank's cybersecurity posture and internal processes.
    • Managed VPN and web filtering systems, securing access to critical bank resources.
    • Conducted research to identify and document security vulnerabilities, offering remediation strategies.
    • Streamlined internal processes, improving workflow and resource utilization.
    • Provided insights during perimeter security meetings to address emerging threats.
    • Evaluated and implemented web filtering and EDR cloud solutions through proof of concepts.
    • Generated cryptographic keys for ATMs, ensuring secure financial transactions.

Skills

Penetration Testing

  • Mobile Application Security
  • VPN Security
  • Network Security
  • Web Application Security

Programming Languages

  • Python/Ruby
  • Bash/Powershell
  • C/C++
  • HTML, CSS, JavaScript

Cybersecurity Tools

  • Burp Suite
  • Wireshark
  • Metasploit
  • Nmap

Research and Analysis

  • Data Collection Automation
  • Dynamic Analysis Infrastructure

Certifications

  • Junior Penetration Tester (eJPTv2)
    2024
    INE Security
  • PEN, SOC, WEB - 100
    2023
    Offensive Security

Languages

  • English
    Proficient
  • Spanish
    Native
  • German
    Basic

References

Download CV as PDF