About

I'm a Security Engineer with over 4 years of experience in web application security, cloud security, and DevSecOps. My journey began in 2016, and since then I’ve had the opportunity to work with industry leaders like Apple, eBay, Intel, Avira, and Stackpath, identifying critical vulnerabilities and helping to improve their security posture. At my core, I’m someone who loves to research, learn, and solve problems. Whether it’s deep-diving into a new technology or reverse-engineering an exploit, I genuinely enjoy the process of continuous learning. I’m particularly skilled in manual and automated testing, vulnerability management, and building secure, scalable infrastructure. I have hands-on experience with a wide range of tools and platforms including AWS, Wazuh, Jenkins, Docker, and DefectDojo, and have led projects involving firewall implementation, CI/CD hardening, IDS/IPS, and security automation. I’m also comfortable writing and maintaining scripts in Python, Bash, and Node.js, and enjoy applying prompt engineering to improve productivity and innovation. Along with my technical work, I actively participate in bug bounty programs, CTFs, and share knowledge with others—often mentoring junior engineers or collaborating with developers to promote secure coding practices using open-source tools. I approach security with humility and a learner’s mindset, always striving to grow, contribute, and stay ahead in this ever-evolving field.