Dublin, County Dublin, Ireland
I am a Security Engineer with experience in Application Security, Penetration Testing, and Infrastructure Security. I also have a background in Linux System Administration and Software Engineering, which has given me a broader perspective on development and maintenance processes. I am primarily interested in roles related to Application Security, such as Application Security Engineer or Web Penetration Tester. My core competencies include: – Application Security – Penetration Testing – Incident Response – Threat Modeling – DevSecOps (Gitlab CI/CD, Jenkins, Trivy, SAST/SCA) – Software Development (Python, Go) – System Administration (Linux, Ansible, KVM, Nginx, etc.) Feel free to connect with me or email me at [email protected]
– Conducted in-depth manual and automated security assessments of web applications, APIs, and authentication mechanisms across diverse tech stacks. – Discovered and responsibly disclosed high-impact vulnerabilities, including critical-level XSS, IDOR, SSRF and logic flaws, earning multiple bounties and public acknowledgments from top-tier tech companies. – Wrote detailed bug bounty reports following industry best practices, leading to faster triage and resolution by security teams.
Drom is a dynamic nationwide automotive internet portal, offering an extensive car information database and modern communication technologies. With over 3.5 million daily users, Drom has been thriving for 25 years and continues to grow actively. As an Application Security Engineer at Drom, I had the exciting and impactful responsibility of protecting our websites and infrastructure. My ambition and leadership qualities were essential in establishing and leading the company’s Security Department from the ground up. I took a proactive approach to driving our commitment to security excellence and innovation, ensuring that millions of users could trust and rely on our services daily. I demonstrated a strong sense of ownership in every aspect of my work, consistently going above and beyond to protect our applications and infrastructure. My ability to collaborate effectively with developers, engineers, and other colleagues fostered a culture of teamwork and shared responsibility. Together, we implemented robust security measures and responded swiftly to emerging threats, continually enhancing the organization’s security posture. Security Engineer Responsibilities: - Conducted penetration testing. - Utilized SAST/DAST/SCA tools for enhanced security. - Responded to security incidents. - Performed threat modeling. - Developed internal cybersecurity tools in Go. - Maintained cybersecurity infrastructure. Key Achievements: - Established and led the company’s Security Department. - Integrated SAST/DAST/SCA tools to enhance product security. - Integrated a modern SIEM system for real-time incident detection and management. - Contributed to obtaining security certifications.
– Developed cybersecurity tools and fuzzers in Python and Go as part of grant-funded research projects. – Built an AI/ML-driven cybersecurity system for leaked password analysis, leveraging Flask for the backend and Elasticsearch, PyTorch, and scikit-learn for data processing and modelling as part of grant-funded research project. – Researched XSS vulnerabilities and developed AI/ML-based fuzzing approaches for their detection as part of a grant-funded research project.