At Google, I have provided expert security advice and guidance to various engineering teams, conducting in-depth reviews of both internal and external infrastructures. I have designed and implemented robust solutions for performing risk assessments, measuring risks, and conducting threat modeling at scale. I optimized security reviews for different teams by analyzing and identifying common issues, which I then automated to reduce manual efforts and organizational risk. Additionally, I have developed security standards and led efforts to proactively tackle and resolve potential security issues within Google's core infrastructure.Duties include:– Design infrastructure and drive its implementation to protect Google networks and systems– Provide security expertise and guidance to a diverse set of Google engineering and business teams– Conduct security reviews of core corporate and production infrastructure– Work hands-on with network equipment and actively monitor Google systems for attacks and intrusions– Identify and fix security flaws and vulnerabilities– Own and drive the resolution of complex security incidents, policy questions, and technical security issues– Design and develop security tools and processes using Python and Go for critical infrastructure protection, monitoring, and remediation– Simulate attacks to look for vulnerabilities in Google systems before they can be exploited– Research the latest IT security trends– Develop security standards and best practices for Google

- Served as a mentor to offer professional development opportunities for aspiring cybersecurity practitioners.- Coordinated speaker sessions and workshops.

- Established a Call for Papers (CFP) review process to facilitate the selection of diverse and high-quality content.- Served as a mentor to offer professional development opportunities for aspiring cybersecurity practitioners.- Coordinated speaker sessions and workshops for the conference program.

Security Software Engineer specialized in Application and Cloud Security. Currently working with the team responsible for building and maintaining the MinIO Kubernetes Operator, one of the core products to automate the deployment and configuration of MinIO on cloud environments (Public/Private/Hybrid/etc)core responsibilities:– System and network security, authentication and security protocols, cryptography and application security– System design and development with Go, NodeJS and React- Present detailed, written technical information for internal and external audiences- Customer support: subject matters expert in the information security area– Product security assessments- Follow up of the threat landscape for popular software & services integrated with MinIO- Security architecture

Distributed systems Engineer specialized in application security. Part of the provisioning team and responsible for various aspects with the security of the service such as mitigation of vulnerabilities reported through the company bug bounty program.– Microservices design and development.– Integration and authentication with third party providers.– Backend development.– Security code reviews.

Founding member of the engineering team, primarily working in design and development of platform core features. As a software engineer with experience in the information security industry I enforce secure coding best practices across all the members of the team through code reviews and security awareness. – Implementation and configuration of security and monitoring infrastructure with open source tools.– Design and development of product anti-abuse features.– Backend development.– Frontend development.– Mobile development.– Software testing.

As a member of the software engineering division I applied my knowledge of software architecture and information security to perform software development tasks associated with debugging, QA testing, automation and security testing. – Shell scripting and automation.– Backend development.– Quality assurance.– Managing Infrastructure.

– Security Tools Development.– Security Risk Assessments.– Linux and Windows Server hardening.– Web penetration testing.– Mobile penetration testing– Social Engineering Penetration Testing– Basic binary analysis and reverse engineering.– Security code reviews, static and dynamic code analysis.

Member of Microsoft Student Partner program from 2011 to 2013; I was responsible of giving talks and workshop about Windows Phone and other Microsoft technologies at my community.

Develop creative and efficient solutions for any problem related to a web application, like plugins, modules and components mainly for the cms Joomla and Wordpress. Implementing and customizing E-commerce sites using PrestaShop as well as find bugs and patch them (web application and server level).Site: http://iq-zone.com/