This role focuses on triaging and assisting software engineers in remediating vulnerabilities in NET applications. Key Responsibilities: Vulnerability Triage: Analyze and prioritize security vulnerabilities identifie in NET applications, ensuring critical issues are addressed promptly. Identify false positives and unactionable results Validate and provide a proof of concept for DAST results Remediation Support: Collaborate with software engineers to provide guidance and support in fixing identified vulnerabilities, ensuring secure coding practices are followed. Tool Utilization: Utilize and interpret results from security tools such as a Security Code Scanner, OWASP Zap, BurpSuite, and Fortify on Demand to identify vulnerabilities in .NET code.Qualifications: Technical Skills: Proficiency in NET technologies (C#, VB.NET), secure coding practices, and experience with SAST and DAST tools. Experience testing for and reporting issues in the OWASP top 10 (XSS, CSRF, SSRF, SQLi, etc.) Analytical Skills: Strong analytical and problem-solving skills to triage and address security vulnerabilities effectively.Communication Skills: Excellent communication skills to work effectively with development teams and convey complex security concepts.

In this proprietary company we are dedicated to development of custom applications, consulting in computer security, risk management, process optimization and support in a computer project. I specialize in languages like C#, java, .net. Frameworks such as ISO 27001 (SGSI), OWASP Top 10, and other models such as OSI layers, database normalization, among others. Some projects I work on are:Some projects:- IMPROSA, Software Vulnerability Process- FUNDAUNA, Security breach analysis and detection- BCIT Couching, Software Development I Boot Camp- Prival Bank Async and Efficere - Prival Bank CyL (internal web)- BCT Bank Compensation and Settlement System- BICSA Bank Internal Web

I designed and developed comprehensive course content for cybersecurity master’s degree, cybersecurity tech degree and software engineer bachelor’s degree. Emphasizing secure architecture, vulnerability management, and practical software design principles like SOLID and GRASP. I crafted engaging materials for both master's and bachelor's programs, fostering dynamic learning environments. I provided academic support, facilitated student learning, and contributed actively to university activities to enhance the academic community.

I was hired as a full-stack developer and quickly advanced to technical lead due to my commitment and knowledge. When the team leader retired, I transitioned to Scrum Master. As a developer, I excelled in creating and designing UIs with ASP.NET MVC, developing responsive systems, and maintaining and optimizing clients' internal web applications. I developed new functionalities and improved operational efficiency using SQL, C#, AngularJS, CSS, HTML, JavaScript, and best practices for software design.

I led external audits to assess software development security, ensuring compliance with industry standards and identifying areas for enhancement. Employing a meticulous approach, I analyzed system vulnerabilities, generated detailed reports with actionable solutions, and collaborated closely with client teams to strengthen application security and confidentiality. I provided active support in crafting contingency plans, delivering security recommendations, and effectively communicated audit findings to facilitate collaboration and improve security measures.

I played a key role in resolving tasks within an MVC project using SQL, C#, ASP.NET, and integrating HTML and JS (frontend). I contributed to automated and obfuscation tests, ensuring seamless integration and maintaining high software quality. Taking a hands-on approach, I enhanced front-end performance and used modern tools for efficient, scalable code. I championed agile methodologies, fostering collaboration between teams for agile project delivery, and devised custom solutions tailored to client needs. Leading the Quality team, I developed and executed quality plans to uphold high standards throughout project execution.