Application Security Engineer and Engineering Leader with 12+ years of experience. Background in web application development, now specializing in application security across healthcare and fintech.
2024 — Now
Miami, FL
Conducted regular application security audits and code reviews for an endpoint security platform protecting 8,400+ systems across 284 medical offices partnered with Sutter Health, proactively identifying and remediating vulnerabilities to safeguard critical healthcare infrastructure
Upon onboarding identified and remediated 3 high-severity security vulnerabilities related to access control flaws, including the one that allowed unauthorized users to create or remove enterprise user accounts
Transformed a development team struggling to meet deadlines by improving a dev process, resulting in increased shipping speed and on-time delivery through clear requirements discovery, iterative work scoping, and feature estimation
Reduced regular ETL service outages from 1-2 days to 10-30 minutes per month by implementing extensive error handling, refactoring the service logic, and creating monitoring/alerting functionality
2022 — 2023
San Francisco, CA
Performed regular application security and cryptography review for a cryptocurrency platform where vulnerabilities could result in irreversible loss of user funds, ensuring the security of financial operations handling digital assets for 100K+ users
Built and scaled 2 major features which were used by 30,000+ of users and performed well under 100+ requests per second, allowing the service to grow and add 10,000+ users
Restored service for 100k+ users within hours during a critical outage caused by Twitter API access cut-off, by swiftly designing and implementing workaround using alternative APIs. Leveraged my personal network to escalate the issue within Twitter, resulting in account unblocking within 48 hours.
2020 — 2021
San Francisco Bay Area
Managed and supervised a software engineering team, overseeing technical requirements, sprint planning, delivery and documentation
Reduced QA costs by 80% and minimized regressions saving hours of dev time by designing and implementing a low-maintenance integration testing suite for the platform, as part of the CI/CD pipeline
Decreased infrastructure outages by 50% and increased its performance capacity by building an advanced GCP setup utilizing Docker, GCP auto scaling, auto backups, and strict security controls. Improved deployment and onboarding speed by encoding the infrastructure in Terraform recipes.
2018 — 2019
San Francisco Bay Area
Performed regular application security and cryptography reviews for an open source SaaS platform handling subscription billing, payment processing, and sensitive financial data
Decreased onboarding time by building an automatic API schema generation using Swagger and improving documentation, enhancing team productivity and saving hours for new developers
2014 — 2015
Cologne Bonn Region
Sole engineer on a three-person team selected for the 2014 Start-Up Chile program, a Chilean government-backed accelerator that awarded a $40,000 USD grant from a pool of ~2,000 international applicants
Increased frontend performance by 30% and improved stability by executing a large scale migration from ad-hoc scripts to AngularJS framework, leading to improved user experience and reduction in page load
Increased data search performance by 50% by implementing complex real-time data filtering and search feature, similar to IMDB filters, using Elasticsearch
Reduced regressions by 20% and improved product stability by integrating a CI/CD pipeline with automated testing