Penetration Tester · Application Security · DevSecOps · Software Engineer
Software Engineering graduate combining offensive security expertise with secure development depth.
- Conducted full-scope penetration tests across web, mobile, and network attack surfaces, identifying 5 Critical and 12 High severity vulnerabilities and delivering a 120-page CVE-aligned report that directly led the client to establish its first dedicated security function
- Built a zero-dependency DevSecOps CI/CD pipeline with SBOM generation and configurable severity gates; hardened a Docker image from 1,675 to 12 CVEs (99.3% reduction)
- TEKNOFEST 2024 1st Place Winner, shipped a real-time embedded control system as UI Dev Lead on a ~20-member engineering team
- Active on HackTheBox, PortSwigger Web Academy, and Hackviser
Offensive Security & AppSec
DevSecOps & CI/CD
Development
| Project | Description | Stack |
|---|---|---|
| DevSecOps Security Pipeline | Zero-dependency CI/CD pipeline (no 3rd-party actions) with SBOM generation, container scanning, and a bash/jq quality gate that fails builds on CVEs exceeding a configurable severity threshold | GitHub Actions · Syft · Grype · CycloneDX · SARIF |
| Secure Container Lab | Hardened a Node.js Docker image from 1,675 to 12 CVEs (99.3%) using Distroless base, multi-stage build, non-root execution, read-only filesystem, and --cap-drop=ALL | Docker · Trivy · Distroless |
| My Book Library | Full-stack library management system with security-first design: JWT auth, PBKDF2-SHA256 (600K iterations), RBAC, ORM-based injection protection, CSP/HSTS, rate limiting, audit logging; security score 92.5/100 | Flask · PostgreSQL · SQLAlchemy · Docker |
| Brain Tumor Classification (CNN) | CNN achieving 96.48% accuracy on MRI brain tumor classification with automated training and evaluation pipeline | Python · TensorFlow |