Experience & Initiatives
Some of the work I have done as a founding member of the security team at a leading EU fintech
> OAuth Flow Upgrade
Problem / Context:
Hardening of authentication mechanisms for a live banking API with millions of daily requests.
What I Did:
- β Risk analysis, documentation and breakdown of current OAuth Flow
- β Designed solution and led a cross-team initiative to fix the problem without disrupting the existing users
- β Developed, tested, deployed and monitored the edge computing solution
Outcome:
Frictionless transition to a more modern and secure OAuth 2 flow
Stack:
Clodflare Workers
Node.js
GitLab CI/CD
SumoLogic
> Tenable Vulnerability Management Overhaul
Problem / Context:
No established vulnerability management process or visibility over GCP assets; manual scans risked audit failures and missed vulnerabilities.
What I Did:
- β Mapped full GCP asset inventory and integrated Tenable Cloud Connectors for automatic discovery
- β Designed and documented PCI DSSβaligned scanning and remediation process with Jira-based workflows
- β Developed Python automation to update scan targets monthly via Tenable API and deployed it as a GCP Cloud Function using Terraform
- β Implemented quarterly SSH and Service Account key rotation with Ansible and GitLab CI/CD for DORA compliance
Outcome:
Fully automated, auditable, and compliant vulnerability management system operating with minimal manual effort.
Stack:
Tenable
GCP
Python
Terraform
Ansible
GitLab CI/CD