Senior Development Security Operations Engineer
2020 - 2021Lendi- Performed security review of the infrastructure platform.
- Advised developers on system design and security issues.
- Developed vulnerability management process and improved security incident response process.
Technologies: Cloud Security, Amazon Web Services (AWS), DevOps, TypeScript, Web SecuritySenior Security Engineer
2014 - 2020Atlassian- Designed and developed a webpack plugin used for integrating React applications with Content Security Policy.
- Created and implemented a high-load microservice used for storing personal user data for identity services.
- Developed a logging Java library that automated security logging controls.
- Designed and developed mitigations and security patches for Atlassian products.
Technologies: Java, Node.js, Python, Web Security, Java Security, Cloud Security, Penetration Testing, Vulnerability Management, Vulnerability Assessment, Vulnerability Identification, Zero-day Vulnerabilities, Development, Microservices
Alexander Minozhenko
Security Engineer and Developer in Sydney, Australia
Member since June 2, 2022
Alexander is a security engineer with over ten years of experience in the security industry. He also has software development and DevOps experience in different tech companies. Alexander enjoys building security mitigation and security features and developing automation tools for the DevOps pipeline.
Alexander is now available for hire
Experience
- Web Security 10 years
- Node.js 7 years
- Java 7 years
- Vulnerability Assessment 6 years
- Java Security 6 years
- Penetration Testing 5 years
- Python 5 years
- Cloud Security 2 years
Availability
Part-time
Preferred Environment
IntelliJ IDEA, Jira, Burp Suite
The most amazing...
...thing I've developed is mitigations for preventing the exploitation of zero-day vulnerabilities in web applications.
Employment
Experience
- Content Security Policy for Webpackhttps://www.npmjs.com/package/csp-webpack-plugin
The webpack plugin generates Content Security Policy for single-page applications during the build phase. As a result, it can prevent the exploitation of cross-site scripting vulnerabilities in a web application.
Skills
Libraries/APIs
Java Security, Node.jsOther
Web Security, Cloud Security, Vulnerability Management, Vulnerability Assessment, Vulnerability Identification, Zero-day Vulnerabilities, DevelopmentLanguages
Java, Python, TypeScript, JavaScriptTools
Webpack, IntelliJ IDEA, JiraParadigms
Penetration Testing, Microservices, DevOpsPlatforms
Amazon Web Services (AWS), Burp Suite
Certifications
- AWS Certified SecurityAUGUST 2020 - AUGUST 2023Amazon Web Services
