Claudio Nazzari, Developer in São Paulo - State of São Paulo, Brazil
Claudio is available for hire
Hire Claudio

Claudio Nazzari

Verified Expert  in Engineering

Cybersecurity Engineer and Software Developer

Location
São Paulo - State of São Paulo, Brazil
Toptal Member Since
April 10, 2023

Claudio has over 20 years of software development experience and a cybersecurity degree. He has handled back-end, front-end, and full-stack development, DevSecOps, application security, penetration testing, and solutions architecture. With his combined expertise, Claudio focuses on helping companies by developing and architecting secure and resilient web and mobile applications.

Back-endSoftware EngineeringFull-stack DevelopmentAPI DesignFront-endJavaDatabasesRelational DatabasesREST APIsGitEclipseMongoDBAPI/Services ArchitectureJavaScriptNode.jsDynamic Application Security TestingKali LinuxStrutsPenetration Testing

Portfolio

Sciensa
Jenkins, Java, JavaScript, Docker, Kubernetes, Amazon EKS, Amazon Cognito...
MyBudget
Java, JavaScript, Google Cloud Platform (GCP), CircleCI, Apache Kafka, CQRS...
TeamCulture/Sciensa
Node.js, Heroku, Python, PostgreSQL, Vue, Git, Back-end, Front-end, Leadership...

Experience

Java - 14 yearsFull-stack - 8 yearsJavaScript - 5 yearsMuleSoft - 4 yearsDevSecOps - 2 yearsPenetration Testing - 2 yearsSolution Architecture - 2 yearsApplication Security - 2 years

Availability

Part-time

Preferred Environment

IntelliJ IDEA, Windows, Burp Suite, Linux, Java, JavaScript, Rust, Amazon

The most amazing...

...project I've done is creating a digital bank from scratch and handling its development, architecture, and security as an application security engineer.

Work Experience

Full-stack Software Developer

2020 - PRESENT
Sciensa
  • Created a digital bank from scratch, helping with its architecture. The project was cloud-based and hosted in AWS and MuleSoft enterprise service bus. Some stacks used were Java, JavaScript for web applications (React), and Flutter for mobile.
  • Designed a GitFlow model using Bitbucket and Jenkins as CI/CD, with code quality control analysis, static application security testing using SonarQube, and dynamic application security testing with Dastardly and PortSwigger.
  • Executed regular white-box penetration testing on all applications, created reports, and provided short talks about security best practices.
Technologies: Jenkins, Java, JavaScript, Docker, Kubernetes, Amazon EKS, Amazon Cognito, MuleSoft, Oracle, AWS Lambda, Amazon Simple Queue Service (SQS), Apache Kafka, Burp Suite, Kali Linux, Application Security, DevSecOps, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), OWASP Top 10, Red Teaming, Quarkus, Git, Back-end, Leadership, Sonar, Event-driven Architecture, Microservices, SQL, NoSQL, Full-stack, Amazon Web Services (AWS), Anypoint Studio, CQRS, Behavior-driven Development (BDD), Test-driven Development (TDD), React, PostgreSQL, API Integration, Relational Databases, Databases, Software Architecture, MongoDB, REST APIs, Terraform, HTML5, Single Sign-on (SSO), Software Engineering, Scala, SVG, Figma, WebSockets, API Design, API/Services Architecture, CI/CD Pipelines, Redis, Sentry, APIs, Firebase

Full-stack Software Developer

2018 - 2020
MyBudget
  • Developed a new customer services platform, which simplified client and company communication. The platform was created entirely using an event-driven command and query responsibility segregation architecture with JavaScript (Angular), Java, and Kafka.
  • Configured CI/CD automation using CircleCI and GCP, with code quality check using Sonar.
  • Led a small team of developers from different cultures and countries and conducted short talks and pair programming.
Technologies: Java, JavaScript, Google Cloud Platform (GCP), CircleCI, Apache Kafka, CQRS, Event-driven Architecture, PostgreSQL, Elasticsearch, Sonar, VoIP, Genesys PureCloud, Genesys, Leadership, Back-end, Angular, Spring Boot, Git, Front-end, Microservices, SQL, NoSQL, Full-stack, Kubernetes, Behavior-driven Development (BDD), Test-driven Development (TDD), CSS, CSS3, TypeScript, React, MacOS, HTML, API Integration, Relational Databases, Databases, Full-stack Development, Spring, REST APIs, DevOps, Front-end Development, Software Engineering, SVG, Figma, API Design, API/Services Architecture, CI/CD Pipelines, ESLint, APIs, Neo4j, Firebase

Full-stack Software Developer

2016 - 2018
TeamCulture/Sciensa
  • Developed a human resources platform from scratch with features including employee surveying, anonymous feedback, OKR reports, and recognition sheets.
  • Created and designed every microservice using Node.js and Python and the front end using Vue.
  • Built the platform with cloud-based infrastructure using Heroku and CI/CD using Bitbucket pipelines.
  • Worked as a consultant on projects from a Sciensa client called XP Investimentos, using Ember.js on the front-end side and Mule ESB (Java) as the middleware solution, with an environment using microservice architecture and CI/CD with VSTS.
Technologies: Node.js, Heroku, Python, PostgreSQL, Vue, Git, Back-end, Front-end, Leadership, Microservices, SQL, NoSQL, Full-stack, Behavior-driven Development (BDD), Test-driven Development (TDD), CSS, CSS3, TypeScript, HTML, Google Cloud, GraphQL, API Integration, Relational Databases, Databases, Full-stack Development, Software Architecture, MySQL, MongoDB, UI Design, REST APIs, DevOps, Web App Development, Front-end Development, Server-side Rendering (SSR), Software Engineering, Dashboards, Vuetify, API Design, API/Services Architecture, CI/CD Pipelines, Redis, Express.js, ESLint, APIs

Full-stack Software Developer

2016 - 2016
Pixeon
  • Built and maintained a series of microservices written in the Play Framework run on Java.
  • Developed and supported an Angular front-end application.
  • Created integrations with a speech recognition API to identify and digitalize speeches.
  • Produced and maintained a series of reports using JasperReports.
Technologies: Java, Play Framework, Angular, Docker, Google Speech API, iReport, Git, Back-end, Front-end, Microservices, SQL, Full-stack, Jenkins, Behavior-driven Development (BDD), Test-driven Development (TDD), CSS, CSS3, TypeScript, HTML, API Integration, Relational Databases, Databases, Full-stack Development, Node.js, MySQL, MongoDB, REST APIs, Software Engineering, SVG, WebSockets, API Design, API/Services Architecture, CI/CD Pipelines, APIs

Mobile and Back-end Developer

2015 - 2016
CVC
  • Designed and created a new mobile app from scratch using Ionic.
  • Supported a back-end monolithic application using GWT, a Google's Java and JavaScript single-page application framework.
  • Maintained a few Spring Boot microservice applications.
Technologies: JavaScript, PhoneGap, Ionic, GWT, Spring Boot, Back-end, SQL, RabbitMQ, Test-driven Development (TDD), CSS, CSS3, TypeScript, Eclipse, HTML, Relational Databases, Databases, Full-stack Development, Spring, Web App Development, Software Engineering, APIs

Back-end Developer

2008 - 2015
Tokio Marine HCC
  • Created and maintained a series of Java applications and components using Struts, Enterprise Java Beans (EJB), and JQuery.
  • Participated in a huge downsizing project, migrating and removing all legacy projects from mainframe applications to Java, significantly reducing infrastructure costs.
  • Built and supported transactional and storage procedures using PL/SQL from Oracle.
  • Developed and maintained a series of reports using JasperReports.
Technologies: Java, JBoss, Behavior-driven Development (BDD), Apache Maven, Apache Struts, jQuery, Oracle, PL/SQL, Back-end, SQL, Test-driven Development (TDD), Eclipse, HTML, PostgreSQL, Relational Databases, Databases, Full-stack Development, PHP, Software Engineering

Java Developer

2007 - 2008
Accenture
  • Developed a series of web services using Java and SOAP.
  • Maintained a series of reports using JasperReports.
  • Created and supported a series of stored procedures in Sybase.
Technologies: Java, iReport, Back-end, SQL, Windows, Eclipse, Relational Databases, Databases, Software Engineering

Java Developer

2006 - 2007
Gennari & Peartree Projetos e Sistemas Ltda
  • Created and supported Java applications using EJB, Struts, and Hibernate.
  • Developed and maintained Java applications using JavaServer Faces.
  • Integrated and created process flows using IBM Rational Rose.
Technologies: Java, OC4J, Back-end, SQL, Windows, Eclipse, Software Engineering

Magnum Bank

https://www.magnumscd.com.br/
A digital bank that I developed from scratch, including its architecture and security. The bank was launched and approved by the Brazilian Central Bank in January 2023 and is now in beta version with 200 accounts in production.

TeamCulture

https://www.teamculture.com.br/
A human resources platform that I created from scratch. Its features included employee surveying, anonymous feedback, OKR reporting, and recognition sheets. TeamCulture reached over 85,000 active users after six years of activity.

MyBudget - Australia

https://www.mybudget.com.au/
Developed a new customer services platform—which simplified client and company communication—created entirely using an event-driven command and query responsibility segregation architecture with JavaScript, Java, and Kafka.
2017 - 2020

Associate Degree in Cybersecurity

Faculdade de Informática e Administração Paulista - Sao Paulo, Brazil

NOVEMBER 2023 - PRESENT

Hack The Box Certified Penetration Testing Specialist (HTB CPTS)

Hack The Box

Libraries/APIs

Node.js, REST APIs, Vue, React, Google Speech API, jQuery

Tools

Git, Jenkins, Amazon Cognito, Sonar, iReport, Apache Maven, Anypoint Studio, Figma, Sentry, Amazon EKS, Amazon Simple Queue Service (SQS), RabbitMQ, CircleCI, IntelliJ IDEA, Terraform

Languages

Java, JavaScript, HTML, SQL, TypeScript, CSS, CSS3, Scala, Python, Bash Script, GraphQL, PHP, Rust, HTML5

Paradigms

API/Services Architecture, DevSecOps, Penetration Testing, Microservices, Test-driven Development (TDD), Behavior-driven Development (BDD), DevOps, CQRS, Event-driven Architecture, UI Design

Platforms

Eclipse, Kali Linux, Burp Suite, Kubernetes, MuleSoft, Oracle, AWS Lambda, Apache Kafka, Google Cloud Platform (GCP), Amazon Web Services (AWS), Windows, MacOS, Firebase, Docker, Visual Studio Code (VS Code), Heroku, JBoss, Linux, Amazon

Storage

Relational Databases, Databases, MongoDB, NoSQL, Google Cloud, PostgreSQL, MySQL, Redis, Elasticsearch, PL/SQL, Neo4j

Frameworks

Angular, Spring Boot, Spring, Vuetify, Express.js, Play Framework, PhoneGap, Ionic, GWT, Apache Struts

Other

Front-end, Back-end, API Integration, Full-stack Development, Front-end Development, Software Engineering, API Design, APIs, Web Security, Application Security, Solution Architecture, Full-stack, Software Architecture, Single Sign-on (SSO), Web App Development, Server-side Rendering (SSR), Dashboards, SVG, WebSockets, CI/CD Pipelines, ESLint, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Red Teaming, OWASP Top 10, VoIP, Genesys PureCloud, Genesys, Leadership, OC4J, Quarkus

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring