Claudio Nazzari
Verified Expert in Engineering
Cybersecurity Engineer and Software Developer
São Paulo - State of São Paulo, Brazil
Toptal member since April 10, 2023
Claudio has over 20 years of software development experience and a cybersecurity degree. He has handled back-end, front-end, and full-stack development, DevSecOps, application security, penetration testing, and solutions architecture. With his combined expertise, Claudio focuses on helping companies by developing and architecting secure and resilient web and mobile applications.
Portfolio
Experience
- APIs - 10 years
- API Integration - 8 years
- Full-stack - 8 years
- Technical Writing - 5 years
- JavaScript - 5 years
- Solution Architecture - 2 years
- DevSecOps - 2 years
- Application Security - 2 years
Availability
Preferred Environment
IntelliJ IDEA, Windows, Burp Suite, Linux, Java, JavaScript, Rust, Amazon
The most amazing...
...project I've done is creating a digital bank from scratch and handling its development, architecture, and security as an application security engineer.
Work Experience
Partner & Software Developer
Uru Studios
- Created and idealized a mobile game called Haunted Bricks, leading all game design, mechanics, and C# development at Uru Studios. Managed gameplay balancing, character design, and player progression across all game stages.
- Implemented complex gameplay features using design patterns like FSM, ensuring robust, scalable systems. Integrated UI elements, reward systems, and custom animations using Unity’s advanced tools.
- Led the development from concept to release, integrating Unity Ads, analytics, and IAP systems. Focused on creating a seamless user experience while optimizing for both Android and iOS platforms.
Solution Architect | Full-stack Developer | Tech Writer
Sciensa
- Created a digital bank from scratch, helping with its architecture. The project was cloud-based and hosted in AWS and MuleSoft enterprise service bus. I used Java, JavaScript/React for web applications, and Flutter for mobile.
- Designed a GitFlow model using Bitbucket and Jenkins as CI/CD, with code quality control analysis, static application security testing using SonarQube, and dynamic application security testing with Dastardly and PortSwigger.
- Executed regular white-box penetration testing on all applications, created reports, and provided short talks about security best practices.
- Developed comprehensive API documentations for the banking API's with RAML specifications using Anypoint API Design. Employed best practices of REST API design, ensuring consistent and intuitive API endpoints.
Full-stack Software Developer
MyBudget
- Developed a new customer services platform, which simplified client and company communication. The platform was created entirely using an event-driven command and query responsibility segregation architecture with JavaScript (Angular), Java, and Kafka.
- Configured CI/CD automation using CircleCI and GCP, with code quality check using Sonar.
- Led a small team of developers from different cultures and countries and conducted short talks and pair programming.
Full-stack Software Developer
TeamCulture/Sciensa
- Developed a human resources platform from scratch with features including employee surveying, anonymous feedback, OKR reports, and recognition sheets.
- Created and designed every microservice using Node.js and Python and the front end using Vue.
- Built the platform with cloud-based infrastructure using Heroku and CI/CD using Bitbucket pipelines.
- Worked as a consultant on projects from a Sciensa client called XP Investimentos, using Ember.js on the front-end side and Mule ESB (Java) as the middleware solution, with an environment using microservice architecture and CI/CD with VSTS.
Full-stack Software Developer
Pixeon
- Built and maintained a series of microservices written in the Play Framework run on Java.
- Developed and supported an Angular front-end application.
- Created integrations with a speech recognition API to identify and digitalize speeches.
- Produced and maintained a series of reports using JasperReports.
Mobile and Back-end Developer
CVC
- Designed and created a new mobile app from scratch using Ionic.
- Supported a back-end monolithic application using GWT, a Google's Java and JavaScript single-page application framework.
- Maintained a few Spring Boot microservice applications.
Back-end Developer
Tokio Marine HCC
- Created and maintained a series of Java applications and components using Struts, Enterprise Java Beans (EJB), and JQuery.
- Participated in a huge downsizing project, migrating and removing all legacy projects from mainframe applications to Java, significantly reducing infrastructure costs.
- Built and supported transactional and storage procedures using PL/SQL from Oracle.
- Developed and maintained a series of reports using JasperReports.
Java Developer
Accenture
- Developed a series of web services using Java and SOAP.
- Maintained a series of reports using JasperReports.
- Created and supported a series of stored procedures in Sybase.
Java Developer
Gennari & Peartree Projetos e Sistemas Ltda
- Created and supported Java applications using EJB, Struts, and Hibernate.
- Developed and maintained Java applications using JavaServer Faces.
- Integrated and created process flows using IBM Rational Rose.
Experience
Magnum Bank
https://www.magnumscd.com.br/TeamCulture
MyBudget - Australia
https://www.mybudget.com.au/Haunted Bricks
https://play.google.com/store/apps/details?id=com.urustudios.hauntedbricksEducation
Associate Degree in Cybersecurity
Faculdade de Informática e Administração Paulista - Sao Paulo, Brazil
Certifications
Hack The Box Certified Penetration Testing Specialist (HTB CPTS)
Hack The Box
Skills
Libraries/APIs
Node.js, Vue, REST APIs, React, Vuex, Google Speech API, jQuery
Tools
Git, GitHub, Jenkins, Amazon Cognito, Sonar, iReport, Apache Maven, Anypoint Studio, Figma, Sentry, AWS IAM, Amazon EKS, Amazon Simple Queue Service (SQS), RabbitMQ, CircleCI, IntelliJ IDEA, OC4J, Terraform
Languages
Java, JavaScript, TypeScript, HTML, Python, SQL, CSS, CSS3, GraphQL, Scala, Bash Script, PHP, Rust, HTML5, C#
Frameworks
Angular, Spring Boot, Spring, Vuetify, Express.js, Next.js, Play Framework, PhoneGap, Ionic, GWT, Apache Struts, Unity
Paradigms
API/Services Architecture, Asynchronous Programming, Testing, Object-oriented Programming (OOP), DevSecOps, Penetration Testing, Microservices, Test-driven Development (TDD), Behavior-driven Development (BDD), DevOps, CQRS, Event-driven Architecture, UI Design
Platforms
Eclipse, Linux, Kali Linux, Burp Suite, Kubernetes, MuleSoft, Oracle, AWS Lambda, Apache Kafka, Google Cloud Platform (GCP), Amazon Web Services (AWS), Windows, MacOS, Amazon, Firebase, Docker, Visual Studio Code (VS Code), Heroku, JBoss
Storage
PostgreSQL, Relational Databases, Databases, MongoDB, NoSQL, Google Cloud, MySQL, Redis, Elasticsearch, PL/SQL, Neo4j
Other
Front-end, Back-end, API Integration, Full-stack Development, Front-end Development, Software Engineering, API Design, APIs, Technical Leadership, Architecture, Web Security, Application Security, Solution Architecture, Full-stack, Software Architecture, Single Sign-on (SSO), Web App Development, Server-side Rendering (SSR), Dashboards, SVG, WebSockets, CI/CD Pipelines, ESLint, Data Handling, Performance Optimization, Technical Writing, Infrastructure as Code (IaC), Security, Concurrency, Scalable Web Services, Game Development, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Red Teaming, OWASP Top 10, VoIP, Genesys PureCloud, Genesys, Leadership, Quarkus, Web Scraping
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring