Claudio Nazzari, Developer in São Paulo - State of São Paulo, Brazil
Claudio is available for hire
Hire Claudio

Claudio Nazzari

Verified Expert  in Engineering

Cybersecurity Engineer and Software Developer

São Paulo - State of São Paulo, Brazil

Toptal member since April 10, 2023

Bio

Claudio has over 20 years of software development experience and a cybersecurity degree. He has handled back-end, front-end, and full-stack development, DevSecOps, application security, penetration testing, and solutions architecture. With his combined expertise, Claudio focuses on helping companies by developing and architecting secure and resilient web and mobile applications.

Portfolio

Uru Studios
Unity, C#, Game Development
Sciensa
Jenkins, Java, JavaScript, Docker, Kubernetes, Amazon EKS, Amazon Cognito...
MyBudget
Java, JavaScript, Google Cloud Platform (GCP), CircleCI, Apache Kafka, CQRS...

Experience

  • APIs - 10 years
  • API Integration - 8 years
  • Full-stack - 8 years
  • Technical Writing - 5 years
  • JavaScript - 5 years
  • Solution Architecture - 2 years
  • DevSecOps - 2 years
  • Application Security - 2 years

Availability

Part-time

Preferred Environment

IntelliJ IDEA, Windows, Burp Suite, Linux, Java, JavaScript, Rust, Amazon

The most amazing...

...project I've done is creating a digital bank from scratch and handling its development, architecture, and security as an application security engineer.

Work Experience

Partner & Software Developer

2024 - PRESENT
Uru Studios
  • Created and idealized a mobile game called Haunted Bricks, leading all game design, mechanics, and C# development at Uru Studios. Managed gameplay balancing, character design, and player progression across all game stages.
  • Implemented complex gameplay features using design patterns like FSM, ensuring robust, scalable systems. Integrated UI elements, reward systems, and custom animations using Unity’s advanced tools.
  • Led the development from concept to release, integrating Unity Ads, analytics, and IAP systems. Focused on creating a seamless user experience while optimizing for both Android and iOS platforms.
Technologies: Unity, C#, Game Development

Solution Architect | Full-stack Developer | Tech Writer

2020 - 2023
Sciensa
  • Created a digital bank from scratch, helping with its architecture. The project was cloud-based and hosted in AWS and MuleSoft enterprise service bus. I used Java, JavaScript/React for web applications, and Flutter for mobile.
  • Designed a GitFlow model using Bitbucket and Jenkins as CI/CD, with code quality control analysis, static application security testing using SonarQube, and dynamic application security testing with Dastardly and PortSwigger.
  • Executed regular white-box penetration testing on all applications, created reports, and provided short talks about security best practices.
  • Developed comprehensive API documentations for the banking API's with RAML specifications using Anypoint API Design. Employed best practices of REST API design, ensuring consistent and intuitive API endpoints.
Technologies: Jenkins, Java, JavaScript, Docker, Kubernetes, Amazon EKS, Amazon Cognito, MuleSoft, Oracle, AWS Lambda, Amazon Simple Queue Service (SQS), Apache Kafka, Burp Suite, Kali Linux, Application Security, DevSecOps, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), OWASP Top 10, Red Teaming, Quarkus, Git, Back-end, Leadership, Sonar, Event-driven Architecture, Microservices, SQL, NoSQL, Full-stack, Amazon Web Services (AWS), Anypoint Studio, CQRS, Behavior-driven Development (BDD), Test-driven Development (TDD), React, PostgreSQL, API Integration, Relational Databases, Databases, Software Architecture, MongoDB, REST APIs, Terraform, HTML5, Single Sign-on (SSO), Software Engineering, Scala, SVG, Figma, WebSockets, API Design, API/Services Architecture, CI/CD Pipelines, Redis, Sentry, APIs, Firebase, Linux, Amazon, Bash Script, Asynchronous Programming, AWS IAM, Performance Optimization, Testing, Technical Writing, Infrastructure as Code (IaC), Security, Object-oriented Programming (OOP), Technical Leadership, Architecture, Concurrency, Scalable Web Services, GitHub, Next.js

Full-stack Software Developer

2018 - 2020
MyBudget
  • Developed a new customer services platform, which simplified client and company communication. The platform was created entirely using an event-driven command and query responsibility segregation architecture with JavaScript (Angular), Java, and Kafka.
  • Configured CI/CD automation using CircleCI and GCP, with code quality check using Sonar.
  • Led a small team of developers from different cultures and countries and conducted short talks and pair programming.
Technologies: Java, JavaScript, Google Cloud Platform (GCP), CircleCI, Apache Kafka, CQRS, Event-driven Architecture, PostgreSQL, Elasticsearch, Sonar, VoIP, Genesys PureCloud, Genesys, Leadership, Back-end, Angular, Spring Boot, Git, Front-end, Microservices, SQL, NoSQL, Full-stack, Kubernetes, Behavior-driven Development (BDD), Test-driven Development (TDD), CSS, CSS3, TypeScript, React, MacOS, HTML, API Integration, Relational Databases, Databases, Full-stack Development, Spring, REST APIs, DevOps, Front-end Development, Software Engineering, SVG, Figma, API Design, API/Services Architecture, CI/CD Pipelines, ESLint, APIs, Neo4j, Firebase, Linux, Asynchronous Programming, Performance Optimization, Testing, Object-oriented Programming (OOP), Technical Leadership, Concurrency, Scalable Web Services, GitHub

Full-stack Software Developer

2016 - 2018
TeamCulture/Sciensa
  • Developed a human resources platform from scratch with features including employee surveying, anonymous feedback, OKR reports, and recognition sheets.
  • Created and designed every microservice using Node.js and Python and the front end using Vue.
  • Built the platform with cloud-based infrastructure using Heroku and CI/CD using Bitbucket pipelines.
  • Worked as a consultant on projects from a Sciensa client called XP Investimentos, using Ember.js on the front-end side and Mule ESB (Java) as the middleware solution, with an environment using microservice architecture and CI/CD with VSTS.
Technologies: Node.js, Heroku, Python, PostgreSQL, Vue, Git, Back-end, Front-end, Leadership, Microservices, SQL, NoSQL, Full-stack, Behavior-driven Development (BDD), Test-driven Development (TDD), CSS, CSS3, TypeScript, HTML, Google Cloud, GraphQL, API Integration, Relational Databases, Databases, Full-stack Development, Software Architecture, MySQL, MongoDB, UI Design, REST APIs, DevOps, Web App Development, Front-end Development, Server-side Rendering (SSR), Software Engineering, Dashboards, Vuetify, API Design, API/Services Architecture, CI/CD Pipelines, Redis, Express.js, ESLint, APIs, Linux, Visual Studio Code (VS Code), Data Handling, Web Scraping, Testing, Vuex, Object-oriented Programming (OOP), Technical Leadership, GitHub

Full-stack Software Developer

2016 - 2016
Pixeon
  • Built and maintained a series of microservices written in the Play Framework run on Java.
  • Developed and supported an Angular front-end application.
  • Created integrations with a speech recognition API to identify and digitalize speeches.
  • Produced and maintained a series of reports using JasperReports.
Technologies: Java, Play Framework, Angular, Docker, Google Speech API, iReport, Git, Back-end, Front-end, Microservices, SQL, Full-stack, Jenkins, Behavior-driven Development (BDD), Test-driven Development (TDD), CSS, CSS3, TypeScript, HTML, API Integration, Relational Databases, Databases, Full-stack Development, Node.js, MySQL, MongoDB, REST APIs, Software Engineering, SVG, WebSockets, API Design, API/Services Architecture, CI/CD Pipelines, APIs, Linux, Testing, Object-oriented Programming (OOP), Scalable Web Services, GitHub

Mobile and Back-end Developer

2015 - 2016
CVC
  • Designed and created a new mobile app from scratch using Ionic.
  • Supported a back-end monolithic application using GWT, a Google's Java and JavaScript single-page application framework.
  • Maintained a few Spring Boot microservice applications.
Technologies: JavaScript, PhoneGap, Ionic, GWT, Spring Boot, Back-end, SQL, RabbitMQ, Test-driven Development (TDD), CSS, CSS3, TypeScript, Eclipse, HTML, Relational Databases, Databases, Full-stack Development, Spring, Web App Development, Software Engineering, APIs, Linux, Testing, Object-oriented Programming (OOP), GitHub

Back-end Developer

2008 - 2015
Tokio Marine HCC
  • Created and maintained a series of Java applications and components using Struts, Enterprise Java Beans (EJB), and JQuery.
  • Participated in a huge downsizing project, migrating and removing all legacy projects from mainframe applications to Java, significantly reducing infrastructure costs.
  • Built and supported transactional and storage procedures using PL/SQL from Oracle.
  • Developed and maintained a series of reports using JasperReports.
Technologies: Java, JBoss, Behavior-driven Development (BDD), Apache Maven, Apache Struts, jQuery, Oracle, PL/SQL, Back-end, SQL, Test-driven Development (TDD), Eclipse, HTML, PostgreSQL, Relational Databases, Databases, Full-stack Development, PHP, Software Engineering, Testing, Object-oriented Programming (OOP)

Java Developer

2007 - 2008
Accenture
  • Developed a series of web services using Java and SOAP.
  • Maintained a series of reports using JasperReports.
  • Created and supported a series of stored procedures in Sybase.
Technologies: Java, iReport, Back-end, SQL, Windows, Eclipse, Relational Databases, Databases, Software Engineering, Testing, Object-oriented Programming (OOP)

Java Developer

2006 - 2007
Gennari & Peartree Projetos e Sistemas Ltda
  • Created and supported Java applications using EJB, Struts, and Hibernate.
  • Developed and maintained Java applications using JavaServer Faces.
  • Integrated and created process flows using IBM Rational Rose.
Technologies: Java, OC4J, Back-end, SQL, Windows, Eclipse, Software Engineering, Object-oriented Programming (OOP)

Magnum Bank

https://www.magnumscd.com.br/
A digital bank that I developed from scratch, including its architecture and security. The bank was launched and approved by the Brazilian Central Bank in January 2023 and is now in beta version with 200 accounts in production.

TeamCulture

A human resources platform that I created from scratch. Its features included employee surveying, anonymous feedback, OKR reporting, and recognition sheets. TeamCulture reached over 85,000 active users after six years of activity.

MyBudget - Australia

https://www.mybudget.com.au/
Developed a new customer services platform—which simplified client and company communication—created entirely using an event-driven command and query responsibility segregation architecture with JavaScript, Java, and Kafka.

Haunted Bricks

https://play.google.com/store/apps/details?id=com.urustudios.hauntedbricks
Created and idealized a game called Haunted Bricks, leading all game design, mechanics, and C# development at Uru Studios. Managed gameplay balancing, character design, and player progression across all stages stages.
2017 - 2020

Associate Degree in Cybersecurity

Faculdade de Informática e Administração Paulista - Sao Paulo, Brazil

NOVEMBER 2023 - PRESENT

Hack The Box Certified Penetration Testing Specialist (HTB CPTS)

Hack The Box

Libraries/APIs

Node.js, Vue, REST APIs, React, Vuex, Google Speech API, jQuery

Tools

Git, GitHub, Jenkins, Amazon Cognito, Sonar, iReport, Apache Maven, Anypoint Studio, Figma, Sentry, AWS IAM, Amazon EKS, Amazon Simple Queue Service (SQS), RabbitMQ, CircleCI, IntelliJ IDEA, OC4J, Terraform

Languages

Java, JavaScript, TypeScript, HTML, Python, SQL, CSS, CSS3, GraphQL, Scala, Bash Script, PHP, Rust, HTML5, C#

Frameworks

Angular, Spring Boot, Spring, Vuetify, Express.js, Next.js, Play Framework, PhoneGap, Ionic, GWT, Apache Struts, Unity

Paradigms

API/Services Architecture, Asynchronous Programming, Testing, Object-oriented Programming (OOP), DevSecOps, Penetration Testing, Microservices, Test-driven Development (TDD), Behavior-driven Development (BDD), DevOps, CQRS, Event-driven Architecture, UI Design

Platforms

Eclipse, Linux, Kali Linux, Burp Suite, Kubernetes, MuleSoft, Oracle, AWS Lambda, Apache Kafka, Google Cloud Platform (GCP), Amazon Web Services (AWS), Windows, MacOS, Amazon, Firebase, Docker, Visual Studio Code (VS Code), Heroku, JBoss

Storage

PostgreSQL, Relational Databases, Databases, MongoDB, NoSQL, Google Cloud, MySQL, Redis, Elasticsearch, PL/SQL, Neo4j

Other

Front-end, Back-end, API Integration, Full-stack Development, Front-end Development, Software Engineering, API Design, APIs, Technical Leadership, Architecture, Web Security, Application Security, Solution Architecture, Full-stack, Software Architecture, Single Sign-on (SSO), Web App Development, Server-side Rendering (SSR), Dashboards, SVG, WebSockets, CI/CD Pipelines, ESLint, Data Handling, Performance Optimization, Technical Writing, Infrastructure as Code (IaC), Security, Concurrency, Scalable Web Services, Game Development, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Red Teaming, OWASP Top 10, VoIP, Genesys PureCloud, Genesys, Leadership, Quarkus, Web Scraping

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring