Jeremy is available for hire

Jeremy Lee

Verified Expert in Engineering

Software Developer

Location

Sydney, New South Wales, Australia

Toptal Member Since

November 1, 2022

Jeremy has 10+ years of cyber security experience, specializing in application security and DevSecOps. With a software engineering background, he helped agile scrum teams in all security engineering activities in the SDLC, from security requirements, secure architecture design, and threat modeling to secure code review. He has also been heavily involved in CI/CD pipelines that incorporate automated static code analysis and software component analysis, such as OSS scanning.

Secure Coding Application Security Visual Studio C++C C#Agile Jira Web Security IIS Web App Security Windows Microsoft SQL Server ASP.NET Confluence

Portfolio

Honeywell

C++, C#, ASP.NET, Visual Basic 6 (VB6), Visual Studio, Windows...

Soprano Design

Java, C#, C++, IT Project Management, Visual Studio

Experience

Threat Modeling - 8 years Secure Coding - 8 years OWASP Top 10 - 8 years Application Security - 8 years Security Design - 8 years Web Security - 8 years Agile - 6 years CISSP - 4 years

Availability

Part-time

Preferred Environment

Windows, Visual Studio, C++, C#, Threat Modeling, Jira, Confluence, Bitbucket, Bamboo

The most amazing...

...thing I've achieved is analyzing and mitigating legacy vulnerabilities and improving the security posture of many prominent industrial software products.

Work Experience

Senior Advanced Software Engineer

2011 - PRESENT

Honeywell

Analyzed software architecture design and vulnerabilities with threat modeling and STRIDE using Microsoft Threat Modeling Tool.
Implemented a CI/CD pipeline in Bitbucket and Bamboo with automated SAST using Coverity and SCA using Black Duck Hub.
Reviewed C++ and C# code to catch vulnerabilities listed on OWASP Top 10.
Designed industrial software architecture and implemented it in C++ and C#.

Technologies: C++, C#, ASP.NET, Visual Basic 6 (VB6), Visual Studio, Windows, Software Architecture, Agile, Scrum, Application Security, IIS, Microsoft SQL Server, Coverity, BlackDuck Protex, Jira, Confluence, Bitbucket, Bamboo, Threat Modeling, OWASP Top 10, Azure, Git, Burp Suite

Senior Developer | Team Lead | Project Manager

2009 - 2011

Soprano Design

Developed telecommunication applications in C++ and C# using SMPP protocol for a telco.
Managed and led a team of four developers and test engineers, planning and assigning tasks and bug fixes to developers on a monthly basis.
Managed the application platform and server rollout and deployment in the Rackspace data center in Europe due to business expansion.

Technologies: Java, C#, C++, IT Project Management, Visual Studio

Experience

Application Security Engineering

In my current workplace, I oversee and manage application security engineering tasks in our SDLC. This includes generating and reviewing security requirements of our software product, secure software architecture design, threat modeling to discover any gaps between requirements and design, reviewing data privacy, reviewing secure code, and mitigating design and coding vulnerabilities. I also oversee the CI/CD pipeline with automated build, static code analysis, software component analysis, and scanning vulnerable open-source software.

Skills

Languages

C++, C#, C, Java, Visual Basic 6 (VB6)

Tools

Visual Studio, Jira, Coverity, BlackDuck Protex, Confluence, Bitbucket, Bamboo, Git

Paradigms

Agile, Scrum

Other

Secure Coding, Application Security, Threat Modeling, OWASP Top 10, CISSP, Security Design, Web Security, Secure Storage, Software Architecture, IIS, Web App Security, Formal Methods, Certified Scrum Product Owner (CSPO), Information Security Management Systems (ISMS), IoT Security, Cloud Security, IT Project Management

Frameworks

ASP.NET

Platforms

Windows, Unix, Azure, Burp Suite

Storage

Microsoft SQL Server

Education

1999 - 2004

PhD in Computer Engineering

University of New South Wales - Sydney, NSW, Australia

1991 - 1994

Bachelor's Degree in Computer Engineering

University of Western Australia - Perth, WA, Australia

Certifications

APRIL 2022 - PRESENT

Certified Scrum Product Owner

AxisAgile

MARCH 2018 - PRESENT

Cloud Security Certification (CCSP)

(ISC)²

MARCH 2018 - PRESENT

Certified Secure Software Lifecycle Professional (CSSLP)

(ISC)²

MARCH 2018 - PRESENT

Certified Information Systems Security Professional (CISSP)

(ISC)²

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring