Jeremy Lee, Developer in Sydney, New South Wales, Australia
Jeremy is available for hire
Hire Jeremy

Jeremy Lee

Verified Expert  in Engineering

Software Developer

Location
Sydney, New South Wales, Australia
Toptal Member Since
November 1, 2022

Jeremy has 10+ years of cyber security experience, specializing in application security and DevSecOps. With a software engineering background, he helped agile scrum teams in all security engineering activities in the SDLC, from security requirements, secure architecture design, and threat modeling to secure code review. He has also been heavily involved in CI/CD pipelines that incorporate automated static code analysis and software component analysis, such as OSS scanning.

Secure CodingVisual StudioC++CC#AgileScrumJiraWeb SecurityIISWeb App SecurityWindowsMicrosoft SQL ServerASP.NETConfluence

Portfolio

Honeywell
C++, C#, ASP.NET, Visual Basic 6 (VB6), Visual Studio, Windows...
Soprano Design
Java, C#, C++, IT Project Management, Visual Studio

Experience

Security Design - 8 yearsWeb Security - 8 yearsSecure Coding - 8 yearsApplication Security - 8 yearsThreat Modeling - 8 yearsOWASP Top 10 - 8 yearsAgile - 6 yearsCISSP - 4 years

Availability

Part-time

Preferred Environment

Windows, Visual Studio, C++, C#, Threat Modeling, Jira, Confluence, Bitbucket, Bamboo

The most amazing...

...thing I've achieved is analyzing and mitigating legacy vulnerabilities and improving the security posture of many prominent industrial software products.

Work Experience

Senior Advanced Software Engineer

2011 - PRESENT
Honeywell
  • Analyzed software architecture design and vulnerabilities with threat modeling and STRIDE using Microsoft Threat Modeling Tool.
  • Implemented a CI/CD pipeline in Bitbucket and Bamboo with automated SAST using Coverity and SCA using Black Duck Hub.
  • Reviewed C++ and C# code to catch vulnerabilities listed on OWASP Top 10.
  • Designed industrial software architecture and implemented it in C++ and C#.
Technologies: C++, C#, ASP.NET, Visual Basic 6 (VB6), Visual Studio, Windows, Software Architecture, Agile, Scrum, Application Security, IIS, Microsoft SQL Server, Coverity, BlackDuck Protex, Jira, Confluence, Bitbucket, Bamboo, Threat Modeling, OWASP Top 10, Azure, Git, Burp Suite

Senior Developer | Team Lead | Project Manager

2009 - 2011
Soprano Design
  • Developed telecommunication applications in C++ and C# using SMPP protocol for a telco.
  • Managed and led a team of four developers and test engineers, planning and assigning tasks and bug fixes to developers on a monthly basis.
  • Managed the application platform and server rollout and deployment in the Rackspace data center in Europe due to business expansion.
Technologies: Java, C#, C++, IT Project Management, Visual Studio

Application Security Engineering

In my current workplace, I oversee and manage application security engineering tasks in our SDLC. This includes generating and reviewing security requirements of our software product, secure software architecture design, threat modeling to discover any gaps between requirements and design, reviewing data privacy, reviewing secure code, and mitigating design and coding vulnerabilities. I also oversee the CI/CD pipeline with automated build, static code analysis, software component analysis, and scanning vulnerable open-source software.

Languages

C++, C#, C, Java, Visual Basic 6 (VB6)

Tools

Visual Studio, Jira, Coverity, BlackDuck Protex, Confluence, Bitbucket, Bamboo, Git

Paradigms

Agile, Scrum

Other

Secure Coding, Application Security, Threat Modeling, OWASP Top 10, CISSP, Security Design, Web Security, Secure Storage, Software Architecture, IIS, Web App Security, Formal Methods, Certified Scrum Product Owner (CSPO), Information Security Management Systems (ISMS), IoT Security, Cloud Security, IT Project Management

Frameworks

ASP.NET

Platforms

Windows, Unix, Azure, Burp Suite

Storage

Microsoft SQL Server

1999 - 2004

PhD in Computer Engineering

University of New South Wales - Sydney, NSW, Australia

1991 - 1994

Bachelor's Degree in Computer Engineering

University of Western Australia - Perth, WA, Australia

APRIL 2022 - PRESENT

Certified Scrum Product Owner

AxisAgile

MARCH 2018 - PRESENT

Cloud Security Certification (CCSP)

(ISC)²

MARCH 2018 - PRESENT

Certified Secure Software Lifecycle Professional (CSSLP)

(ISC)²

MARCH 2018 - PRESENT

Certified Information Systems Security Professional (CISSP)

(ISC)²