Jeremy Lee, Developer in Sydney, New South Wales, Australia
Jeremy is available for hire
Hire Jeremy

Jeremy Lee

Verified Expert  in Engineering

Software Developer

Sydney, New South Wales, Australia

Toptal member since November 1, 2022

Bio

Jeremy has 10+ years of cyber security experience, specializing in application security and DevSecOps. With a software engineering background, he helped agile scrum teams in all security engineering activities in the SDLC, from security requirements, secure architecture design, and threat modeling to secure code review. He has also been heavily involved in CI/CD pipelines that incorporate automated static code analysis and software component analysis, such as OSS scanning.

Portfolio

Honeywell
C++, C#, ASP.NET, Visual Basic 6 (VB6), Visual Studio, Windows...
Soprano Design
Java, C#, C++, IT Project Management, Visual Studio

Experience

Availability

Part-time

Preferred Environment

Windows, Visual Studio, C++, C#, Threat Modeling, Jira, Confluence, Bitbucket, Bamboo

The most amazing...

...thing I've achieved is analyzing and mitigating legacy vulnerabilities and improving the security posture of many prominent industrial software products.

Work Experience

Senior Advanced Software Engineer

2011 - PRESENT
Honeywell
  • Analyzed software architecture design and vulnerabilities with threat modeling and STRIDE using Microsoft Threat Modeling Tool.
  • Implemented a CI/CD pipeline in Bitbucket and Bamboo with automated SAST using Coverity and SCA using Black Duck Hub.
  • Reviewed C++ and C# code to catch vulnerabilities listed on OWASP Top 10.
  • Designed industrial software architecture and implemented it in C++ and C#.
Technologies: C++, C#, ASP.NET, Visual Basic 6 (VB6), Visual Studio, Windows, Software Architecture, Agile, Scrum, Application Security, IIS, Microsoft SQL Server, Coverity, BlackDuck Protex, Jira, Confluence, Bitbucket, Bamboo, Threat Modeling, OWASP Top 10, Azure, Git, Burp Suite, STRIDE

Senior Developer | Team Lead | Project Manager

2009 - 2011
Soprano Design
  • Developed telecommunication applications in C++ and C# using SMPP protocol for a telco.
  • Managed and led a team of four developers and test engineers, planning and assigning tasks and bug fixes to developers on a monthly basis.
  • Managed the application platform and server rollout and deployment in the Rackspace data center in Europe due to business expansion.
Technologies: Java, C#, C++, IT Project Management, Visual Studio

Application Security Engineering

In my current workplace, I oversee and manage application security engineering tasks in our SDLC. This includes generating and reviewing security requirements of our software product, secure software architecture design, threat modeling to discover any gaps between requirements and design, reviewing data privacy, reviewing secure code, and mitigating design and coding vulnerabilities. I also oversee the CI/CD pipeline with automated build, static code analysis, software component analysis, and scanning vulnerable open-source software.
1999 - 2004

PhD in Computer Engineering

University of New South Wales - Sydney, NSW, Australia

1991 - 1994

Bachelor's Degree in Computer Engineering

University of Western Australia - Perth, WA, Australia

APRIL 2022 - PRESENT

Certified Scrum Product Owner

AxisAgile

MARCH 2018 - PRESENT

Cloud Security Certification (CCSP)

(ISC)²

MARCH 2018 - PRESENT

Certified Secure Software Lifecycle Professional (CSSLP)

(ISC)²

MARCH 2018 - PRESENT

Certified Information Systems Security Professional (CISSP)

(ISC)²

Tools

Visual Studio, Jira, Coverity, BlackDuck Protex, Confluence, Bitbucket, Bamboo, Git

Languages

C++, C#, C, Java, Visual Basic 6 (VB6)

Paradigms

Agile, Scrum

Frameworks

ASP.NET

Platforms

Windows, Unix, Azure, Burp Suite

Storage

Microsoft SQL Server

Other

Secure Coding, Application Security, Threat Modeling, OWASP Top 10, CISSP, Security Design, Web Security, Secure Storage, Software Architecture, IIS, Web App Security, Formal Methods, Certified Scrum Product Owner (CSPO), Information Security Management Systems (ISMS), IoT Security, Cloud Security, IT Project Management, STRIDE

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring