Oscar Blanco Castan, Developer in Tarragona, Spain
Oscar is available for hire
Hire Oscar

Oscar Blanco Castan

Verified Expert  in Engineering

DevOps Engineer and Developer

Tarragona, Spain

Toptal member since March 3, 2021

Expertise
DevOpsAgile DevelopmentPythonDockerTerraformAWS DevOpsAWS LambdaAWSCloud EngineeringGitHubRuby on RailsJavaScriptTypeScriptPHP
Bio

Oscar is a DevOps engineer with experience in security, back-end development, and system administration. While working for Skyscanner, he's maintained open-source projects like Github.com/Skyscanner/cfripper; CFRipper has been mentioned in the book "Hands-On AWS Penetration Testing with Kali Linux." While Oscar is hyper-focused on Python programming, he's programmed in various languages and frameworks, including Ruby on Rails, PHP, TypeScript, and Bash, among others.

Portfolio

Moonpay
Google Cloud Platform (GCP), DevSecOps, GitHub, CircleCI, TypeScript...
Skyscanner
Python, Security, Platforms, AWS CloudFormation, Amazon Web Services (AWS)...

Experience

  • Platforms - 4 years
  • Python - 4 years
  • Docker - 4 years
  • DevSecOps - 4 years
  • Amazon Web Services (AWS) - 3 years
  • Security - 2 years
  • Kubernetes - 1 year

Availability

Part-time

Preferred Environment

Slack, Zoom, JetBrains, MacOS, DevSecOps

The most amazing...

...security assessment I've built could escape from a Docker container running in the continuous integration pipeline, impersonate admin users, and steal secrets.

Work Experience

Cloud, Product Security Engineer

2022 - PRESENT
Moonpay
  • Conducted thorough research and successfully implemented a non-custodial wallet system leveraging Key Management Service (KMS) on Amazon Web Services (AWS), enhancing security and user autonomy.
  • Elevated the compliance score by an average of 50% across multiple compliance frameworks for AWS, significantly bolstering regulatory adherence and system reliability.
  • Streamlined our domain management by consolidating various domain providers into a single platform, purged outdated entries, implemented DMARC to enhance email security, and secured BIMI certification to establish a trusted brand presence in inboxes.
Technologies: Google Cloud Platform (GCP), DevSecOps, GitHub, CircleCI, TypeScript, Amazon Web Services (AWS), Terraform, Argo CD, Kubernetes, Google Kubernetes Engine (GKE), Jira, Project Management, Notion, Confluence, Cloudflare, DevOps, Continuous Delivery (CD), Continuous Integration (CI), Infrastructure as Code (IaC)

Software Engineer

2017 - 2022
Skyscanner
  • Designed and implemented an API query language that allows a user to ask for any deployed component in the infrastructure, link them back to the repo, and query any other extra info like the libraries that are being used.
  • Designed a filtering system for CFRipper vulnerability management that increased the granularity of exceptions applied to the cloud infrastructure.
  • Implemented an AWS CloudFormation action expander that allowed identifying over-privileged resources and flag them within CFRipper.
  • Conducted penetration testing and located vulnerabilities in systems before they could be exploited.
  • Performed security assessments against CI/CD tools and overall infrastructure.
  • Maintained several services like AWS Lambda, AWS Batch, AWS Step Functions, and Python servers.
Technologies: Python, Security, Platforms, AWS CloudFormation, Amazon Web Services (AWS), Docker, AWS Lambda, Kubernetes, TypeScript, AWS DevOps, DevOps, Continuous Delivery (CD), Continuous Integration (CI), Infrastructure as Code (IaC)

Experience

CFRipper

https://github.com/Skyscanner/cfripper
CFRipper is a library and CLI security analyzer for AWS CloudFormation templates. You can use CFRipper to prevent the deployment of insecure AWS resources into your cloud environment. You can also write your own compliance checks by adding new custom plugins.

Tarracopass

This was my final project for my baccalaureate degree. I designed and deployed a website and an application for iOS devices. The project provided information about the points of interest and monuments in the city of Tarragona.

Certifications

OCTOBER 2019 - PRESENT

Offensive Security Certified Professional (OSCP)

Offensive Security

Skills

Tools

GitHub, Terraform, CircleCI, AWS CloudFormation, Google Kubernetes Engine (GKE), Jira, Notion, Confluence

Languages

Python, Bash, JavaScript, TypeScript, PHP 7, Go

Paradigms

DevSecOps, DevOps, Continuous Delivery (CD), Continuous Integration (CI)

Platforms

Docker, Amazon Web Services (AWS), AWS Lambda, Google Cloud Platform (GCP), Kubernetes

Frameworks

Ruby on Rails (RoR)

Industry Expertise

Project Management

Other

Platforms, Infrastructure as Code (IaC), AWS DevOps, Exploits, Privilege Escalation, Security, Argo CD, Cloudflare

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring