🔐 Securing fintech systems processing $2.3B+/quarter
🎯 Identified a $300M financial risk through attack simulation
🐛 Managed 500+ unique vulnerabilities | 95% SLA

Application Security Engineer with 3+ years shipping security at scale in high-growth fintech. I partner with engineering teams to design and build security solutions that let developers move quickly and safely — from threat modeling and secure code review to building AppSec tooling that scales across services.

Passionate about pragmatic risk management, developer experience, and turning vulnerability data into actionable insights.

Aug 2023 – Present · Osasco, Brazil

• Secured financial products processing $2.3B+/quarter via threat modeling, pentesting, and code reviews across Go, Java, Python, and JS systems
• Identified a $300M financial risk by reproducing insider attack scenarios in the financial ecosystem using AI-powered tools in 2 weeks
• Managed 500+ vulnerabilities through bug bounty programs with 95% SLA compliance

Sep 2022 – Aug 2023 · Curitiba, Brazil

• Secured 30+ applications through threat modeling and code reviews, identifying 5 critical vulnerabilities
• Led security initiative generating ~$40M annual savings (~1% quarterly revenue)
• Integrated security practices into DevSecOps cycle with two key development squads

Jun 2022 – Aug 2022 · São Paulo, Brazil

• Executed penetration testing for 5 enterprise clients in 2 months, reporting directly to C-level

Jun 2025 – Present · Osasco, Brazil

• Co-designed "Security in Web Applications" with 70+ hands-on videos covering OWASP Top 10 across Node.js, React, Spring, and GraphQL

Feb 2025 – Aug 2025 · Osasco, Brazil

• Guided residents in Brazil's first government-backed DevSecOps residency ($5.5M initiative), implementing SAST and dependency catalog

🇧🇷 Portuguese (Native) · 🇺🇸 English (Advanced) · 🇪🇸 Spanish (Advanced)