Security Engineer | Application & Cloud Security
I’m building toward security engineering roles that sit close to real systems: how apps are built, how they run in cloud environments, and how small design choices turn into big security outcomes.
What I focus on
These are the areas I’m actively building depth in as I grow into security engineering roles.
Application Security (practical)
Practicing application security by testing real workflows, identifying common failure modes, and learning how to communicate findings in a way developers can act on.
Cloud Security Foundations
Building a strong foundation in cloud security concepts such as identity, access boundaries, and secrets management, and learning how design choices affect risk as systems grow.
Security Engineering Approach
Approaching security by reasoning about risk, tradeoffs, and attack paths, rather than treating security as a set of tools or rules.
Featured
A few areas I’m currently spending time on and documenting as I learn.
Cloud Security Fundamentals (In Progress)
Working through cloud security concepts like identity, access boundaries, and secrets handling, and documenting how design choices affect risk.
Web App Testing Notes
Practicing application security by testing common web workflows, documenting findings, and learning how to explain impact and remediation clearly.
Vuln Scanning + Triage (OpenVAS)
Running vulnerability scans, reviewing results critically, and practicing how to separate noise from issues that matter in real environments.
Let’s talk
If you’re hiring for security engineering roles (AppSec / CloudSec), or you want to compare notes on breaking into the field, send me a message. I read everything — might take a day to reply if I’m heads-down.