Skip to content

Career & Security Expertise

Senior Cyber Security Engineer @ Aave Labs

Current Focus: Web3 Security Architecture & Offensive Operations

At Aave Labs, I lead critical security initiatives for one of the most prominent decentralized finance protocols. My role bridges the gap between traditional infrastructure security and the cutting-edge requirements of Web3.

  • Security Architecture: Designing and hardening infrastructure for Web3/Web4 environments, ensuring resilience against both classic and protocol-specific attack vectors.
  • Offensive Security: Conducting deep-dive audits and penetration tests on web3 applications and smart contracts to identify vulnerabilities before they can be exploited.
  • SOC & Defensive Operations: Operating high-fidelity monitoring and response systems using Crowdstrike and Sumo Logic and on-chain solutions like Hypernative to protect the ecosystem. Also applying the mitigations provided by third-party auditors and bug-bounties.
  • Certifications: I hold the CW3H (Certified Web3 Hacker) and Certified Smart Contract Auditor designations.

Professional Journey

With over 18 years in software development and 13 years dedicated to the Secure Software Development Lifecycle (SSDL), I have built a career at the intersection of engineering and elite-level security.

Offensive Security & Threat Simulation

  • AttackIQ (6 years ago): Focused on offensive security and Breach & Attack Simulation (BAS). I specialized in automating threat actor scenarios under the MITRE ATT&CK framework, providing customers with actionable intelligence on their security control effectiveness, mastering controls like Splunk and Crowdstrike.

Security Engineering & Operations

  • Qustodio (10 years ago): Transitioned to a Blue Team operations role, where I spearheaded security architecture and engineering projects.
  • Telefónica R+D (13 years ago): Early career focused on SSDL and web development, laying the foundation for my expertise in secure coding and systems design.

Core Security Pillars

1. Security Architecture & Hardening

  • Cloud & Infrastructure: Expert-level knowledge of AWS, with deep experience in Azure, GCP, and OpenStack. I design secure network, compute, and storage architectures.
  • Container Security: Orchestrating secure environments using Docker and Kubernetes.
  • Distributed Systems: Applying patterns like Saga, CQRS, and Sharding within a security-first framework.
  • Protocols: Low-level mastery of TCP/IP, TLS, HTTP/S, and specialized protocols like SPICE.

2. Web3 & Smart Contract Security

  • Languages: Expert in Solidity, Python, and NodeJS.
  • Auditing: Comprehensive smart contract exploit development and auditing (EVM).
  • Cryptography: Deep understanding of DLP, Factorization, and primitives (SHA1, AES, RSA, ECC). Currently implementing Post-Quantum Cryptography (ML-KEM/Lattice-based).

3. Engineering & Research

  • Low-Level & Performance: Development in Assembly x86-64, C, Rust, and Go.
  • AI/Agentic: Implementing Secure Architectures for agents to use wallets without compromising the private key with HSM, and securing the rest of the secrets.
  • Data Analysis: Leveraging Python (Pandas, TensorFlow, Jupyter) for security data science and alerting automation.