2024 Capris Security Assessment
Scope: Client-Side Infrastructure Security Review & Remediation Summary: I was engaged by a client to independently validate and expand upon a vulnerability assessment report previously conducted by a third-party contractor. The report focused on seven interconnected web applications, each with unique objectives and security profiles critical to the client’s infrastructure. Tasks: Actions: While the third-party […]
2023 Ultimay Security Assessment
Application Penetration Testing & Remediation Guidance for a SaaS Platform Category: B2B SaaS (Project & Client Management for Marketing/Software Agencies)Stack: Debian, Apache, PHP (Laravel), JavaScript (Angular), Python Microservices I was brought in by the Ultimay engineering leadership to perform a targeted security assessment of their flagship SaaS platform, which supports project management workflows across multiple […]
2022 DormMom Security Engineering
Scope: Python Test Automation & High-Impact Security Vulnerability Discovery Summary: I was initially brought in by DormMom to build comprehensive Selenium-based test units for their CI/CD pipeline. This testing suite focused on validating role-specific functionality across multiple user types, including end users, managers, and franchise owners. My relationship with the client expanded after I proactively […]