My therapist: "homoglyph and punycode attacks are made up term by computer people to justify their paycheck".

Also Merriam-Webster:

Security Engineer (8 YOE), currently in Application Security (4 YOE)

Location: Portugal / EU

Remote: Remote only (Worldwide, also looking at LATAM opportunities)

Willing to relocate: Open

Technologies:

    - Programming: Javascript (NodeJS / NextJS), Java, Python, C, C++
    - Tooling: DefectDojo, Trufflehog, AWS, Terraform, Jenkins, Burp Suite, SAST, DAST, SCA
    - Other: Network and Endpoint Protection (Trend Micro - IDS / IPS, AV, EDR), NGFW (Palo Alto & Checkpoint), Reverse Engineering (binary static & dynamic analysis), Incident Response, Secure Code Review, Threat Modelling (STRIDE)

CV: https://www.linkedin.com/in/renatopnascimento/

Languages: English, Spanish and Portuguese

Email: renasc.rpn [at] gmail.com

Blog: https://renato.boo

Interesting things I've done:

- Application Security engineering, integrating tools and automating vulnerability management processes and achieved 90% false positive reduction for SAST and 100% false positive reduction for secret scanning

- Contributed to improve AST and language detection for our SAST Engine, improved findings accuracy and also implemented custom frameworks detection

- Architected and implemented network and endpoint protection for Large enterprises across different sectors (Banking, Oil & Gas and IoT)

- Experienced with customer facing roles (sales engineering, threat modelling, technical training, security champion programs) in different countries and 3 different languages

I'm also looking to connect with different folks to discuss security and reverse engineering as well :)