[for-hire] Security + Software Engineer
Hello Indie Hackers!
I'm a security + software engineer with 9 years working in the security/tech industry. I've worked in a bootstrapped security consultancy that grew to Series A funding with a product (Praetorian), as well as in a smaller sized Fortune 500 company (Booking Holdings family). I've spent most of my career building and analyzing software and systems to solve both production and corporate security challenges.
⭐ What am I looking for?
I'm looking for indie companies that might be too small to hire dedicated security resources or need a part-time/contract resource. I'm trying to avoid full time, as I am split between the US and Asia and I have other businesses with my significant other outside of tech.
⭐ What I can offer
Software Engineering
- I've built full stack applications, as well as cloud based systems some of which I will list a few of below, or you can view my LinkedIn and Github.
- Cloud Management Automation (Terraform, Golang, Neo4j, AWS) - a system that scanned cloud infrastructure, identified resources that were managed via existing terraform configs and ones that were not, then correlated and grouped them into logical groups, and generated terraform for the unmanaged resources.
- Alerting Pipeline + Automation (Golang, Cloud Functions, Slack) - a pipeline that ingested security alerts and events, correlated and enriched the data, and allowed IR engineers to trigger automations and manage alerts via a Slack Bot.
- Secure Transfer App (Ruby, Google Cloud, MongoDB) - a web application that was used to send and receive encrypted documents with clients.
Security Consulting
- Application Security Assessments (OWASP ASVS, Code Review, Architecture Reviews)
- Enterprise Security Assessments (NIST CSF)
- Corporate Security Development (Device Management, SSO, Compliance)
- Security Operations and Incident Response (Alerting Pipelines, Orchestration and Automation)
I stick to industry standard methodologies so that you can verify the thoroughness of my work.
⭐ Most Recent Tech Stack
- Golang
- TailwindCSS
- ReactJS
- Google Cloud (Functions, Storage, PubSub)
- MongoDB/Postgresql
- Redis
- Terraform
⭐ Tech I've worked extensively with in the past
- Ruby + Rails
- Java
- Bootstrap
- Amazon Web Services
- JQuery
⭐ Rates and Availibilty:
As far as rates, it depends on what kind of work is needed to be done. More interactive services like NIST CSF and such that require interviews and real time interaction are gonna be higher than something that is async. I have no problem heavily discounting my normal contracting rate for indie companies. I have been contracting with corporations starting at $125. For Indies, estimate somewhere between $50-100/hr, depending on the service. :)
Availibilty depends on the time of year, I spend about half my time in Thailand with my SO and half in the USA. I can allocate specific times to be in the states or elsewhere if it is needed.
⭐ Contact Information:
Email: [email protected]
Github: https://github.com/rfizzle
LinkedIn: https://linkedin.com/in/coletonp
⭐ References:
I have plenty of references in industry (CEOs, CISOs, Founders) if that is something that would move the needle. Just reach out and I can provide contact information for them.
Also, if you are in need of skills that do not quite match with me, I do have some very experienced contacts that are open to contract work in their specialties (Malware Analysis, Incident Response, Table Top Exercises, etc)
