Jan 2023 – Present · 3 yrs 2 mos · On-site

• Courses:
• Healthcare Ethical Hacking
• Healthcare Hacking: Offensive Operations

Apr 2020 – Aug 2021 · 1 yr 4 mos

Jul 2018 – Apr 2020 · 1 yr 9 mos

• As a Offensive Security Team Leader:
• Perform attack simulations on company systems and web applications to determine and
• exploit security flaws;
• Performed internal, external, web application, mobile and physical penetration tests;
• Consulted management and application developers before product launch regarding security
• issues;
• Reviewing other technical deliverables, such as penetration testing work and client reports;
• Social engineering including phishing and pre-text calling;
• Design, develop and implement penetration tools and tests and also use existing ones to
• handle penetration testing activities;
• Document and discuss security findings with information technology teams;
• Work on improvements for security services and provide feedback and verification about
• existing security issues;

Mar 2017 – Jul 2018 · 1 yr 4 mos · São Paulo, São Paulo, Brazil

• As a Team Leader at Vulnerability Management Team:
• Responsible for the resolution of technical doubts of the team;
• Accomplishment of mobile pentesting on IOS, Android, Windows Phone platforms;
• Prioritization of activities, preparation of indicators and monitoring of vulnerabilities reported
• by the team;
• As a Pentester at Red Team:
• Perform attack simulations on company systems and web applications to determine and
• exploit security flaws;
• Performed internal, external, web application, mobile and physical penetration tests;
• Consulted management and application developers before product launch regarding security
• issues;
• Reviewing other technical deliverables, such as penetration testing work and client reports;
• Social engineering including phishing and pre-text calling;
• Design, develop and implement penetration tools and tests and also use existing ones to
• handle penetration testing activities;
• Document and discuss security findings with information technology teams;
• Work on improvements for security services and provide feedback and verification about
• existing security issues;

Oct 2015 – Feb 2017 · 1 yr 4 mos · Greater Recife

• As a Integration team:
• Secure Data Integration Specialist
• Support Development (Java/Oracle Forms)
• As a Infrastructure team:
• Create MV Security (Responsible team for responses and security Incidents)
• Vulnerability and Threat Management
• Performing penetration testing (Web apps, Networks, Code reviews)
• Contributing to the development of internal tools and methodologies
• Contributing to general company communications and other activities
• Reviewing other technical deliverables, such as penetration testing work and client reports

Jul 2015 – Oct 2015 · 3 mos · Greater Recife

• As a Integration Team:
• Working at SKY HDTV Project, performing data integration.
• Technologies: ODI (Oracle Data Integration), Oracle 11g(PL-SQL), ETL.
• As a Security Team:
• Identifying vulnerabilities that are usually impossible to spot through automated tools;
• Identifying higher-risk "chained vulnerabilities", that are often result of combining lower-risk vulnerabilities in a particular sequence;
• Writing proof of concept exploit code;
• Testing the reliability of security countermeasures in place;
• Assessing the business and operational impact of successful intrusions;
• Providing evidence of relevant findings with a written detailed report;

Oct 2013 – Jul 2015 · 1 yr 9 mos · Greater Recife

• As a Development Team:
• My mission was to improvement and software development of Wallmart Pharmacy and Telecom Italia Mobile (TIM).
• Technologies: Java 1.4/1.7, Mantis, Oracle 11g(PL-SQL), ObjectStore Java Browser (Database Object Oriented), State Machine Compiler, JavaFX, SWING, Apache Tomcat.
• As a Security Team:
• Handle the tasks of designing testing systems and testing technologies for embedded systems;
• Perform responsibilities of documenting testing reports, testing procedures, and testing plans;
• Responsible for reviewing and evaluating test cases to ensure standard security systems;
• Developed Black Box Security test environments & conducted tests as part of team for precautionary measures;
• Handle the tasks of improving system efficiency by implementing software security standards;
• Responsible for preparing details of product functionality by coordinating with software developers;

Feb 2012 – Oct 2013 · 1 yr 8 mos · Boa Viagem - Recife

• My mission was to improvement and software development of SoulMV and MV2000 (Hospital Management System).
• Technologies: Java 1.7, Oracle2Java, Reports2Java, Oracle Database, Oracle Forms (6i & 10g), Adoble Flex, Apache Tomcat.

Jan 2012 – Oct 2013 · 1 yr 9 mos · Greater Recife

• Work undertaken:
• Analysis and testing intrusion security systems (networks and web).
• Expert in finding threats / failures in technological environments
• Safety assessment in the corporate environment, structure and security implementations hardenning.

Nov 2010 – Feb 2012 · 1 yr 3 mos · Derby - Recife

• My mission was to working outsourcing as allocated on the client (MV Systems) performing the migration MV2000 system that was created in Oracle Forms (PL-SQL) to Java and Adove Flex, using the framework Forms2Java;
• Technologies: Java 1.7, Oracle2Java, Reports2Java, Oracle Database, Oracle Forms (6i & 10g), Adoble Flex, Apache Tomcat.

Apr 2008 – May 2009 · 1 yr 1 mo · Greater Recife

• Acting in performing consulting in information security based on ISO 2700, 27002.
• Providing training on-site and distance learning on best practices for security and preventive measures.
• Audit Security: Penetration Testing (Penetration Test) - With a focus on trying to find flaws in critical resources within organizations.