Jan 2024 – Oct 2025 · 1 yr 9 mos · Berlin, Germany · Remote

• Bliq is a mobility platform comparing prices and pickup times across major ride-hailing apps like Uber, Bolt, FreeNow, and Lyft.
• Led unified cross-functional security team of 8 engineers across advanced security research, automation, and hardware domains, managing organizational restructuring, team performance optimization, and career development programs;
• Built and scaled engineering teams through strategic hiring, comprehensive onboarding programs, and mentoring engineers at scale, establishing technical excellence and fostering collaborative team culture;
• Owned product specifications and project ownership for security initiatives,translating business requirements into technical solutions, managing roadmaps, and ensuring alignment between security objectives and business goals;
• Architected and implemented comprehensive fraud detection and monitoring system using TypeScript, NestJS, Node.js in monorepo architecture, enabling real-time investigation of fraudulent activities and reducing fraud incidents by implementing automated detection rules;
• Initiated security transformation initiative establishing minimum security standards, security policies, and driving development of enterprise-grade security infrastructure including centralized identity management, session control systems, access control, and authentication mechanisms;
• Designed next-generation security backend architecture, developing cross-platform identity manager to centralize user PIl protection, eliminate data duplication, and ensure GDPR compliance across all systems.

Jan 2023 – Jan 2024 · 1 yr · Berlin, Germany · Remote

• Built and scaled specialized mobile security research team from 3 to 5 engineers, establishing high-performance culture focused on Android platform analysis, reverse engineering, mobile security research, and integration security technologies;
• Architected and managed geographically distributed device farm infrastructure across multiple locations with custom-modified Android devices, rooted devices, and modified kernels for controlled security research environments;
• Developed and maintained shell scripts and automation tools for device farm management, enabling automated device provisioning, configuration management, health monitoring, and deployment of security research environments;
• Implemented React-based frontend interfaces for Inspector platform providing device farm monitoring, control interfaces, and operational dashboards for security research infrastructure management;
• Led critical technology migration from modified application emulation approach toAPI-level integration methodology, improving system reliability, scalability,and reducing infrastructure costs through architectural optimization;
• Developed automated security testing pipelines, application modification frameworks, and monitoring systems for third-party security mechanism changes affecting business operations.

Dec 2021 – Jan 2023 · 1 yr 1 mo · Berlin, Germany · Remote

• Pioneered advanced mobile security research program analyzing major ride-hailing platforms including Uber, Bolt, Lyft, Freenow, Careem, Yassir, Heetch, Ola, and Didi/99 Taxi, developing innovative methodologies for security mechanism analysis and platform integration;
• Reverse engineered sophisticated mobile security mechanisms including Google Safety Net, Play Integrity API, proprietary integrity verification systems, certificate pinning, anti-tampering checks, hardware attestation, and behavioral analytics;
• Developed automated application instrumentation and modification frameworks for mobile platform analysis using Frida, Python, and custom automation scripts, creating scalable approach to security research and integration testing;
• Analyzed native security implementations including root detection, debugger detection, emulator fingerprinting, anti-debugging mechanisms, and environment validation to enable controlled research environments;
• Implemented initial incident response procedures for third-party security system changes, creating systematic risk management framework and monitoring infrastructure for security mechanism updates.

Sep 2021 – Dec 2021 · 3 mos · Lisbon, Portugal · Remote

• Client: Santander Portugal | OneApp
• Santander Portugal's flagship mobile banking application serving millions of customers.
• Led multidisciplinary agile squad of 10+ members including Android/iOS developers, UX/UI designers, QA analysts, Scrum Master, and Product Owner for Santander's flagship mobile banking application OneApp serving millions of customers;
• Successfully managed delivery of critical mobile banking features achieving consistent sprint goal completion while maintaining high quality standards and security requirements for financial applications;
• Served as key liaison between technical development teams and executive leadership, providing regular progress updates, risk assessments, and managing stakeholder expectations for Portugal's leading financial institution;
• Collaborated with Scrum Master and Product Owner facilitating agile ceremonies(sprint planning, daily standups, retrospectives, sprint reviews), resolving technical impediments, and ensuring alignment between technical implementation and business objectives;
• Drove problem-solving and decision-making processes maintaining project momentum, coordinating across multiple teams, and enabling seamless delivery of features with zero production incidents.

Apr 2021 – Sep 2021 · 5 mos · Remote

• Client: Google | Google Play Protect
• Google Play Protect secures over 3 billion Android devices worldwide, making it the world's most widely deployed mobile security platform.
• Enhanced Lisbon team performance to top global performer through targeted mentoring programs, development of productivity automation tools, and establishment of best practices for malware analysis and reverse engineering workflows;
• Developed strategic insights improving risk control measures, threat detection accuracy, and reducing false positive rates while maintaining high threat detection efficacy across mobile security operations;
• Led critical incident response procedures for high-priority malware discoveries reported by external security companies, CERT teams, and threat intelligence feeds, ensuring rapid threat assessment, triage, and comprehensive technical reporting;
• Mentored and technically supervised team of 20+ reverse engineers, malware analysts, and security researchers, implementing individual development plans, conducting code reviews, and establishing documentation standards;
• Managed daily operational deliveries maintaining high SLA compliance across multiple project tracks with zero critical incidents, balancing quality, speed, and thoroughness in malware analysis operations;
• Coordinated daily, weekly, monthly, and quarterly deliveries while maintaining comprehensive documentation and reporting for executive management decision-making, providing strategic insights and operational metrics.

Aug 2020 – Apr 2021 · 8 mos · Remote

• Conducted sophisticated reverse engineering analysis of high-profile applications including government COVID-19 contact tracing apps, ensuring security and privacy protection for millions of users through comprehensive security audits;
• Analyzed critical malware samples, scam applications, and phishing campaigns identified through social media monitoring, intelligence channels, OSINT, and external security researchers, contributing to global threat intelligence databases;
• Executed rapid incident response procedures for suspected malware cases,delivering comprehensive technical assessments, IOCs, behavioral analysis, and mitigation recommendations within strict SLA requirements;
• Specialized in analysis of advanced persistent threats (APT), state-sponsored mobile malware campaigns, targeted attacks, and sophisticated obfuscation techniques including string encryption, control flow obfuscation, and anti-analysis mechanisms;
• Performed deep static and dynamic analysis using Ghidra, Jadx, APKTool, Frida, and custom automation scripts to reverse engineer obfuscated DEX bytecode, native ARM/x86 libraries, and encrypted payloads.

Dec 2019 – Aug 2020 · 8 mos · Remote

• Conducted extensive Android application analysis identifying malicious patterns, classifying malware families, performing threat actor attribution, and contributing to global threat intelligence and detection rule development;
• Led and trained sub-team of 3 malware analysts, achieving skill development targets through hands-on mentoring, knowledge sharing sessions, and establishing team cohesion in fast-paced security operations environment;
• Performed comprehensive code-level security audits using static application security testing (SAST) and dynamic application security testing (DAST) methodologies,identifying vulnerabilities, security misconfigurations, and privacy issues;
• Analyzed and classified malicious behaviors including data exfiltration, privilege escalation, credential theft, SMS fraud, adware, spyware, ransomware, banking trojans, and other malware categories;
• Developed pattern recognition methodologies for malware family attribution based on code structure, behavior signatures, infrastructure overlap, and reverse engineered obfuscation techniques.

May 2018 – Dec 2019 · 1 yr 7 mos · Curitiba, Paraná, Brazil · Hybrid

• Led mobile development team providing technical leadership for complex mobile architecture implementations across Android and iOS platforms using native and hybrid development approaches;
• Designed and developed native and hybrid mobile applications for diverse industry clients including banking, e-commerce, healthcare, and logistics sectors, delivering scalable solutions meeting different business requirements;
• Collaborated with UX/UI design teams as mobile design consultant, ensuring optimal user experience, technical feasibility of mobile interfaces, and implementation of responsive designs following material design principles;
• Built robust mobile architectures using Java, Kotlin, Swift, and Objective-C, implementing MVVM and MVP design patterns, establishing development best practices, code standards, and automated testing frameworks;
• Managed full development lifecycle from requirements analysis to deployment, coordinating with cross-functional teams, conducting code reviews, and delivering high-quality mobile solutions using agile methodologies.

Apr 2017 – May 2018 · 1 yr 1 mo · Hybrid

• Developed native Android applications focused on sales automation, social networking, and communication platforms using Java and modern Android development frameworks including RxJava, Retrofit, and Dagger;
• Designed and implemented scalable mobile architectures for application development, ensuring performance optimization, maintainability, security best practices, and efficient resource management;
• Collaborated in agile development environment participating in sprint planning, daily standups, code reviews, pair programming, and continuous integration/continuous deployment (CI/CD) processes;
• Built RESTful API integrations, implemented real-time communication features using WebSockets, reactive programming patterns with RxJava, and developed offline-first architectures with local database persistence.

May 2016 – Apr 2017 · 11 mos · Curitiba, Paraná, Brazil · On-site

• Developed and maintained mobile applications for Android and iOS platforms, contributing to feature development, bug resolution, performance optimization, and user experience improvements;
• Built proficiency in Java, Swift, and Objective-C programming languages while delivering production-ready mobile solutions following software development lifecycle best practices;
• Implemented technical support and maintenance procedures for existing mobile applications, ensuring optimal performance, resolving user-reported issues, and maintaining high application ratings;
• Collaborated in code reviews adopting industry best practices for mobile development, version control using Git, agile development methodologies, and participated in continuous learning through technical documentation.

May 2014 – Jul 2014 · 2 mos · Porto Alegre, Rio Grande do Sul, Brazil · On-site

• Supported information security team in vulnerability assessment activities, security monitoring operations, and incident response procedures for payment processing infrastructure;
• Assisted in security audits, penetration testing activities, and compliance assessments ensuring adherence to PCI-DSS standards for payment card industry security requirements;
• Participated in security awareness programs, documentation of security policies and procedures, and contributed to security incident documentation and reporting;
• Gained foundational knowledge in information security principles, network security, application security, cryptography, and security operations in the financial services environment.