Ricardo Iramar dos Santos

CTO

São Paulo, Brazil26 yrs 1 mo experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in web application security testing and SDLC.
  • Led advanced penetration tests as a red team leader.
  • Passionate about securing web applications and mentoring teams.
Stackforce AI infers this person is a Cybersecurity expert with a focus on web application security in the SaaS industry.

Contact

LinkedIn

Skills

Core Skills

Network SecuritySecurity Development Lifecycle

Other Skills

ASPApacheAssemblyBashClusterComputer SecurityDHCPDNSFTPFirewallsFreeBSDFreeRADIUSITILInformation SecurityIptables

About

With extensive experience in web application security testing, the security development lifecycle, perimeter security, and information technology, I have worked across the telecommunications, pharmaceutical, and technology sectors. I continuously sharpen my technical expertise while maintaining a strategic business perspective, strong negotiation skills, and the ability to build relationships at all levels of an organization. Currently, I am deeply focused and passionate about securing web applications.

Experience

26 yrs 1 mo
Total Experience
4 yrs 6 mos
Average Tenure
10 yrs 6 mos
Current Experience

Hp

4 roles

Distinguished Technologist

Promoted

Oct 2025Present · 8 mos

Principal Cybersecurity Engineer

Promoted

May 2021Oct 2025 · 4 yrs 5 mos

  • Red team leader with a focus on advanced penetration tests.
  • Mentor and coordinate team members.
  • Drive product architecture and design toward secure solution.
  • Penetration test and security reviews in software development projects.
  • Provide guidance and follow-up throughout security issues resolution.
Network SecuritySecurity Development LifecycleComputer SecurityInformation Security

Cybersecurity Engineer

Aug 2015Apr 2021 · 5 yrs 8 mos

  • Drive product architecture and design toward secure solution.
  • Security reviews in software development projects.
  • Static code analysis, penetration testing and vulnerability scanning.
  • Provide guidance and follow-up throughout security issues resolution.
  • Mentor and coordinate team members.

Security Software Engineer

Jun 2011Jul 2015 · 4 yrs 1 mo

  • Plan security activities in project development life cycle.
  • Drive product architecture and design toward secure solution.
  • Security reviews in software development projects.
  • Static code analysis, penetration testing and vulnerability scanning.
  • Provide guidance and follow-up throughout security issues resolution.
  • Develop and perform security training.

Owasp foundation

OWASP Secure Headers Project Leader

Dec 2015Present · 10 yrs 6 mos · https://owasp.org/www-project-secure-headers/

  • OWASP Secure Headers Project involves setting headers from the server is easy and often doesn't require any code changes. Once set, they can restrict modern browsers from running into easily preventable vulnerabilities. OWASP Secure Headers Project intends to raise awareness and use of these headers.
  • If you want to help please send me an email (ricardo.iramar@owasp.org).

Tim brasil s/a

IT Security Applications Team Leader

Aug 2008May 2011 · 2 yrs 9 mos

  • Coordinator of IT Security Applications team with eight members.
  • Security analysis of projects technical specifications.
  • Developments in security projects and procedures.
  • Vulnerabilities Analysis.

Roche

Telecommunications Analyst

Nov 2006Apr 2008 · 1 yr 5 mos

  • Responsible for UA&RA (User Authentication and Remote Access) area in Latin America.
  • RANGE (Remote Access Next Generation) project implementation in Latin America using SSL VPNs Juniper Networks Secure Access 4000 solution.
  • ENROLL project implementation in Latin America. Data consolidation and training for more than 150 people in a specific role.
  • Network support for Cisco switches and routers.

Tivit

Senior Security Analyst

Oct 2004Nov 2006 · 2 yrs 1 mo

  • Management and administration of the TIVIT customer's security environment such as OESP, Gol Linhas Áreas, VISA, Votorantim Group Companies, etc.

Etek

Security Analyst

Dec 2003Oct 2004 · 10 mos

  • Management and administration of the Telmex customer's security environment such as BMF, Ford, BOVESPA (Bolsa de Valores de Sao Paulo), etc.
  • Development with PHP, Perl and Bash Script security solutions and optimization routines.

Maple informática ltda.

System Analyst

Oct 1999Nov 2003 · 4 yrs 1 mo

  • Security solutions for corporate networks such as firewall (iptables), Proxy (Squid), antivirus for MTA (Qmail+Qmail-Scanner), etc.
  • Maintenance of file server (Windows 2000), Samba, Microsoft SQL 2000 and MYSQL.
  • Servers configuration: GNU/Linux, Apache (SSL), FTP, MYSQL, PHP, Samba, NFS, Postfix, etc.
  • Development client/server system with Visual Basic 6.0.
  • Installation and updating antivirus solution in corporate networks.

Education

FGV - Fundação Getulio Vargas

MBA — Project Management

Jan 2009Jan 2011

Universidade Cruzeiro do Sul

Engineering — Electrical

Jan 1998Jan 2002

Escola Tecnica Federal de Sao Paulo

Technical — Electrical

Jan 1994Jan 1997

Extra Courses II

Extra Courses — Several

Jan 2015Jan 2023

Extra Courses I

Extra Courses Field Of Study — Several

Jan 1997Jan 2014

Stackforce found 100+ more professionals with Network Security & Security Development Lifecycle

Explore similar profiles based on matching skills and experience

Naga Ravi Aspari

Naga Ravi Aspari

L1 Network Engineer - Aruba OS

at Movate

Bengaluru, India4 yrs 8 mos exp
NY

Nanarao Yarragunta

Lead Software QA Engineer

at Molina Healthcare

Dallas, United States13 yrs 10 mos exp
Quality AssuranceAutomationTest ManagementTest Automation
Pratik G.

Pratik G.

Security Engineer

at eGain Corporation

Sunnyvale, United States5 yrs 1 mo exp
Cloud Security ArchitectureIAM Governance & Access ControlRisk Assessment & ManagementThreat & Vulnerability ManagementSecurity Controls Implementation & Validation
vishal sharma

vishal sharma

Product Security Engineer

at Newt Global

Bengaluru, India3 yrs 7 mos exp
Application SecurityVulnerability Assessment
Pavan Birlangi

Pavan Birlangi

SDE Intern

at Linux Socials

Bengaluru, India0 mo exp
Databases
Raj Walker

Raj Walker

Software Engineer

at Microsoft

Bengaluru, India6 yrs 9 mos exp
JavaCloud Native Architecture
Saad Rasheed

Saad Rasheed

Specialist - Cyber Security

at AT&T

Udupi, India7 yrs 8 mos exp
CybersecuritySecurity ConsultingSecurity Testing
Rashid Salim

Rashid Salim

Staff Engineer

at Aviatrix

Bengaluru, India8 yrs 5 mos exp
IPsecCloud NetworkingNetwork SecurityPKISSLVPN