Post a job
Post a job
Samson.R

Samson.R

Security Software Engineer
New York
Ksh150,000/month
0 (0 Reviews)

About me

Application Security Engineer with proven expertise in secure software development, vulnerability assessment, and DevSecOps implementation. Strong background in full-stack development combined with hands-on security engineering experience across cloud platforms like Azure , Google Cloud Platform, Amazon Web Services. Demonstrated ability to build security-focused solutions including AI-powered threat intelligence platforms, cloud security frameworks, and automated penetration testing tools. Skilled in identifying and remediating application vulnerabilities using Burp Suite, OWASP methodologies, and industry-standard security tools.

Photos

Samson.R
Samson.R
Samson.R
Samson.R

Skills

API and application security BackEnd Developer Cloud security (AWS, Azure, GCP) Compliance (ISO 27001, NIST, GDPR, PCI-DSS) Ethical hacking / Penetration testing FrontEnd Developer Malware analysis OSINT and dark web research ReactJS Software Engineer Vulnerability research

Work Experience

Security Software Engineer
Milago HUman Resource 2024-11-01 - Present - Conduct comprehensive penetration tests and vulnerability assessments on web applications, identifying and remediating critical security flaws - Implement DevSecOps principles to harden applications throughout the SDLC, reducing vulnerabilities by 60% - Develop secure APIs using TypeScript and Python with built-in security controls and input validation - Establish security testing frameworks and automated code review processes to catch vulnerabilities pre-deployment - Collaborate with development teams to implement secure coding practices and conduct security training sessions
Software Engineer Consultant
Smart Mavuno 2025-04-14 - Present - Develop secure, responsive web interfaces using React and TypeScript with security-first design principles - Implement robust client-side validation and security controls to prevent XSS, CSRF, and injection attacks - Design and build accessible web applications following OWASP security guidelines and best practices - Conduct security reviews of frontend code to identify potential vulnerabilities before production deployment
Web Application Developer
Agile Business Solution Limited 2025-07-08 - 2025-10-31 - Built secure web applications using Next.js, React.js, and TypeScript with integrated security controls - Implemented authentication and authorization mechanisms for enterprise applications handling sensitive data - Optimized application performance while maintaining security best practices and code quality standards - Conducted code reviews focusing on security vulnerabilities, compliance requirements, and OWASP Top 10 risks

Education

Ethical Hacking
Certificate 2025-04-07 - Advanced ethical hacking and penetration testing program focusing on web application security, vulnerability assessment, exploit development, and offensive security techniques. Hands-on training with industry-standard tools including Burp Suite, Metasploit, and OWASP testing methodologies.
Security Software Engineer
Certificate 2025-07-14 - 2025-09-29 Completed Security Software Engineer certification through Cyber Shujaa in partnership with Microsoft. Comprehensive training program covering secure software development lifecycle , DevSecOps practices, cloud security architecture across AWS, Azure, and GCP, network security protocols, identity and access management , and Microsoft security technologies including Microsoft Entra ID and Microsoft Sentinel. Gained hands-on experience with penetration testing, vulnerability assessment, secure coding practices, and implementing security controls in cloud environments. Program included practical projects on threat detection, incident response, and security automation.
Cloud and Netwrok security
Certificate 2024-01-15 - 2024-07-15 Intensive cloud and network security training program covering AWS, Azure, and GCP security architecture, network security protocols, VPN configuration, firewall management, and cloud security best practices. Gained hands-on experience with cloud security tools and frameworks.
Diploma in Information Technology
Diploma 2018-03-03 - 2022-11-24 Completed comprehensive Information Technology program at Jomo Kenyatta University of Agriculture and Technology. Coursework included networking fundamentals, database management, software development, and cybersecurity principles. Developed strong foundation in IT infrastructure, systems administration, and security practices that formed the basis for specialized security engineering career.

Projects

Samson.R

AI powered threat intelligence platform

Developed an automated threat intelligence platform using Python and machine learning to analyze and correlate security threats in real-time. Integrated multiple threat feeds and OSINT sources for comprehensive threat detection. Built an interactive dashboard for security teams to visualize emerging threats and automate incident response workflows. Implemented ML algorithms for pattern recognition and anomaly detection in security events. Technologies: Python, Machine Learning, OSINT, Threat Feeds, API Integration

View Project
Samson.R

AI hacker MCP

Created an AI-powered security testing tool for automated vulnerability discovery and exploitation. Leveraged large language models to identify security patterns and potential exploits in web applications. Integrated with Burp Suite for enhanced application security testing capabilities. Automated reconnaissance, vulnerability assessment, and report generation processes, reducing manual testing time by 70%. Technologies: Python, AI/ML, Burp Suite Integration, OWASP Methodology

View Project
Samson.R

cloud security platform

Designed and implemented comprehensive cloud security framework for AWS and Azure environments. Automated security compliance checks using Python and CI/CD pipelines with continuous monitoring. Developed infrastructure security monitoring with automated remediation capabilities for common misconfigurations. Implemented network security controls including VPNs, firewalls, and intrusion detection systems. Created security dashboards for real-time visibility into cloud security posture. Technologies: AWS, Azure, Python, Terraform, Security Automation, CSPM

View Project
Samson.R

Acitve diretory VPN

Built secure VPN solution integrated with Active Directory for enterprise authentication and access control. Implemented multi-factor authentication and conditional access policies for remote users. Configured network segmentation and security policies for secure remote access. Automated user provisioning and access management workflows, reducing manual administrative overhead by 80%. Technologies: Active Directory, WireGuard, MFA, Network Security

View Project
Samson.R

Blockchain security API

Developed blockchain monitoring API using Python Flask with focus on cryptocurrency security and fraud detection. Implemented real-time wallet monitoring and transaction analysis for suspicious activity. Automated security checks for cryptocurrency transactions with alerting mechanisms. Built secure API endpoints with rate limiting, authentication controls, and comprehensive logging for audit trails. Technologies: Python, Flask, Blockchain APIs, Security Monitoring, API Security

View Project

Honors & awards

JPmorgan software development experience
2023-10-02 Successfully completed JP Morgan's competitive Software Development Experience Program, demonstrating excellence in software engineering fundamentals, financial technology applications, and collaborative development practices.
Moringa School Web Development graduate
2025-09-23 Graduated from intensive full-stack web development bootcamp with distinction. Mastered modern web development technologies including JavaScript, React, Node.js, and database management while building multiple production-ready applications.
Africakhackon Ethical Hacking Certificate
2025-12-10 Successfully completed AfricaHackOn Academy's rigorous 6-month intensive cybersecurity program, demonstrating advanced mastery of cybersecurity principles and practices through hands-on training and real-world security simulations. Comprehensive training covered penetration testing, vulnerability assessment, threat intelligence, cloud security, web and mobile application security, OSINT techniques, network defense, security automation, GRC and cybersecurity reporting. Developed expertise in conducting security assessments, implementing defensive measures, and executing offensive security operations. Program emphasized practical application through live exercises, capture-the-flag competitions, and real-world attack simulations across diverse security domains.

Review

0 Base on 0 reviews
Working attitude
Progressive working attitude
0
Team work
Good teamwork spirit
0
Skill & Experience
Skills and experience meet well
0
Offered Salary
Suitable salary
0

Reply

Cancel reply
Send message
Cancel
Invite to apply job

Select job to invite this user

No item found
Sign Up