Skip to content

RESUME

Resume

Download my resume or browse the web version below.

Download CV

PDF versions of my resume are available in English and Spanish.

Summary

Offensive Security Engineer and Computer Science Engineer with 3 years of experience performing Web, API, and Mobile security assessments in enterprise environments, with additional exposure to Thick Client and Wi-Fi testing. Experienced in identifying real-world vulnerabilities, assessing technical and business impact, and communicating actionable findings to technical teams and stakeholders. Currently focused on Application Security, Product Security, Mobile Security, Offensive Security, and security automation.

Experience

NTT DATA

Jan 2022 to Present

Engineer

Mar 2025 to Present

  • Performed Ethical Hacking assessments across Web, API, and Mobile environments for enterprise and global business contexts.
  • Assessed vulnerabilities, technical impact, and business risk across real-world applications and services.
  • Proposed an internal Burp-based reporting assistant MVP focused on sanitized HTTP evidence, structured finding drafts, and analyst-in-the-loop review.
  • Designed and implemented an internal Windows-based vulnerable lab to support offensive security assessment and training scenarios.

Junior Engineer

Mar 2023 to Mar 2025

  • Led and executed Ethical Hacking activities across Web, API, Mobile, Thick Client, and Wi-Fi environments.
  • Executed offensive security simulations through playbooks covering phishing, social engineering, endpoint compromise, and ransomware response scenarios.
  • Supported international Web/API Ethical Hacking assessments in collaboration with NTT DATA Spain’s Hacking Center.

Professional Internships

2022 and 2023

  • Executed Web Ethical Hacking assessments, documenting technical findings and remediation recommendations.
  • Built a vulnerable web application lab for an educational security workshop.
  • Supported Cloud Zero Trust and API security control documentation work.

Selected Projects

evidence-sanitizer

A local-first CLI for sanitizing authorized pentest evidence files.

Internal Windows CTF Lab

A Windows-focused CTF lab for offensive security practice.

Education

Universidad Técnica Federico Santa María
B.S. / Ingeniería Civil Informática / Computer Science

Thesis: "Alexandria: Web-App platform that stores mobile applications and the result of their analysis from a focus on information privacy".

Highest grade: 100/100.

Certifications

OSCP+ certification badge

OSCP+

OffSec Certified Professional

eJPT certification badge

eJPT

Junior Penetration Tester

Microsoft Azure Fundamentals AZ-900 certification badge

Microsoft Azure Fundamentals AZ-900

Microsoft Certified

Skills

Offensive Security

Web/API Pentesting Mobile Application Testing Thick Client Testing Wi-Fi Security Assessments Active Directory Network Enumeration Linux/Windows Privilege Escalation Phishing Social Engineering OWASP Top 10

Tools

Burp Suite Caido Nessus Nuclei Metasploit Nmap ffuf sqlmap Wireshark testssl.sh Impacket NetExec BloodHound Mimikatz WinPEAS/LinPEAS Kali Linux Frida Objection MobSF JADX

Development & Cloud

Python JavaScript TypeScript Node.js React Bash AWS Azure Docker Serverless

AI & Automation

Security Automation AI-assisted workflows Technical documentation workflows Pentest documentation workflows

Languages

Spanish Native
English C1