Open to opportunities

Alejandro Mejia Bojorjes

@alexmbjs

Message

Cybersecurity-focused Cloud engineer and penetration tester.

Mexico

Message

What I'm looking for

I seek a role that allows me to leverage my cybersecurity expertise while fostering a culture of continuous learning and innovation.

I'm a cybersecurity-focused Cloud engineer and penetration tester with extensive expertise in network security, web application security, and DevSecOps. My experience includes securing backend services and APIs using Golang, implementing OWASP best practices, and conducting thorough API penetration testing on Golang-based microservices. I have a strong background in cyber threat intelligence and incident response, which allows me to identify and mitigate security weaknesses effectively.

Throughout my career, I have managed AWS security policies, applied VPC isolation, and enforced IAM role-based access controls. My hands-on experience includes conducting continuous cloud security assessments and vulnerability scanning across cloud services. I am dedicated to ensuring the resilience of modern digital infrastructures through proactive security measures and automated CI/CD security checks.

Experience

Work history, roles, and key accomplishments

Current

Cloud Engineer & Penetration Tester

Current

Freelance

Apr 2024 - Present (1 year 2 months)

Cybersecurity-focused Cloud engineer and penetration tester with expertise in network security, web application security, and DevSecOps. Conducted API penetration testing on Golang-based microservices, identifying and mitigating security weaknesses through automated CI/CD security checks. Managed AWS security policies and performed continuous cloud security assessments to ensure the resilience of

Cloud Security Penetration Testing Golang AWS DevSecOps CI CD Vulnerability Assessment API Security Threat Intelligence OWASP

Infrastructure Engineer

XalDigital

Feb 2024 - Jun 2024 (4 months)

Secured backend services and APIs using Golang, implementing OWASP best practices. Managed AWS security policies and conducted API penetration testing on microservices. Performed continuous cloud security assessments and vulnerability scanning to ensure infrastructure security.

Golang AWS API Security OWASP Cloud Security Threat Intelligence Incident Response

Software Security Engineer

HCL Tech

Feb 2023 - Jun 2023 (4 months)

Led AWS infrastructure security audits, focusing on access control policies and encryption standards. Designed and deployed secure microservices with Golang, integrating security measures for API authentication and data encryption. Conducted network security assessments to mitigate misconfigured security groups.

AWS Golang Security Auditing Microservices Network Security API Security Encryption Vulnerability Assessment

Backend and Cloud Developer

ADISA

Oct 2018 - Jan 2022 (3 years 3 months)

Developed and secured high-performance backend systems using Golang. Performed penetration testing on APIs, detecting vulnerabilities in authentication and data transmission protocols. Managed Docker and Kubernetes security policies to ensure container isolation.

Golang Penetration Testing Docker Kubernetes API Security Cloud Security Backend Development Security Policies

Education

Degrees, certifications, and relevant coursework

HCL Tech

Hands-on experience, Cloud & Network Security

2023 - 2023

Led AWS infrastructure security audits, focusing on access control policies, encryption standards, and compliance checks. Designed and deployed secure microservices with Golang, integrating security measures for API authentication and data encryption. Conducted network security assessments, detecting and mitigating misconfigured security groups and firewall rules.

Justia

Software Security Engineer, Cloud & DevOps Security

2022 - 2022

Engineered secure cloud-native architectures using AWS, Terraform, and Docker, applying cloud security best practices. Conducted vulnerability scanning across cloud services, identifying exposure risks in IAM policies and database security. Designed and optimized CI/CD pipelines, integrating automated security testing for early detection of threats.

ADISA

Backend and Cloud Developer, Cyber Threat Intelligence & OSINT

2018 - 2021

Developed and secured high-performance backend systems using Golang, implementing multi-layered security mechanisms. Performed penetration testing on APIs, detecting vulnerabilities in authentication and data transmission protocols. Managed Docker and Kubernetes security policies, ensuring container isolation and integrity.