Looking for a job

Andrey Belenkiy

@andreybelenkiy

Message

Security Engineer — Offensive Security, Cloud & IoT

Thailand

Message

What I'm looking for

Security Engineer, Penetration Tester, or DevSecOps role — ideally at a boutique MSSP, security-focused scale-up, or fintech/crypto company with a real security function. Open to offensive work (pentesting, red team support, AppSec), cloud security, or IoT/OT security. Looking for an environment where security engineering and delivery are core business, not a side function.

Security engineer with hands-on offensive and cloud security experience. First security hire at an IoT startup — built the security function from the ground up, from infrastructure audits and vulnerability management to IAM deployment and compliance prep.

Background spans offensive security (web app pentesting, network recon, attack surface mapping), cloud security (AWS/Azure, HashiCorp Vault, Keycloak, Terraform IaC), and IoT/edge deployments. I pick up new tools fast and spend a lot of time building Python automations that turn manual security checks into repeatable pipelines.

Side projects: PenTestPro (Python pentesting framework with Nmap/SQLMap/NVD integration), BSC Security Scanner (full-stack smart contract analyzer detecting honeypots and rug pulls), ChainGotchi (browser extension for real-time crypto scam detection across 6 chains).

Based in Bangkok, graduating February 2026 (BS IT, Network & Security, Stamford International University). Currently pursuing HTB CPTS.

Experience

Work history, roles, and key accomplishments

Security Engineer

AltoTech Global

Jan 2025 - Feb 2026 (1 year 1 month)

First security hire at IoT startup — built security function from scratch. Infrastructure audit across 12 components (67 CVSS-scored vulns). Web app pentesting via OWASP Top 10 + Nmap/Burp/Nessus. Deployed HashiCorp Vault and Keycloak IAM across dev/staging/prod via Terraform. Python automation for scan orchestration + CVE correlation. Led ISO 27001 compliance prep.

Penetration Testing Python OWASP Top 10 Burp suite Nmap HashiCorp Vault Certification Keycloak Terraform Cloud Security Vulnerability Assessment

Education

Degrees, certifications, and relevant coursework

Stamford International University

Bachelor of Science, Information Technology

2022 - 2026

Grade: 3.5

Activities and societies: 3rd Place — AltoTech Open Hackathon 2025. Participant — KBTG Cybersecurity Hackathon 2025. Independent cybersecurity projects including Python pentest automation frameworks and smart contract security scanners.

BS in Information Technology with Network & Security specialization. Coursework covered network security, system administration, cryptography, penetration testing fundamentals, secure software development, and cloud infrastructure. Built portfolio of security tooling projects alongside coursework, with focus on offensive security and automation.