Open to opportunities

Dan Lyton Fonte

@danlytonfonte

Message

InfoSec Officer and Software Engineer specializing in application security and cloud technologies.

Philippines

Message

What I'm looking for

I seek roles where I can lead application and cloud security initiatives, integrate security into DevOps, mentor teams, and drive compliance and scalable secure systems.

I am an InfoSec Officer and Software Engineer with extensive experience in application security, VAPT, and cloud technologies, having supported fintech, global enterprises, and startup environments. I have led security operations, integrated security into DevOps lifecycles, and remediated critical vulnerabilities to maintain compliance with standards like PCI DSS, ISO 27001, SOC 2, HITRUST, and DORA.

I have built production systems and integrations for payment platforms, developed AI and mobile solutions, and earned recognition from Huawei, Google, United Nations, Alibaba, and Harvard for my security research. I hold AWS and Huawei certifications and consistently drive cross-functional collaboration to deliver secure, compliant, and scalable software and security programs.

Experience

Work history, roles, and key accomplishments

Current

Security Engineer

Current

Prostrive

May 2025 - Present (5 months)

Oversee cybersecurity operations and independently manage Vulnerability Assessment and Penetration Testing (VAPT) for a European fintech startup while advising on security strategy and policies aligned with DORA, ISO 27001, and SOC 2.

Vulnerability Assessment Penetration Testing DORA SOC 2 Security Advisory Incident Response Risk Management ISO 27001 SOC2

Current

Information Security Officer

Current

Ubiquity

Nov 2024 - Present (11 months)

Lead information security operations for Eastwood and Southwoods branches and global assets, driving VAPT, workstation vulnerability testing, network segmentation scans, MDR triage, and compliance with PCI DSS, HITRUST, ISO 27001, and SOC 2.

VAPT PCI DSS HITRUST SOC 2 Segmentation Security Policy DevSecOps ISO 27001 SOC2

Software Engineer II

Razer Inc.

Sep 2023 - Jul 2024 (10 months)

Pioneering engineer for the Philippines team, enhanced admin dashboards, APIs, and payment gateway plugins enabling API integration for 60,000+ merchants and remediated critical web vulnerabilities to ensure PCI DSS compliance.

PHP Docker MySQL JavaScript AWS PCI DSS Web Security API Development Linux

Full-Stack Developer

Self-Employed

Jan 2021 - Dec 2023 (2 years 11 months)

Built web and mobile applications including an AI-based church recognition app (TensorFlow) and an e-commerce Android app with RESTful PHP APIs, leading a small Agile team to deliver projects end-to-end.

TensorFlow Python Android Studio Java PHP RESTful APIs Agile MySQL

Cyber Security Researcher

HackerOne

Jan 2017 - Dec 2021 (4 years 11 months)

Performed comprehensive penetration testing and bug bounty research, disclosing vulnerabilities to major organizations (e.g., Google, Alibaba, United Nations) and earning recognition such as Alibaba ASRC Best Researcher promotion.

Penetration Testing Bug Bounty SQL Injection XSS)Exploit Development Reporting XSS

Education

Degrees, certifications, and relevant coursework

STI College

Bachelor of Science, Computer Science

Grade: GWA 1.25, Magna Cum Laude

Activities and societies: Dean's Lister; STI Batangas CodeFest Hackathon Champion; Judge for I.T. Hackathon 2023 and local Mobile Hackathon; Cluster and External Competition Representative

Bachelor of Science in Computer Science with Magna Cum Laude honors and a cumulative GWA of 1.25; consistent dean's lister and winner of institutional hackathon competitions.