Olaleye Lekan Joseph
@olaleyelekanjoseph
Security engineer building production-ready AppSec and DevSecOps automation to reduce deployment risk.
NigeriaWhat I'm looking for
I’m a Software Security Engineer (SecOps / DevSecOps) with 3+ years of experience designing and deploying production-ready security tools, hardening web applications, and embedding security into CI/CD pipelines. I translate security research into practical, automated defenses that reduce real deployment risk.
In my work, I’ve designed and shipped 5+ security tools—like a network vulnerability scanner (Nmap + MITRE ATT&CK mapping), log analyzer, password strength analyzer, SSL/TLS certificate checker, and file integrity monitoring using SHA-256/512/MD5. I harden backends with OWASP-compliant input validation, CORS policies, and rate-limiting controls, and I automate SSL/TLS certificate chain verification with expiry monitoring and TLS cipher-suite grading.
I also build secure authentication and API access patterns, leveraging OAuth2/JWT, token rotation, and privilege-separated access control. From threat modeling and code reviews to SAST/DAST scanning and secrets detection in CI/CD, my focus stays on shipping secure systems—supported by OWASP-aligned AppSec practices and cloud security across AWS, Azure, and GCP.
Experience
Work history, roles, and key accomplishments
Software Security Engineer
Independent (Freelance)
Jan 2022 - Present (4 years 4 months)
Designed and shipped 5+ production-ready security tools, including an Nmap-based scanner with MITRE ATT&CK mapping, log/password/SSL checkers, and SHA-256/512/MD5 file integrity monitoring. Hardened web backends with OWASP-compliant validation, CORS and rate limiting, and embedded SAST/DAST + secrets detection into CI/CD to reduce deployment security risk.
Security-Focused Backend Developer
Contract Projects
Jan 2021 - Jan 2022 (1 year)
Built secure REST APIs using OAuth2/JWT with token rotation and privilege-separated access control. Conducted threat modeling and code reviews, remediating injection, broken access control, and insecure deserialization issues, and deployed least-privilege Docker containers with parameterized SQL.
Education
Degrees, certifications, and relevant coursework
OWASP
Introduction to Critical Infrastructure Security, Critical Infrastructure Security
Introduction to Critical Infrastructure Security (OWASP) completed in 2026.
Google Analytics Certification, Analytics
Google Analytics certification earned in 2026.
Cisco Networking Academy
Ethical Hacker (Student Level), Ethical Hacking
Ethical Hacker (Student Level) completed through Cisco Networking Academy in 2026.
Google Cloud Developer, Cloud Development
Google Cloud Developer certification (Google GADS) earned in 2022.
Tech stack
Software and tools used professionally
Availability
Location
NigeriaAuthorized to work in
Website
olaleye-web.vercel.appSocial media
Job categories
Skills
Interested in hiring Olaleye Lekan?
You can contact Olaleye Lekan and 90k+ other talented remote workers on Himalayas.
Message Olaleye LekanFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
