Prosper Kalu
@prosperkalu
Offensive security practitioner and software developer specializing in penetration testing, secure code review, and exploit logic.
What I'm looking for
I’m a security practitioner with a software development background, focused on offensive penetration testing, secure code review, and exploitation of complex application logic. As a Penetration Tester at ZoroLogic, I conduct web application and API penetration tests for more than 150 global clients, and I produce detailed reports with evidence, risk ratings, business impact, reproduction steps, and practical remediation guidance. I also work directly with developers to explain findings, validate fixes, and strengthen application hardening practices.
I pair my security work with hands-on development: I’ve built and reviewed FastAPI and React applications with secure API integrations and role-based access controls, tested authentication/authorization boundaries, and integrated Azure and third-party APIs with secure credential handling and validation. I’ve also reverse engineered complex browser and API security mechanisms and built Python clients and automation tooling to support security research and web application testing. Earlier, I developed Laravel-based systems and implemented input validation, access control, error handling, and CI/CD pipelines, and I’ve pursued research projects like a ransomware simulation & C2 framework and phishing/extension-based malware research.
Experience
Work history, roles, and key accomplishments
Penetration Tester
ZoroLogic
Jan 2023 - Present (3 years 6 months)
Conducted web application and API penetration tests for 150+ global clients across SaaS, e-commerce, financial services, and technology environments. Produced detailed reports with evidence, risk ratings, reproduction steps, and remediation guidance while collaborating with developers to validate fixes and improve hardening.
Software Developer
Boostbox
Aug 2024 - Oct 2024 (2 months)
Developed and reviewed FastAPI and React applications with secure API integrations and role-based access controls. Tested authentication/authorization boundaries and integrated Azure and third-party APIs with secure credential handling, validation, and error management.
Software Developer
Syphoon
Mar 2024 - Jun 2024 (3 months)
Reverse engineered browser and API security mechanisms to understand client-side validation, request signing, session handling, and anti-automation controls. Analyzed undocumented APIs, built Python clients for controlled testing/integration, and developed automation tooling for security research and web application testing.
Software Developer
Olotu Square
Sep 2020 - Nov 2020 (2 months)
Developed MySuretee credit application and a CRM platform supporting financial service operations. Integrated third-party financial APIs with secure authentication and request validation, deployed infrastructure on AWS (EC2 and S3), and implemented input validation, access control, and error handling while performing vulnerability testing and fixes.
Junior Software Developer
Innovation Growth Hub Nigeria
Mar 2018 - Feb 2020 (1 year 11 months)
Developed web applications using Laravel and RESTful APIs. Implemented secure authentication and authorization controls and integrated CI/CD pipelines for automated builds, testing, and deployment, along with internal deployment automation tools to support monitoring.
Education
Degrees, certifications, and relevant coursework
Federal University Otuoke
Bachelor of Science, Computer Science & Informatics
Earned a Bachelor of Science in Computer Science & Informatics from Federal University Otuoke, graduating in August 2023.
Tech stack
Software and tools used professionally
Availability
Location
Authorized to work in
Website
s5treak.devJob categories
Skills
Interested in hiring Prosper?
You can contact Prosper and 90k+ other talented remote workers on Himalayas.
Message ProsperGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
