Interactive Terminal

Type help to see available commands

About Me

Pentester with strong experience executing high-complexity security assessments across web applications, mobile apps, APIs, cloud infrastructure and AI/LLM environments. I specialize in combining advanced Ethical Hacking techniques and exploit development with the practical application of artificial intelligence, both to improve pentesting workflows and to identify vulnerabilities in AI-driven systems.

Cybersecurity Consulting focused on helping organizations understand the impact of vulnerabilities, prioritize remediation and improve the communication of security issues across technical and non-technical audiences. I provide support in the interpretation and correction of identified weaknesses, turning complex technical findings into clear and actionable recommendations.

Science Communicator with over a decade of experience in science communication, public engagement and knowledge translation. My work focuses on translating complex scientific language into content that broader audiences can understand, connecting scientific and technical subjects to the public through writing, lectures and educational outreach.

💼 LinkedIn

Experience

1. NTT DATA Europe & Latam 2024 — Present

   • Cybersecurity Analyst
     • Conducting penetration tests on AI/LLMs, APIs, cloud environments, mobile applications (Android and iOS) and web applications
     • Providing cybersecurity consulting services to clients
   • Information Security Analyst
     • Conducting risk assessments in projects
     • Executing vulnerability analyses in corporate software
     • Developing and executing Business Continuity Plans (BCP) and Business Impact Analyses (BIA)
     • Coordinating security incident management and response
     • Leading investigations of internal incidents to determine causes and implement fixes
     • Responding to Information Security questionnaires and managing internal and external audits
     • Managing Access Control and CCTV systems
     • Supporting awareness programs and corporate security training
2. Guardsi Cybersecurity 2022 — 2023

   • Information Security Consultant and Penetration Tester
     • Conducting penetration tests across APIs (REST, GraphQL and SOAP), cloud infrastructures, mobile applications (Android and iOS), networks and web applications
     • Developing projects using Django
     • Providing information security consulting services to clients
3. Solyd Offensive Security 2022 — 2023

   • Cybersecurity Instructor
     • Supporting enrolled students in courses such as "Introduction to Hacking and Pentesting 2.0", "Pentesting from Zero to Professional", "Basic Python" and "Professional Python in Practice", helping them understand key concepts and techniques in cybersecurity and programming
     • Developing educational videos presenting solutions to Capture The Flag (CTF) challenges designed for the "Pentesting from Zero to Professional" course
     • Creating educational content for social media focused on pentesting practices
     • Writing technical articles on Information Security
4. Universo Racionalista 2012 — 2022

   • Information Security Analyst
     • Analyzing and assessing security risks in web applications
     • Implementing and configuring security solutions, including IDS/IPS systems and endpoint protection on Linux servers
     • Applying security patches to CMS platforms and servers
     • Conducting penetration tests on web applications following OWASP guidelines
     • Developing internal web applications using HTML, CSS, JavaScript and PHP
   • Science Communicator
     • Founder
     • Writing articles on science and technology for science communication
     • Creating image and video content about science, philosophy and technology for social media
     • Giving talks on science communication and scientific thinking
     • Attending science and technology conferences and events

Certifications

• CyberWarFare Labs Certified Red Team Analyst (CRTA)
• CyberWarFare Labs Certified Red Team CredOps Infiltrator (CRT-COI)
• CyberWarFare Labs Multi-Cloud Red Team Analyst (MCRTA)
• CyberWarFare Labs Certified Web Red Team Analyst (Web-RTA)
• Hackviser Certified Associate Penetration Tester (CAPT)
• INE / eLearnSecurity eLearnSecurity Junior Penetration Tester (eJPT)
• INE / eLearnSecurity INE Certified Cloud Associate (ICCA)
• Microsoft Microsoft Certified: Security, Compliance and Identity Fundamentals (SC-900)
• PECB Certificate Holder in ISO 22301 Foundation
• PECB Certificate Holder in ISO/IEC 27001:2022 Foundation
• Red Team Leaders Certified Cybersecurity Educator Professional (CCEP)
• Red Team Leaders Certified Offensive Windows API (COWA)
• Red Team Leaders Certified Red Team Engineer Development (CRTED)
• Red Team Leaders Certified Red Team Operations Management (CRTOM)
• Red Team Leaders Certified Security Code Review Beginners (CSCRB)
• Solyd Offensive Security Solyd Certified Pentester (SYCP)
• The SecOps Group Certified AI/ML Pentester (C-AI/MLPen)
• The SecOps Group Certified AppSec Pentester (CAPen)
• The SecOps Group Certified AppSec Pentesting eXpert (CAPenX)
• The SecOps Group Certified AppSec Practitioner (CAP)
• The SecOps Group Certified Cloud Security Practitioner — AWS (CCSP-AWS)
• The SecOps Group Certified Network Pentester (CNPen)
• The SecOps Group Certified Network Security Practitioner (CNSP)

Education

• Computer Forensics Universidade Cruzeiro do Sul — Postgraduate
• Cybersecurity Universidade Cruzeiro do Sul — Postgraduate
• Ethical Hacking & Cybersecurity VINCIT College — Postgraduate
• Full Stack Java Developer VINCIT College — Postgraduate
• Computer Networks Technology Universidade de Franca — Bachelor's

Contact