Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Network Power<100 people
Roles
🔥100%
Startup Founder
🧑🔬100%
Engineer
🧨100%
Consulting
Geos
🇬🇧100%
United Kingdom
Work Background
AI ServersCEO & Founder
Sep. 2023Aracruz, Espírito Santo, BrazilHelping companies to solve problems using Artificial Intelligence. AI Automation, infrastructure for AI, private AI servers, cloud infrastructure, solutions architecture and much more. - AI Automations to improve productivity and profit for businesses; - Local infrastructure to run AI LLM's and agents (Ollama, AnythingLLM); - Cloud infrastructure to run NoCode solutions; - Cloud infra deployment with Hashicorp Terraform; - Containerized solutions with Docker and management with Docker Swarm; - Solutions architecture and management involving MySQL, Postgres, RabbitMQ, Minio, Redis, Traefik, Nginx and more; - Cloud security in AWS and Oracle Cloud; - Software development; - AppSec and DevSecOps.
BSides Vitória ESGuest Lecturer
May. 2023 - May. 2023Vitória, Espírito Santo, BrazilPresentation of the lecture " AppSec - Muito além dos testes automatizados " (AppSec - Far beyond automated testing). • A quick briefing about Application Security history; • OWASP SAMM framework and it's use; • Security by Design; • Security Requirements (Threat Modelling); • Secure Coding; • Security Tests; • Security Champions Operations. • Official website: http://bsides.vix.br
Conviso Application SecurityAppSec Analyst
Oct. 2022 - Aug. 2024BrazilI am currently working creating and managing application security programs for customers from different business segments. The basis of the work is using OWASP SAMM's framework to measure the maturity level in application security of a given team or department, create an action plan to raise this level and measure again to monitor the result. To increase maturity level, we use many OWASP projects as a reference for security requirements, in addition to several tools and processes, whether automated or not. • AppSec program implementation; • OWASP SAMM framework; • OWASP Docs (Code Review Guide, ASVS, CSVS, SCVS, Proactive Controls and more); • Code Review on Java and Javascript languages; • SCA, SAST, DAST and IaC scan tools; • Security Champions Operations; • Scrum, OKR and KPI; • Workshops and trainings for developers teams (Secure Coding, vulnerabilities and mitigations); • Cloud Security (AWS, Azure); • Bash and Python Scripting; • Threat Modelling; • Vulnerabilities management lifecycle; • Asset risk management; • Security Architecture Review; • Conviso Application Security blog writing; • Conviso Platform, SonarQube, Fortify, Snyk, OWASP ZAP, Dependency Track, Github Actions, Github, Jenkins, Cloudflare, ModSecurity, Apache Superset, Metabase, Google Workspace, MS Teams, MS Sharepoint, Clickup, Jira, Confluence, BitBucket, Gitlab, Git, Altair, Insomnia and many other tools.
By MyselfIndependent Consultant
Jul. 2013 - Oct. 2022AracruzThis is my own business where I'm working directly on project and implementation of technologies related to companies proposals, with a lot of different things. In my last job, I worked for MEO Telecom Portugal for 20 months on projects in DevSecOps, securing automated CI/CD pipelines, implementing SCA, SAST and DAST tests, and configuration of WAF's solutions. • Git / GitHub / Maven / Jenkins; • SonarQube / OWASP Zap / OWASP Dependency Check / TruffleHog / OpenSCAP; • Terraform / Packer / Ansible / Docker; • Apache2 / Nginx / PHP / MySql / WordPress; • Nagios / Loki / Grafana; • GNU/Linux Firewalls, Windows Defender, Modsecurity WAF; • GNU/Linux Servers and Infrastructure (CentOS/Ubuntu); • Windows Servers 2012/16 and all its infrastructure management solutions; • Linux BASH / Windows PowerShell / Python Scripting; • Microsoft Azure / Oracle Cloud / AWS Cloud; • Microsoft Hyper-V / VMWare / VirtualBox.
FISL - Fórum Internacional de Software LivreGuest Lecturer
Jul. 2012 - Jul. 2012Porto Alegre, Rio Grande do Sul, BrazilPresentation of the lecture "Mercado Virtualizado - Introdução a virtualização com ferramentas livres" (Virtualized Market - Introduction to Virtualization with Free Software Tools) with my friend Everton Cardoso. One of the most praised after event. -We compared two cases with Proxmox and Linode Cloud tools; -Presented the functionalities of some great tools like Xen, KVM OpenVZ, VirtualBox and their ability for creating virtualized environments; -Case of use of the Proxmox tool on my business.
ISH TecnologiaCyber Security Analyst
Jan. 2011 - Dec. 2013Vitória, Espírito Santo, BrasilCyber Security Analyst in an outsourcing contract of ISH Tecnologia working for Vitória Town Hall, ES state’s capital. Another heterogeneous environment with more than 200 servers and 20.000 workstations, many of them with serious problems to solve and too much threats and attacks to handle. A big school in therms of cybersecurity. -Management of Juniper IDS/IPS and VPN; -Management of Symantec Endpoint Protection and Mail Security; -Management of GNU/Linux Firewalls; -Implementation and Management of HAProxy; -Management of GNU/Linux Rsync backup server; -Cybersec tools Wireshark, Nmap, Ettercap, SQLMap, Metasploit, Snort, etc; -Vulnerability analysis and reports for improving the environment.
Instituto de Tecnologia da Informação e Comunicação do Estado do Espirito Santo (Prodest)IT Support Technician
Jan. 2006 - Dec. 2011Vitória, Espírito Santo, Brasil3° level IT Technician Support in a big computing park with more than 400 servers and 20.000 workstations, where I could learn and work as Windows Server 2003/08 and GNU/Linux Systems Administrator. There, I worked on many important projects that changed the way the ES state government handle its services. A new data center (migrating from mainframe technology) and the ring network called “Metrovix”, which integrates the communication of all the government agencies, collect their data and make it highly available for all its applications. I implemented the solution that made Ubuntu Linux servers and workstations authenticate on Windows Server’s Active Directory for sharing resources. I also worked indirectly on Citrix Server and Service Desk implementation. Is good to mention that PRODEST is an Insitute with ISO9001 quality certification and is ruled by ITIL and ISO27001 as IT governance standards. -Backup and restore of servers virtual machines on VMWare ESXi; -OS installation and preparing of new servers (if necessary); -Management of Windows Server 2003/08 and its services (AD, DNS, GPO’s, DHCP, File Server, WSUS and Licenses); -Management of GNU/Linux Servers and its services (Bind DNS, IPTables Firewall, Nagios); -Servers monitoring and log reviews; -Design and implementation of GNU/Linux Ubuntu servers and workstations integration with Windows Server Domain Controllers.
EBR FibraWebmaster
Jan. 2004 - Dec. 2006Vitória, Espírito Santo, Brasil
Intch is a Professional Networking App for the Future of WorkSee more people like Paschoal on Intch
300k+ people
130+ countries
AI matching
Get Intch if you'd like to
1027651 people
195
Engenheiro de software - Sênior
16
Diretor de Tecnologia da Informação e Comunicação
27
Project Manager (PMP) | Process Improvement, Onboarding & Workflow Optimization
104441 people
195
Engenheiro de software - Sênior
16
Diretor de Tecnologia da Informação e Comunicação
16
Solutions Architect