About Me
Hello, my name is Renan. Building on a technical foundation in DevSecOps and systems administration, I have transitioned from securing critical banking infrastructure for the Brazilian Payment System (SPB) to driving enterprise security initiatives as a Staff Engineer. My trajectory has evolved from hands-on infrastructure management to leading complex, cross-functional technical strategies that bridge the gap between technical security and overarching business objectives.
My current focus is on enabling engineering teams to develop software securely by providing the necessary frameworks and tools, including a proactive AI security posture to increase development velocity. I specialize in executing the company vision by leading large-scale projects that align technical security with business goals. Central to my approach is the implementation of Zero Trust principles, ensuring that security is a seamless, resilient, and supportive part of the organization's growth. I bridge the gap between deep technical execution and GRC initiatives, such as ISO27001 and GDPR, to foster a culture where security accelerates delivery.
Core Competencies
AppSec & Security Culture
Cloud & Infrastructure
GRC & Compliance
SysAdmin & Engineering
Professional Journey
SoSafe GmbH
January 2022 - PresentStaff Security Engineer | Cloud & Application Security | Zero Trust Advocate
- GRC & Compliance: Support the company through certification processes, specifically focusing on ISO27001 standards and facilitating responses to GDPR requirements.
- Security Coordination: Act as a technical reference for the company’s security landscape, coordinating with different departments to align security initiatives with business goals.
- AI & AppSec Posture: Develop frameworks for AI security posture to help engineers utilize AI tools safely and efficiently in their development workflows.
- Infrastructure Strategy: Contribute to the design and implementation of zero-trust security models to enhance organizational resilience.
Senior Security Engineer
- Security Automation & Infrastructure: Optimized AWS security pipelines by integrating automated security gates and validation testing to standardize product security across the development lifecycle.
- Scalable Security Services: Designed and deployed internal security services and processes to reduce manual overhead and improve organizational response to threats.
- Compliance & Posture Management: Managed continuous security assessments and environment hardening to ensure ongoing adherence to ISO27001 and GDPR standards.
- Strategic Advisory: Partnered with executive leadership to provide technical cost-benefit analyses, ensuring security tooling investments aligned with budgetary and business goals.
- Security Culture & Enablement: Facilitated security-by-design workshops for developers, shifting security responsibilities left and fostering a proactive security mindset within engineering.
- Architectural Resilience: Promoted and integrated a Zero Trust security model to enhance infrastructure defense and minimize internal risk.
- Cross-Functional Collaboration: Collaborated within a Purple Team framework to align offensive security findings with defensive monitoring and remediation strategies.
Senior Platform Engineer
- Developed and maintained a state-of-the-art, secure web platform, empowering developers to seamlessly deploy, test, and run their products.
- Orchestrated the implementation and upkeep of features within the SoSafe platform.
- Mentored peers and conducted workshops for developers and engineers.
- Engaged actively in agile work processes.
- Contributed to the design of cloud architecture and technology selection.
Senior DevSecOps Engineer | Cloud Infrastructure & Security Automation
X-SENSORS GmbH / Ainda.ai
As the founder architect for the organization’s cloud presence, I drove the end-to-end design and execution of a scalable infrastructure that supported dozens of engineers in a high-growth startup environment. I managed the transition from initial concept to a production-ready ecosystem, focusing on closing critical security and systems gaps.
- Oversaw processes including Cloud Architecture, CI/CD integration with tools like Jira, GIT, Jenkins, EKS, Keel.sh, and Slack.
- Implemented robust security policies, including WAF, LoadBalancers, GeoIP, and Behavior Analysis.
- Set up comprehensive monitoring systems using Zabbix, Grafana, and Prometheus.
- Executed system hardening by applying best practices for image building and testing.
- Designed and managed data pipelines, encompassing streaming, Apache Nifi, MQTT, OPC-UA, data lakes, warehouses, marts, and IoT.
- Configured log aggregation (ELK) and established network segmentation using Zero-Trust policies.
- Developed custom backup solutions integrated with AWS S3.
- Architected distributed microservices systems using Kubernetes orchestration and defined disaster recovery management solutions, including test planning and post-test lifecycle recovery.
Senior Cloud & DevOps Engineer | Kubernetes & AWS Specialist
CreativeDrive
Main driver behind the migration of the entire on-premises infrastructure to AWS Cloud, managing a vast network of servers across both public and private data centers globally.
- Implemented distributed systems using Kubernetes orchestration and microservices.
- Streamlined continuous integration and delivery with state-of-the-art tools such as Jenkins and CircleCI.
- Prioritized cybersecurity, ensuring the implementation of security best practices throughout the infrastructure.
- Orchestrated and deployed services exclusively on Amazon Web Services (AWS).
- Devised comprehensive disaster recovery management strategies, encompassing detailed test planning, post-test vulnerability analysis, and full recovery lifecycle oversight.
Infrastructure & Systems Engineer | Linux & Windows Administration | Network & Security Operations
Cresol Confederação
Played a pivotal role in managing intricate projects in collaboration with multiple partners, integrating Cresol into the Brazilian financial system.
- Deployment, maintenance, and debugging of the system in a Jboss environment.
- Automation of routine tasks to enhance efficiency and executed comprehensive log analysis to ensure system integrity.
- Conducting benchmarks to evaluate and optimize system performance.
- Expert administration of Linux systems, specifically RedHat and Debian.
IT Infrastructure Analyst | Network Administration & Backup Solutions
Baia Sul Hospital
Entrusted with the comprehensive management of the hospital's IT infrastructure, leading a dedicated team of three professionals in a predominantly Windows server environment.
- Introduced and integrated open-source tools, implementing various Linux services for enhanced monitoring and management of the tech infrastructure.
- Successfully implemented an audit system, bolstering the hospital's data integrity and compliance.
Selected Open Source & Projects
Security Labs
"Advanced security research & offensive engineering"
A dedicated fork from the RTM project, Security Labs narrows its focus exclusively on security topics, vulnerability testing, and educational cyber defense discussions.
RTM PROJECT
"A knowledge database for everyone"
The RTM project stems from a personal aspiration. It showcases the vast knowledge amassed throughout my sysadmin and cloud security journey, structured as a public open-source knowledge database.
Education & Certifications
Academic Foundations
MBA in Information Security
Cruzeiro do Sul University
"Information security is not just a technology issue, it's a core operational resilience driver."
Deep-dive into cryptographic architectures, TCP/IP vulnerability analysis, penetration methods, disaster recovery planning, and IT governance standard frameworks including ITIL, COBIT, and compliance auditing.
B.Sc. in Computer Networks
IES - Grande Florianópolis
"Connecting systems securely while scaling for future growth."
Focused on network design engineering, physical and logical protocols configuration, high-performance cloud virtualization topologies, operational security frameworks, and traffic simulation testing.