Secure Coding · DevSecOps · AppSec · Cloud Security · Automation
I am a final-year IT specialist for application development (Fachinformatiker Anwendungsentwicklung) specializing in Secure Coding & DevSecOps.
My strong programming foundation allows me to understand how applications and APIs are built from the inside out. I apply this knowledge to build secure-by-design systems and integrate automated security gates directly into the development cycle (Shift Left).
I am a self-driven, independent learner who loves building practical labs, hardening systems, and mastering cloud infrastructure.
I am actively executing a structured career roadmap to bridge the gap between software development and security:
| Phase | Title | Focus & Core Technologies | Status |
|---|---|---|---|
| 1 | Basics & Security | Linux CLI, Networking, openHPI, ISC² CC | 🔄 In Progress |
| 2 | AppSec & Web/API | Python, FastAPI, PortSwigger, Helsinki Python | 🔄 In Progress |
| 3 | Container & Hardening | Docker/Compose, SSH/UFW Hardening, Terraform basics | ⏳ Planned |
| 4 | DevSecOps & CI/CD | GitHub Actions, Security Scanners (Semgrep/Bandit/Trivy), Prometheus & Grafana | ⏳ Planned |
| 5 | Cloud & Identity | Microsoft Azure, Microsoft Entra ID (IAM), SC-900 | ⏳ Planned |
| 6 | LLM Security & Capstone | OWASP LLM Top 10, Secure AI Gateway | ⏳ Planned |
A series of local-first web applications designed to help apprentices prepare for their IHK examinations (AP1, AP2 FIAE, AP2 FISI). Over 790+ flashcards, running entirely offline with LocalStorage and zero user tracking.
- Stack: HTML5 · CSS3 · Vanilla JavaScript · Tailwind CSS · LocalStorage
- Web-Apps: AP1 Tracker | AP2 FIAE Tracker | AP2 FISI Tracker
- Repositories: ap1-tracker | ap2-tracker | ap2-fisi-tracker
A secure REST API designed to showcase backend hardening and defensive coding practices.
- JWT Authentication, bcrypt password hashing, Pydantic input validation, and rate limiting.
- Automated API testing with Pytest and secure Docker deployment.
- Stack: Python · FastAPI · PostgreSQL · Docker · Pytest
- Status:
[ Status: Upcoming (Roadmap Phase 2) ]
My capstone project: A secure proxy gateway for Large Language Models (LLMs) to mitigate modern security risks.
- Prompt injection protection, PII data filtering, rate limiting (Redis), and encrypted audit logs.
- CI/CD deployment with GitHub Actions and SAST/SCA security scans.
- Stack: Python · FastAPI · Redis · PostgreSQL · Docker · GitHub Actions
- Status:
[ Status: Planned Capstone / Masterpiece ]
| Status | Certification | Target Date |
|---|---|---|
| 🔄 | ISC² Certified in Cybersecurity (CC) | July 2026 |
| ⏳ | Microsoft Security Fundamentals (SC-900) | Late 2026 |
I am aiming to step into roles that combine software engineering with modern security practices:
- Secure Software Developer (Python / Backend)
- Junior DevSecOps Engineer (CI/CD, Automation)
- Junior Application Security (AppSec) Specialist
- Junior Cloud Security Specialist
