4. Security & Compliance

Decodes, validates, and generates JWT tokens with support for multiple cryptographic algorithms.

Scans network ports to identify open ports and detect running services for security vulnerability assessment.

Calculates file hash values (MD5, SHA1, SHA256, SHA512) to verify file integrity and detect unauthorized modifications.

Enables secure key management, encryption, decryption, and digital signing operations for Java 2.x applications using AWS KMS.

Provides unit tests for Spring Security annotations to validate role-based access control and authorization policies.

Provides JWT authentication and RBAC authorization patterns for Spring Boot 3.5.x using Spring Security 6.x and JJWT.

Integrates AWS Secrets Manager with Java applications for secure secret storage, rotation, and credential management.

Expert in implementing secure authentication systems using JWT, OAuth 2.0, and RBAC for user access management and security enforcement.

Ensures web accessibility compliance with WCAG 2.1/2.2 through ARIA implementation, keyboard navigation, and screen reader testing.

Enforces security best practices for authentication, input validation, and OWASP Top 10 vulnerability prevention in code.

Conducts security audits, code vulnerability reviews, and infrastructure security assessments using SAST, penetration testing, and DevSecOps practices.

Validates SQL database schema files against internal safety and naming policies to ensure compliance.

Conducts structured security reviews to harden software designs and implementations against vulnerabilities.

Provides essential PHP security patterns including input validation, SQL injection prevention, XSS protection, and CSRF tokens for secure application development.

Enables implementation of authentication, encryption, and security mechanisms for SIP servers, clients, and proxies.

Enables implementation of Kubernetes security best practices including RBAC, Pod Security Policies, and Network Policies for secure cluster management.

Provides secure secrets management best practices including encryption, key management, and access control implementation with Fnox.

Configures Fnox providers for secure encryption and secret storage, supporting age encryption, cloud services (AWS, Azure, GCP), and password managers.

Automates creation of PrivacyInfo.xcprivacy files and resource integration for CocoaPods libraries to meet iOS 17+ App Store privacy compliance requirements.

Migrates .env secret management to fnox with 1Password integration, including configuration and mise setup for secure workflows.

AI security platform detecting prompt injection, jailbreaks, and 39,000+ attack payloads in LLMs and multimodal systems with 97 detection engines.

Provides .NET SDK and Azure Functions triggers for customizing authentication events in Microsoft Entra ID, including token enrichment and custom claims.

Authentication library for .NET Azure SDK clients, supporting Microsoft Entra ID and credential types including managed identity and service principals.

Enables text and image analysis for content moderation, detecting hate, violence, and harmful content using Azure AI Content Safety SDK for Java.