4. Security & Compliance

Enables comprehensive web application security testing through Burp Suite integration for vulnerability scanning and penetration testing.

Creates Pre-Startup Safety Review (PSSR) checklists to verify operational safety compliance before equipment activation.

Manages smart contract bug bounty programs including Immunefi setup, vulnerability triage, disclosure coordination, and post-disclosure analysis.

Configures NextAuth.js authentication with providers, session management, and JWT handling for secure user authentication.

Scans software dependencies for vulnerabilities, generates component inventories, and creates SBOMs to ensure security compliance and migration readiness.

Scans code, configurations, and git history for exposed secrets and credentials, providing remediation steps and tracking secret rotation status.

Expert guidance for implementing embedded cryptographic operations, secure key storage, hardware crypto accelerators, and side-channel attack mitigation.

Automates evidence collection for regulatory compliance frameworks across cloud providers, identity systems, and security tools.

Generates GPG signatures for Linux packages to verify authenticity and prevent tampering during distribution.

Automates HIPAA compliance checks, ePHI protection assessments, and audit preparation for healthcare data security.

Optimizes industrial alarm systems to ensure ISA-18.2 compliance through rationalization and setpoint adjustments.

Automates Authenticode signing of Windows executables with signtool, supporting EV and standard certificates for enhanced security and trust verification.

Automates WCAG accessibility compliance testing, generates violation reports, and suggests code fixes for web applications.

Audits and provides remediation for web content to meet WCAG 2.1/2.2 accessibility standards, ensuring compliance with accessibility regulations.

Verifies compliance with ISO nanotechnology standards and generates required documentation for regulatory adherence.

Facilitates structured design phase gate reviews to ensure compliance with 21 CFR 820.30 medical device design control regulations.

Manages user consent for data processing in desktop applications to ensure GDPR compliance and privacy protection.

Validates AI/ML medical devices against FDA's Generalized Machine Learning Principles (GMLP) for regulatory compliance.

Manages DAST scans using OWASP ZAP and Nuclei, including authenticated testing, policy management, and vulnerability reporting.

Assists with OAuth 2.0 and OIDC flow implementation, provider integration, and secure token handling for authentication.

Designs and validates safety systems for industrial and collaborative robots to ensure compliance with global safety regulations and standards.

Verifies financial data consistency with source documents, bank statements, and contracts to ensure regulatory compliance and audit readiness.

Creates accessibility compliance reports including VPAT and ACR documents to ensure adherence to WCAG standards.

Analyzes network protocols for security vulnerabilities using capture, inspection, and fuzzing techniques to detect weaknesses in communication systems.