Hire the Best Application Security Freelancers in Kyiv, UA

I’m an eWPTX-certified Cybersecurity Consultant with a Bachelor’s degree in Cybersecurity and over 10 years of hands-on experience in application security, helping organisations identify vulnerabilities across web applications, mobile apps, APIs, cloud environments, and IoT/embedded systems. I help companies identify real vulnerabilities in their systems and understand how they can be exploited, not just theoretically, but in practice. My focus is on manual, attacker-driven testing aligned with OWASP Top 10 and beyond, with clear, actionable outcomes for your team. I’ve worked with SaaS platforms, multi-tenant systems, and applications handling sensitive data, including projects aligned with HIPAA and FDA requirements. What I can help you with: * Web and API penetration testing * Mobile application testing (iOS, Android) * Network penetration testing * Cloud and backend security assessments * IoT and embedded device penetration testing * Embedded systems security audits My approach: * Manual testing, not just automated scans * Focus on real attack paths and impact * Clear communication throughout the process What you get: * Professional report with severity (CVSS), evidence, and reproduction steps * Practical remediation guidance your developers can use * Executive summary for non-technical stakeholders Technologies and platforms I have experience with (including, but not limited to): * Frontend: React, Next.js, TypeScript, Tailwind CSS * Backend: Node.js, Express, FastAPI, Laravel (PHP) * Databases: PostgreSQL, Supabase, Firebase, MongoDB * Cloud & BaaS: AWS, Supabase, Firebase, Vercel, Cloudflare * APIs: REST, GraphQL, PostgREST * Auth & Security: JWT, OAuth, RBAC, Row Level Security (RLS) * Payments: Stripe (Checkout, webhooks, subscriptions) * Mobile: Android, iOS (dynamic analysis with Frida, Objection) * Embedded & IoT: Microcontrollers, device logic analysis, firmware interaction * DevOps & Infra: Docker, CI/CD pipelines, GitHub Actions * AI integrations: RAG-based systems, prompt injection testing, data leakage analysis I’m easy to work with, responsive, and focused on delivering results that actually improve your security.

👋 Hey, I'm Oleg. Founder, funnel architect, and GTM specialist. Here's the nutshell: 1️⃣ Built and sold Quilqy Inc., a bootstrapped outbound agency that hit $600k ARR with no funding. 2️⃣ Co-founded a $20M+ hospitality project in Ukraine - 30 of 40 villas completed. 3️⃣ Now building Funnel Bakers - my one-person practice (not an agency). I design outbound systems, optimize funnels, and deploy AI agents that keep deals in motion. ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 🧠 How I Can Help: 📨 Cold Email Infrastructure - DNS setup (SPF/DKIM/DMARC), domain warmups, IP rotation, sender reputation, bounce prevention, blocklist remediation. 📝 Outbound Orchestration - End-to-end outbound pipeline: lead sourcing, enrichment, personalized sequencing, reply handling, CRM sync. 🤖 Claude Code GTM Agents (MCP) - Custom Model Context Protocol servers. Claude operates your stack directly: builds sequences, captures lead data, moves deals, generates reports in plain English. And much more - endless possibilities depending on your requirements. ⚙️ RevOps Infrastructure - End-to-end pipelines, multi-client agency setups (scale without hiring), HubSpot/Attio cleanup, meeting intelligence. 🧐 Funnel Audits - Deliverability diagnostics, stack recommendations, inbound + outbound handoff fixes. ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 🧰 Stack: 🎈AI / Agents: Claude Code, Claude API, MCP servers, OpenClaw 🎈Outbound: Quickmail, Smartlead, Instantly, Lemlist 🎈Lead gen: Clay, Apify, LinkedIn Sales Nav, PhantomBuster, Apollo 🎈CRM: HubSpot, Attio, Salesforce 🎈Automation: n8n (self-hosted), Zapier, Make 🎈Data: Supabase, Google Sheets, BigQuery 🎈Comms: Slack, Telegram, Gmail Workspace 🎈DNS / Deliverability: Cloudflare, GoDaddy, GlockApps, MXToolbox, NeverBounce 🎈Else: Notion, ClickUp, Granola, Looker, Google Drive ...and many more CRM, automation, and deliverability tools you'd expect!

Hi! I'm a Cybersecurity Engineer with hands-on experience in vulnerability assessments, cloud security reviews, and compliance evidence gathering. My main responcibility is to make clients understand and improve their security posture. I work across the full assessment lifecycle: scanning exposed services, reviewing configurations, validating findings, and delivering clear, actionable remediation reports that your clients can actually use. I'm comfortable operating under NDA and have supported multiple audit during my experience in fintech sector, so I understand the discipline and documentation standards that consulting engagements demand. What I can do: - Conduct vulnerability assessments using Burpsuite Scanner, OpenVAS, Nmap, Acunetix from scoping through validated findings - Review exposed services, firewall configurations, and network infrastructure for security gaps - Perform Microsoft 365 security reviews - Azure security posture analysis aligned with CIS benchmarks and Microsoft Secure Score - Gather and structure technical evidence for compliance projects (PCI DSS, ISO 27001) - Produce detailed, structured remediation reports tailored to any environments Relevant experience: - Conducted web penetration tests using OpenVAS, Burp Suite, OWASP ZAP, and Metasploit - Provided technical evidence and documentation support for internal audits and certifications - Performed risk assessments and security hardening for infrastructure and information systems - Wrote security policies, remediation playbooks, and technical process documentation Understanding of frameworks & certificates: PCI DSS ISO 27001 CIS Benchmarks Tech stack: OS : Linux (Red Hat, Ubuntu), Windows (desktop & server), macOS VM : VMware, VBox SIEM : ELK/Wazuh, ArcSight, Splunk Cloud : Azure, Entra ID, Defender Network : Fortinet IPS&Firewall, Check Point Firewall, F5 WAF Anti-DDoS : Radware, Arbor EDR : Elastic Agent, Trellix PAM : CyberArk NDR : Vectra Vulnerability Detection : Nmap, Metasploit, Burp Suite + Scanner, OWASP ZAP, OpenVAS, Harvester, Sublister, Maltego