🔹 Python Developer | Cybersecurity Engineer at SIA (Indra Group)
🔹 Specialized in Secure API Development & Automation

I’m currently working at SIA (Indra Group), specializing in cybersecurity solutions, API integrations, and automation. My focus is on secure software development, implementing SOAR (Security Orchestration, Automation, and Response) solutions, and enhancing threat detection through AI and cloud technologies.

• Advanced Cybersecurity Practices – Secure DevOps, API security, and cloud security.
• SOAR & SIEM Integration – Splunk Phantom, IBM Resilient, and Cortex XSOAR.
• Cloud Security – AWS Security Hub, GuardDuty, and IAM best practices.

• Cybersecurity API development – Integrating security tools with Python.
• Threat intelligence automation – Automating detection and response to cyber threats.
• Cloud security projects – Enhancing AWS, Azure, and GCP security.

• Optimizing cybersecurity automation workflows.
• Implementing AI-driven threat detection models.
• Exploring new SOAR strategies for incident response.

• Secure API Development (Django, Flask, FastAPI, DRF).
• Cybersecurity Integration & SOAR Workflows.
• Threat Intelligence & Incident Response Automation.
• Python Automation & Cloud Security.

📧 Email: rosendoarturomendoza@gmail.com
🌐 LinkedIn: Rosendo Mendoza
📂 GitHub: rosendomendoza

He/Him

I started my career as a software developer but quickly became fascinated by cybersecurity, realizing that writing secure code is as crucial as writing efficient code. Now, I combine my passion for development with cybersecurity to build robust, attack-resistant applications.

✅ Python – Django, Flask, FastAPI, Streamlit
✅ API Security – OAuth2, JWT, API Gateway
✅ Testing – Pytest, unittest, pytest-django
✅ Database Management – PostgreSQL, MySQL, SQLAlchemy

✅ Incident Response Automation – Splunk Phantom, IBM QRadar, Cortex XSOAR
✅ Threat Intelligence – VirusTotal API, Shodan, OpenCTI
✅ Cloud Security – AWS Security Hub, IAM, GuardDuty
✅ Vulnerability Analysis – OWASP ZAP, SonarQube

🔹 Tech: Python, Django, PostgreSQL, AWS
🔹 Features: API security (OAuth2, JWT), cloud storage (AWS S3), SIEM integration

🔹 Tech: Python, Splunk Phantom, SOAR Playbooks
🔹 Features: Incident triage automation, IP blocking, phishing detection

🔹 Tech: Flask, MySQL, PyWhatKit (WhatsApp API)
🔹 Features: Automated candidate notifications, job application tracking

🎓 Bachelor’s Degree in Computer Engineering – Universidad Centroccidental "Lisandro Alvarado" (1992)
🎓 Master’s in Computer Science (Networks Specialization) – Universidad Centroccidental "Lisandro Alvarado" (2010)
🎓 Degree Recognition (Spain, 2024) – Engineering & IT Technologies

• AWS Certified Solutions Architect (Associate)
• Networking in the Cloud & Web Security (Universidad de los Andes, 2013)
• Forensic Computing (UNAM, 2013)
• Cisco CCNA 200-125
• Python Mega Course (Udemy, 2023)
• Cybersecurity Master Program (IMF x Deloitte - Ongoing)

📍 2024 – Present

• Development & integration of cybersecurity automation solutions.
• API security & authentication using JWT, OAuth2, DRF.
• SOAR automation with Splunk Phantom, QRadar & Cortex XSOAR.
• AWS security monitoring with GuardDuty & CloudTrail.

📍 2019 – 2024

• Designed & developed secure APIs for multiple clients.
• Implemented real-time monitoring systems with Prometheus & Grafana.
• Integrated third-party security services (Threat Intelligence APIs).
• AWS administration, automation & security compliance.

📍 2007 – 2023

• Taught courses in Networks, Programming & Cybersecurity.
• Led R&D projects in network security & distributed systems.
• Coordinated undergraduate & graduate programs.

📍 1998 – 2003

• Led the automation of Venezuela’s student transportation system (FONTUR project).
• Managed IT infrastructure, including network security & cloud solutions.

📍 1993 – 1994

• Installed & maintained ATMs and banking infrastructure.
• Provided technical support & security audits for financial institutions.

I specialize in secure software development, API security, and automation of incident response using SOAR tools. My work focuses on integrating security solutions, automating threat detection, and hardening APIs against attacks.

I follow best practices like OAuth2, JWT authentication, API Gateway security policies, and rate limiting. Additionally, I implement automated security testing using DAST tools (OWASP ZAP) and static analysis (SonarQube).

I have experience with Splunk Phantom, Cortex XSOAR, and IBM QRadar for automating incident response workflows. I integrate these tools with Python scripts and cloud security services to improve detection and mitigation of cyber threats.

Yes! I integrate security into CI/CD pipelines using GitHub Actions, SonarQube, and automated security scanning to ensure that code meets security standards before deployment.

Absolutely! If you have an interesting cybersecurity or software development project, feel free to reach out.

📧 Email: rosendoarturomendoza@gmail.com
🌐 LinkedIn: Rosendo Mendoza
📂 GitHub: rosendomendoza