Security & Cloud Engineering

Andrei Visoiu

Founder of MaaSec (ACM). Building secure, scalable cloud systems.

90+

Members

National CTF

2.1k+

Tickets

0.01%

HTB Global

MaaSec: Netherlands' only active ACM Student Chapter focused on security. Cross-university events with TU Delft, Twente, Radboud, and VU Amsterdam.

OneTicket: Processed 2,100+ tickets across 85+ events on hardened AWS serverless infrastructure.

CTF: Assistant to captain. Achieved #3 national ranking in 6 months. Trained beginners into competitive team members.

Get in Touch View Projects

Scroll

About Me

Building secure systems at scale

I'm Andrei Visoiu, a third-year CS student focused on applied security and cloud systems. I founded MaaSec (ACM Student Chapter at Maastricht University), built OneTicket (serverless ticketing platform), and competed at #3 nationally in CTF.

Current work: Cloud security and supply chain guardrails. Policy-as-code for IaC, SBOM/attestation in CI/CD, deploy-time controls for serverless.

Certifications: CNSS, eJPT, Google IT Support. Rankings: HackTheBox top 0.01%, TryHackMe top 1%.

Open to summer 2026 internships and research opportunities.

Technical Skills

AWS (Lambda, API GW, DynamoDB, CloudFront, S3/SES)Python/NodeIaC (Terraform/CDK)CI/CDAuthN/ZThreat modelingSBOM/SCALogging/IR notes

Featured Work

Projects

OneTicket

oneticket.one →

Production

Built serverless ticketing platform on AWS. 2,100+ tickets, 85+ events, zero downtime.

Stack

React frontend, AWS serverless backend (API Gateway, Lambda, DynamoDB), CloudFront CDN, S3/SES. Terraform IaC with staging/production isolation. Payment processing, admin panels, real-time scanner (20ms avg, multi-scanner support).

Performance

Handled 300+ ticket events with zero errors. Automated CI/CD pipelines.

Security

Least-privilege IAM, JWT/HMAC rotation, rate limiting, input validation. HMAC webhook verification with replay protection. Structured logging, alerting, automated backup testing.

MaaSec

maasec.com →

ACM Chapter

Founded the Netherlands' only ACM Student chapter. 0 to 90+ members in 10 months.

CTF Competition

Built and trained CTF team as assistant to captain. #3 nationally in 6 months. Most members started with no security background.

Events

Led participation in HALON 2025, SURF Quantum-Safe Cryptography Hackathon, WiCCON 2025, BSides Amsterdam 2025, and OZON 2025.

Infrastructure

Contributed to CSLab infrastructure serving 1,700+ students. Directed Brightlands prize sponsorship.

Speaker Series

Personally hosted Microsoft Security and DARPA AIxCC winner from Georgia Tech. Coordinated cross-university attendance (TU Delft, Twente, Radboud, VU Amsterdam).

Recognition

UM Student Award 2025 finalist (6 finalists).
Featured in official university interview.
Guest on the Observant Podcast episode 8: exploring digital boundaries and capturing the virtual flag.
Secured €4k faculty budget for activities.

Security Consulting for Startups

Pro Bono

Led 4-person team delivering security consulting to hardware startup. Client implemented all recommendations.

Role & Delivery

Led team selection, client interviews, and requirements scoping. Coordinated deliverable production and presented final security brief to stakeholders.

Scope

Security assessment report with architecture recommendations, threat model, infrastructure security guidance, and compliance overview.

Cloud Guardrails

Thesis Direction

IaC policy enforcement, SBOM/attestation in CI, deploy-time controls for serverless workloads.

Goal

Practical patterns that reduce misconfig and dependency risk for small teams.

Get in Touch

Let's Connect

andrei@k33w3.com

/in/visoiuandrei

GitHub

github.com/k33w3

Availability

Summer 2026 internships/research

Limited consulting and talks during term