From cybersecurity infrastructure to production platforms, I design and deploy systems built to scale, hold under load, and fail predictably.
Third-year CS student at Maastricht University focused on applied security and cloud systems.
System history spanning cloud deployments, offensive security, organizational leadership, and academia.
Architected and deployed a fully automated AWS-based lab platform for a 6-week cybersecurity course, provisioning isolated, per-student container instances via ECS Fargate for secure independent environments. Designed for zero-touch operation with reliable availability beyond scheduled lab hours. Additionally TA for the High Performance Computing course covering GPU programming (CUDA), CPU parallelism (OpenMP, MPI), and performance profiling.
Founded the first ACM Student Chapter in the Netherlands focused on cybersecurity, infrastructure, and hands-on technical learning. Built from scratch to 60+ members, founded the university's first CTF team, now ranked #2 nationally on CTFtime. Organizing regular meetups for CTFs and hackathons, expanding into technical workshops, research collaborations, and hosting the university's first CTF and ICPC competitions.
Co-founded a digital ticketing platform serving thousands of users across 86+ hosted events. Designed and implemented the entire technical infrastructure: backend architecture, AWS-based deployment, secure email delivery systems, and real-time ticket validation.
Developed and maintained backend infrastructure on AWS, implemented security features, and contributed to frontend development. Ensured platform reliability and supported end-to-end product delivery.
Security-first methodology applied across production workloads, academic research, and client-facing consulting.
Evaluating how Intel CET's IBT component performs in practice. Comparing ENDBR64 instrumentation across GCC and Clang LTO variants, and measuring the attack surface exposed by mixed CET/legacy deployments.
ENDBR64 counting, ROP gadget enumeration, and functional classification across libpng, libtiff, and libxml2 (Magma suite). AFL++ fuzzing for reachability validation.
Attempted CVE exploitation in libpng to demonstrate practical consequences of over-instrumentation and glibc's permissive IBT fallback.
Led 4-person team delivering security consulting to hardware startup. Client implemented all recommendations.
Led team selection, client interviews, and requirements scoping. Coordinated deliverable production and presented final security brief to stakeholders.
Security assessment report with architecture recommendations, threat model, infrastructure guidance, and compliance overview.
Systems designed, built, and shipped to production. Measured by uptime, not aesthetics.
Digital ticketing platform serving thousands of users across 86+ hosted events. Designed and implemented the entire technical infrastructure end-to-end.
React frontend, AWS serverless backend (API Gateway, Lambda, DynamoDB), CloudFront CDN, S3/SES. Terraform IaC with staging/production isolation. Payment processing, admin panels, real-time scanner (20ms avg).
Least-privilege IAM, JWT/HMAC rotation, rate limiting, input validation. HMAC webhook verification with replay protection. Structured logging, alerting, automated backup testing.
Founded the first ACM Student Chapter in the Netherlands. 0 to 60+ members, CTF team ranked #2 nationally.
Founded the university's first CTF team, now ranked #2 nationally on CTFtime. Contributed to CSLab infrastructure serving 1,700+ students. Secured €4k faculty budget for activities.
Hosted Microsoft Security and DARPA AIxCC winner (Georgia Tech). UM Student Award 2025 finalist. Guest on Observant Podcast (Ep. 8). Cross-university events with TU Delft, Twente, Radboud, VU Amsterdam.
Technical logs, vulnerability research, and security investigation reports.
Establish a connection for internships, engineering, or security inquiries.