Rutgers CS Graduate Student
Building secure cloud systems, scalable web platforms, and developer-focused tools that solve real-world problems.
About Me
I'm a security-focused software engineer completing my graduate studies at Rutgers University (New Brunswick, NJ). My work centres on building tools that find vulnerabilities before attackers do — including an AWS IAM privilege escalation engine that models policy graphs, runs BFS reachability, and classifies attack paths against MITRE ATT&CK.
Beyond security tooling, I build and maintain production full-stack systems: a Moodle LMS platform, a Firebase-backed housing platform for the campus community, and real-time auction infrastructure on AWS RDS. I write Python, JavaScript, PHP, and Dart — and I care about the security posture of everything I ship.
Skills
From systems-level security to pixel-perfect mobile UIs, I bring depth across the full stack. Each skill below represents hands-on project work, not just familiarity.
Python
JavaScript
Java
PHP
Dart
Flutter
React
HTML5
CSS3
Figma
Node.js
Flask
Firebase
PHP / Moodle
Express
MySQL
PostgreSQL
AWS
GCP
Firestore
Git
GitHub
Linux
VS Code
Experience
June 2025 — Present
School of Social Work, Rutgers University
Architected and shipped 5+ custom PHP/MySQL modules for a Moodle-based LMS serving, automating curriculum workflows that previously required manual content updates. Improved responsive front-end across 12+ course templates and reduced deployment defect rate through structured regression testing.
Sep 2025 — Dec 2025
Rutgers University, Department of Computer Science
Evaluated algorithmic correctness and time/space complexity for 120+ students across 12 weekly problem sets and 3 examinations, maintaining a 48-hour grading turnaround. Held office hours to clarify course concepts ranging from BFS/DFS to dynamic programming and graph theory.
May 2025 — Aug 2025
Rutgers University, Dept. of Computer Science (Prof. James Abello)
Engineered a Flask-based DAG parser that converts Mermaid diagram and YAML specifications into auto-generated Jupyter notebook assignments — cutting manual assignment setup from 2+ hours to under 5 minutes per template. Developed and maintained backend API endpoints on AWS (PostgreSQL) and contributed to a graph-analytics research portal.
Jan 2024 — Aug 2024
OceanMtech
Shipped 3 production Flutter applications for B2C clients, architecting reusable widget systems that accelerated feature delivery by 30%. Implemented automated UI testing that reduced post-release regression reports by 35% across two consecutive release cycles. Collaborated with design and backend teams across cross-functional sprints.
Aug 2023 — Dec 2023
Fibtoin
Refactored a 10,000+ line Dart/Flutter codebase to improve modularity and testability, authoring technical documentation that cut new-developer onboarding time from 5 days to 2 days. Delivered zero critical defects across the final 2 production releases.
Mar 2023 — Jul 2023
Fibtoin
Completed 3 production sprint cycles delivering Flutter UI components from spec to merge, establishing proficiency in Git branching workflows, peer code review, and agile delivery. Contributed to the team's on-time release record across 2 consecutive quarters.
Projects
Security tooling, full-stack platforms, and production mobile applications — each project is a proof point, not a tutorial clone.
Featured Project
Detects multi-hop AWS IAM privilege escalation by modelling policies as a formal state-transition system and applying dominance-pruned BFS — finding the attack paths that static linters and manual policy reviews miss.
Key Results
Analyzes 50+ IAM policies in <2 seconds, classifying paths into 8 MITRE ATT&CK TA0004 techniques (AssumeRole, PassRole, cross-account pivots)
Generates PDF risk reports with CVSS-style priority scores and ranked remediation roadmaps per finding
Interactive Flask dashboard — NetworkX + Matplotlib graph with red edges for escalation paths, orange nodes for critical capabilities
More Projects
Firebase-backed housing and roommate-matching platform for the 50,000-student Rutgers community. Implements secure Scarlet-to-Scarlet user verification, real-time sublease listings, and roommate compatibility matching.
Production-grade auction platform built on Node.js + MySQL with ACID-compliant concurrent bid transactions on AWS RDS. Firebase handles auth and image storage. Full seller dashboard, admin panel, and change-request workflow included.
Offline-first voice assistant processing 50+ commands at <200ms wake-word latency via Picovoice Porcupine. Falls back to a local GPT4All LLM for NLP — no API quota, no cloud dependency. Automates OS tasks through pyautogui and Win32 APIs.
Client-side tool for instructors: upload a CSV of 500+ student grades and instantly get weighted totals, configurable letter-grade schemas, per-student breakdowns, and exportable reports — zero backend, zero latency.
Paid client Flutter app delivering a complete e-commerce flow: onboarding, product catalogue with categories, cart with real-time Firebase sync, wishlist, and secure user profile. Optimized for smooth 60fps rendering on mid-range Android devices.
Paid client Flutter app with a complete food ordering flow: onboarding, restaurant and menu browsing, cart with live price calculation, wallet top-up, and an integrated admin portal for menu management and order tracking — all on Firebase.
Paid client Flutter app with a complete food ordering flow: onboarding, restaurant and menu browsing, cart with live price calculation, wallet top-up, and an integrated admin portal for menu management and order tracking — all on Firebase.
No projects match this filter.
Certifications
20 certifications across UX design, cybersecurity, and AI from Google and Microsoft.
No certificates match this filter.
Currently Building
Active work, ongoing research, and open opportunities.
Extending the escalation engine with passive CloudTrail correlation — detecting privilege escalation events in live AWS environments, not just static policy exports. Adding cross-account trust boundary analysis.
Graduate-level research into AWS attack surface mapping — how trust boundaries expand across GovCloud and commercial accounts through cross-account role chaining, resource-based policies, and service control policies.
Actively interviewing for Security Engineer and Full-Stack Engineer positions. Available for on-site, hybrid, or remote roles in the US. Response guaranteed within 24 hours.
Get in TouchContact
Actively seeking Security Engineer and Full-Stack Engineer roles — on-site, hybrid, or remote in the US. I reply within 24 hours. No recruiters for unrelated roles, please.
Location
New Brunswick, NJ, USA
 for Websites.jpg)
 Design.jpg)
