r4reetik

● Engineered a kill switch for services, enabling system shutdown within 30 seconds to prevent exploitation during critical incidents. ● Discovered and mitigated 2 attack vectors and 1 critical vulnerability during internal smart contract audits. ● Coordinated with PeckShield for external audits, ensuring timely information exchange and report delivery. ● Implemented Wazuh as SIEM for alerting and monitoring, enhancing visibility into computation and transaction behaviors. ● Investigated and resolved a critical miscalculation issue, saving $120,000 worth of assets. ● Reduced backend latency by 80% through AWS VPC optimization, improving system availability. ● Conducted load testing on a proprietary L2 blockchain with 10,001 nodes, monitored using Prometheus and Grafana. ● Facilitated secure fund withdrawal plans post-Ren shutdown, ensuring zero asset loss. ● Spearheaded four months of R&D, demonstrating rapid learning and delivering POCs on emerging technologies. ● Took over DevSecOps responsibilities, integrating security into development workflows after the departure of the DevOps lead. ● Introduced “shift-left” security practices, embedding security in the development lifecycle for a new product, Garden Finance. This reduced pre-production security audit time to three days. ● Performed an internal audit of cross-chain Smart Contracts, Bitcoin scripts, and Web2 integrations, identifying two writable SQL injections and eight fund-loss vulnerabilities. ● Built CI/CD pipelines with approval mechanisms, leveraging AWS IAM and Secrets Manager for secure deployments. ● Implemented Sentry and AWS CloudWatch for advanced log management and debugging. ● Managed end-to-end external audits with Trail of Bits, delivering comprehensive technical and game-theoretical insights. ● Developed Discord bots for anomaly detection, resource monitoring, and DEX flow alerts, strengthening operational oversight. ● Explored Apache Kafka for blockchain monitoring with partial success. ● Set up custom SonarQube workflows in GitHub Actions for automated code quality checks. ● Improved system-wide latency by 10x using AWS API Gateway.

● Mapped the entire system architecture and business logic. Documented all actors and flows in diagrams, making the system accessible even for non-technical stakeholders. This enhanced team understanding and accelerated onboarding at the early startup stage. ● Achieved 99% statement and 100% branch test coverage for EVM Smart Contracts using Hardhat, Chai, and Mocha. ● Optimized gas usage by 7% through Solidity updates after identifying inefficiencies during testing. ● Conducted security analysis with Slither and Mythril, addressing optimization-level findings. ● Implemented six additional security headers and patched XXS and CSRF vulnerabilities, fortifying frontend security. ● Conducted API security testing based on the OWASP checklist. Discovered and resolved three critical vulnerabilities in APIs. ● Redesigned backend input validation processes to enforce type safety and eliminate runtime errors across all system entry points. ● Developed a CLI-based transaction troubleshooter to improve support efficiency by reducing response time.

● Conducted internal and external network penetration testing, identifying vulnerabilities in network configurations and protocols. ● Performed system audits to uncover weaknesses in endpoint security, privilege management, and access control mechanisms. ● Evaluated security tools and techniques for real-time threat detection and mitigation. ● Documented findings and recommendations in detailed reports, aiding stakeholders in understanding security gaps and remediation steps.