Lorenzo Wölckner
Fullstack Software Engineer
& Cybersecurity Expert
Resourceful software developer and reliable information security professional with deep, broad knowledge of the field and an analytical and methodical mind. With 8+ years of extensive experience working both independently and with multiple diverse teams writing clean and efficient code across the entire stack, diligently managing on-premises/cloud infrastructure servers and services, designing and maintaining innovative systems and libraries, creating intuitive and polished products, capable of handling and integrating all aspects of cybersecurity and skillfully approach any challenges.
Always looking for new opportunities, especially to further expand this list of important keywords and adjectives.
Work Experience
Relevant employment history, with each job bringing its new challenges, increased responsibilities, project variety, insight opportunities, rewards and achievements. I always proactively expand my knowledge as necessary and strive to never stop learning; but not from my mistakes if possible.
-
Staff Software Engineer &
Information Systems Security OfficerScandit – Zürich, Switzerland
– present (2 year, 0 months; total: ~7 years)
Back-end software developer, system administrator and front-end engineer, covering the full stack. In charge of the entire organization's infrastructure, network and data security. Development, upgrade, maintenance and monitoring of servers, databases and cloud infrastructure. Integration of APIs and marketing instruments. Creation of new functionalities dealing with big data analysis, aggregation and display. Coding of internal and external management tools, web applications and UIs. Complete planning, design, implementation and support of company's main web library product. Responsible for research, documentation, management, implementation and enforcement of company's information security systems, practices and rules. Organization of several team activities.
Main technologies: JavaScript, TypeScript, Python, Ruby/Rails, HTML, CSS/SCSS, C/C++, WebAssembly, MySQL, PostgreSQL, ClickHouse, Redis, Docker, Kubernetes, AWS, Ansible, Kafka, GitLab, Jira, Confluence, Sentry, WebRTC, WebGL
-
Senior Software Engineer &
Information Systems Security OfficerScandit – Zürich, Switzerland
– (1 year)
-
Software Engineer (contractor)
Presspectrum – Zürich, Switzerland
– (2 months)
Coding of software to be run on a distributed network of machines. Implementation of programs responsible for remote jobs management and intercommunication between different web APIs; integration and utilization of existing analysis software performing natural language processing and machine learning for the purpose of online messages' moderation.
Main technologies: Java, RabbitMQ, MySQL
-
Scientific Assistant (contractor)
Institute of Information Security – ETH
– Zürich, Switzerland– (2 months)
Development of software for the paper
Quantifying Web Search Privacy
. Optimization, improvement and restructuring of code; creation of a program utilizing machine learning algorithms to learn the linkability between user queries and evaluate obfuscation mechanisms. Parallelization and deployment of the software on the national supercomputing center.Main technologies: Python, C++
-
Student Assistant
Institute of Computational Science – USI
– Lugano, Switzerland– (1 year)
Programming of various tools related to physical simulations. Work in a diverse developer team, creation and integration of new functionalities, maintenance and documentation of new and old code; interdisciplinary application of mathematics, physics and CS techniques.
Main technologies: C++
Education
Academic path that brought me broad theoretical knowledge and practical experience in different computer science fields, and led to the obtainment of degrees certifying that the programming adventures in my youth were a good time investment.
-
Master of Science ETH in Computer Science:
Information SecurityEidgenössische Technische Hochschule (ETH)
– Zürich, Switzerland–
Courses GPA: 5.53 - Thesis: 4.75 - Final GPA: 5.31 (max. 6)
Master Thesis - under Prof. Dr. Srdjan Capkun:
Bitcoin versus Bitshark
Estimating Privacy via Collection and Combination of InformationMain technologies: C++, Java, Python, MongoDB, Xen, VMware
-
Bachelor of Science in Informatics
Università della Svizzera Italiana (USI)
– Lugano, Switzerland–
Courses GPA: 8.99 - Thesis: 10 - Final GPA: 9.09 (max. 10)
summa cum laudeBachelor Thesis - under Prof. Dr. Marc Langheinrich:
Secure and Compact SMS (SC-SMS)
Android Application for Advanced Short Messages FeaturesMain technologies: Java, Android, BouncyCastle
Skills
Work- and personality-related attributes and capabilities that define what I do best and how I approach projects and challenges; listed trying to keep SEO and boasting to a minimum.
Fluent Polyglot Coder
Proficiently programming in JavaScript, TypeScript, Python, Ruby, HTML, CSS/SCSS and capable of writing code in C/C++, Bash and Java as well; quickly able to pick up and learn new languages.
I create great code in JavaScript, TypeScript, Python, Ruby, HTML, CSS/SCSS; other languages are less than great though for now.
Flexible Platform Agnostic
At ease working with Windows, macOS and Linux (Ubuntu) computers, administering Linux (Debian) servers and testing with Android and iOS devices together with all main browsers.
I can work with Windows, macOS and Linux on computers, servers and toasters, plus Android and iOS (ew...) on mobile devices.
All-round Fullstack Engineer
Experience with low-level optimization, databases, containers, back-/front-end frameworks, API creation, web app design, deployment infrastructures and more across all the stack.
When I say fullstack, mean the whole thing, from annoying C pointers to OCD-level CSS pixel-perfect alignments.
Qualified Security Expert
In-depth academic cybersecurity education, with theoretical and practical work experience in secure software development and company-level information security and risk management.
I studied information security, work in cybersecurity, and feel secure about myself. A security influencer.
Reliable Server Manager
Competent in the administration and monitoring of on-premises and virtual Linux servers (IaaS); including virtualization, networking, deployment, automation and hardening skills.
I can access servers' minds to read their most hidden directories and tell them what to do (sudo
might be required).
Diligent Cloud Administrator
Skilled in the management of multiple AWS systems and services; handling provisioning, scaling, networking, maintenance, troubleshooting, access management, monitoring and more.
Same thing as the previous point, but here instead of imposing myself on local servers, I do it at a distance; spooky.
Multifaceted Architect
Able to handle all aspects of planning, design, development, testing, deployment and maintenance for entire new systems and projects from scratch; proactively, either independently or as part of a team.
When I work on a project, I can do all the tasks; Jack of all trades, master of none, although here maybe some.
Systematic Multitasker
Apt at balancing conflicting priorities, estimating efforts, planning and dynamically switching between different responsibilities and tasks to deliver timely results to different stakeholders.
I can try and most often succeed at balancing preposterous requests and deadlines coming from multiple people at the same time.
Meticulous Developer
Great care to detail in all work aspects; coding, documenting, communicating, managing and reporting work in the most polished way, while always taking efficiency and time into consideration.
I create extremely polished code, with great variable names, consistent spaces and tabs for indentation and fancy font ligatures.
Passionate Explorer
Ever-present enthusiasm and will to discover and learn about new innovative tools that can help solve challenges, present new opportunities and approaches and broaden my skill set.
I like to learn about new, immature and experimental tools on Hacker News and spend way too much time failing at using them.
Sophisticated Designer
Drafting and implementing intuitive, unified, beautiful user interfaces; handling different styles, unified designs, balancing complexity and simplicity to deliver enjoyable user experiences.
I am able to focus my efforts to create amazingly smooth, responsive and pixel-perfect interface parts no one will notice.
Amiable Communicator
Friendly and cooperative in chats, emails and video conferences; always with a positive and effective attitude, ensuring discussions with any person, group or department are pleasant and useful.
I think I'm being funny and friendly with everyone most of the time, I like chatting with others and they like me; great success.
Technologies
Main tools, libraries, systems and services that I learned over time and feel knowledgeable about and confident to use in different scenarios; for work purposes or personal, more or less useful, projects.
AWS Compute
- EC2
- ECR
- ECS
- EKS
- Lambda
AWS Monitoring
- CloudTrail
- CloudWatch
- GuardDuty
- WAF
AWS Network
- CloudFront
- ELB
- Route 53
- VPC
AWS Protection
- ACM
- IAM
- KMS
- Secrets Manager
AWS Storage
- Backup
- EBS
- RDS
- S3
Collaboration
- Confluence
- Google Workspace
- Jira
- Slack
- Zoom
Containers & IaC
- Ansible
- Docker
- Helm
- Kubernetes
- Terraform
Databases
- ClickHouse
- MongoDB
- MySQL
- PostgreSQL
- Redis
SCM & CI/CD
- Git
- GitHub
- GitLab
- Jenkins
Security Guidelines
- ISMS
- ISO 27001
- NIST Standards
- OWASP Standards
- Secure SDLC
Security Software
- 1Password
- Falco
- Nessus
- OPNsense
- OSSEC
Monitoring
- Grafana
- Prometheus
- Sentry
- TICK
Web Development
- Babel
- esbuild
- Parcel
- PostCSS
- Rollup
- Webpack
Web Frameworks
- Django
- Electron
- Next.js
- React
- Ruby on Rails
- Tailwind CSS
Web Technologies
- Web Components
- Web Workers
- WebAssembly
- WebGL
- WebRTC
- WebSocket
Web Testing
- AVA
- Jest
- Nightwatch.js
- Playwright
- Sinon
- Testing Library
Languages
Languages I use in the rare occasions I'm interacting with humans rather than computers (or looking online for answers); with varying degrees of success.
Language | Speak | Write | Read |
---|---|---|---|
Italian (native) | C2 | C2 | C2 |
English | C1 | C1 | C2 |
German | B1 | B2 | B2 |
French | A2 | A2 | B2 |
Japanese | A1 | A2 | B1 |
Levels as defined by the CEFR.