Lorenzo Wölckner

Fullstack Software Engineer
& Cybersecurity Expert

Also known as Stack Overflow Copy/Paste Developer and Chief Insecurity Officer.

Resourceful software developer and reliable information security professional with deep, broad knowledge of the field and an analytical and methodical mind. With 8+ years of extensive experience working both independently and with multiple diverse teams writing clean and efficient code across the entire stack, diligently managing on-premises/cloud infrastructure servers and services, designing and maintaining innovative systems and libraries, creating intuitive and polished products, capable of handling and integrating all aspects of cybersecurity and skillfully approach any challenges.

Always looking for new opportunities, especially to further expand this list of important keywords and adjectives.

Work Experience

Relevant employment history, with each job bringing its new challenges, increased responsibilities, project variety, insight opportunities, rewards and achievements. I always proactively expand my knowledge as necessary and strive to never stop learning; but not from my mistakes if possible.

  1. Staff Software Engineer &
    Information Systems Security Officer

    ScanditZürich, Switzerland

    – present (2 year; total: ~7 years)

    Back-end software developer, system administrator and front-end engineer, covering the full stack. In charge of the entire organization's infrastructure, network and data security. Development, upgrade, maintenance and monitoring of servers, databases and cloud infrastructure. Integration of APIs and marketing instruments. Creation of new functionalities dealing with big data analysis, aggregation and display. Coding of internal and external management tools, web applications and UIs. Complete planning, design, implementation and support of company's main web library product. Responsible for research, documentation, management, implementation and enforcement of company's information security systems, practices and rules. Organization of several team activities.

    Main technologies: JavaScript, TypeScript, Python, Ruby/Rails, HTML, CSS/SCSS, C/C++, WebAssembly, MySQL, PostgreSQL, ClickHouse, Redis, Docker, Kubernetes, AWS, Ansible, Kafka, GitLab, Jira, Confluence, Sentry, WebRTC, WebGL

  2. Senior Software Engineer &
    Information Systems Security Officer

    ScanditZürich, Switzerland

    (1 year)

  3. Senior Software Engineer

    ScanditZürich, Switzerland

    (1 year, 5 months)

  4. Software Engineer

    ScanditZürich, Switzerland

    (4 years)

  5. Software Engineer (contractor)

    Presspectrum – Zürich, Switzerland

    (2 months)

    Coding of software to be run on a distributed network of machines. Implementation of programs responsible for remote jobs management and intercommunication between different web APIs; integration and utilization of existing analysis software performing natural language processing and machine learning for the purpose of online messages' moderation.

    Main technologies: Java, RabbitMQ, MySQL

  6. Scientific Assistant (contractor)

    Institute of Information SecurityETH
    Zürich, Switzerland

    (2 months)

    Development of software for the paper Quantifying Web Search Privacy. Optimization, improvement and restructuring of code; creation of a program utilizing machine learning algorithms to learn the linkability between user queries and evaluate obfuscation mechanisms. Parallelization and deployment of the software on the national supercomputing center.

    Main technologies: Python, C++

  7. Student Assistant

    Institute of Computational ScienceUSI
    Lugano, Switzerland

    (1 year)

    Programming of various tools related to physical simulations. Work in a diverse developer team, creation and integration of new functionalities, maintenance and documentation of new and old code; interdisciplinary application of mathematics, physics and CS techniques.

    Main technologies: C++

Education

Academic path that brought me broad theoretical knowledge and practical experience in different computer science fields, and led to the obtainment of degrees certifying that the programming adventures in my youth were a good time investment.

  1. Master of Science ETH in Computer Science: Information Security

    Eidgenössische Technische Hochschule (ETH)
    Zürich, Switzerland

    Courses GPA: 5.53 - Thesis: 4.75 - Final GPA: 5.31 (max. 6)

    Master Thesis - under Prof. Dr. Srdjan Capkun:

    Bitcoin versus Bitshark
    Estimating Privacy via Collection and Combination of Information

    Main technologies: C++, Java, Python, MongoDB, Xen, VMware

    Transcript of Records Master Thesis

  2. Bachelor of Science in Informatics

    Università della Svizzera Italiana (USI)
    Lugano, Switzerland

    Courses GPA: 8.99 - Thesis: 10 - Final GPA: 9.09 (max. 10)
    summa cum laude

    Bachelor Thesis - under Prof. Dr. Marc Langheinrich:

    Secure and Compact SMS (SC-SMS)
    Android Application for Advanced Short Messages Features

    Main technologies: Java, Android, BouncyCastle

    Transcript of Records Bachelor Thesis

Skills

Work- and personality-related attributes and capabilities that define what I do best and how I approach projects and challenges; listed trying to keep SEO and boasting to a minimum.

Fluent Polyglot Coder

Proficiently programming in JavaScript, TypeScript, Python, Ruby, HTML, CSS/SCSS and capable of writing code in C/C++, Bash and Java as well; quickly able to pick up and learn new languages.

Flexible Platform Agnostic

At ease working with Windows, macOS and Linux (Ubuntu) computers, administering Linux (Debian) servers and testing with Android and iOS devices together with all main browsers.

All-round Fullstack Engineer

Experience with low-level optimization, databases, containers, back-/front-end frameworks, API creation, web app design, deployment infrastructures and more across all the stack.

Qualified Security Expert

In-depth academic cybersecurity education, with theoretical and practical work experience in secure software development and company-level information security and risk management.

Reliable Server Manager

Competent in the administration and monitoring of on-premises and virtual Linux servers (IaaS); including virtualization, networking, deployment, automation and hardening skills.

Diligent Cloud Administrator

Skilled in the management of multiple AWS systems and services; handling provisioning, scaling, networking, maintenance, troubleshooting, access management, monitoring and more.

Multifaceted Architect

Able to handle all aspects of planning, design, development, testing, deployment and maintenance for entire new systems and projects from scratch; proactively, either independently or as part of a team.

Systematic Multitasker

Apt at balancing conflicting priorities, estimating efforts, planning and dynamically switching between different responsibilities and tasks to deliver timely results to different stakeholders.

Meticulous Developer

Great care to detail in all work aspects; coding, documenting, communicating, managing and reporting work in the most polished way, while always taking efficiency and time into consideration.

Passionate Explorer

Ever-present enthusiasm and will to discover and learn about new innovative tools that can help solve challenges, present new opportunities and approaches and broaden my skill set.

Sophisticated Designer

Drafting and implementing intuitive, unified, beautiful user interfaces; handling different styles, unified designs, balancing complexity and simplicity to deliver enjoyable user experiences.

Amiable Communicator

Friendly and cooperative in chats, emails and video conferences; always with a positive and effective attitude, ensuring discussions with any person, group or department are pleasant and useful.

Technologies

Main tools, libraries, systems and services that I learned over time and feel knowledgeable about and confident to use in different scenarios; for work purposes or personal, more or less useful, projects.

AWS Compute

  • EC2
  • ECR
  • ECS
  • EKS
  • Lambda

AWS Monitoring

  • CloudTrail
  • CloudWatch
  • GuardDuty
  • WAF

AWS Network

  • CloudFront
  • ELB
  • Route 53
  • VPC

AWS Protection

  • ACM
  • IAM
  • KMS
  • Secrets Manager

AWS Storage

  • Backup
  • EBS
  • RDS
  • S3

Collaboration

  • Confluence
  • Google Workspace
  • Jira
  • Slack
  • Zoom

Containers & IaC

  • Ansible
  • Docker
  • Helm
  • Kubernetes
  • Terraform

Databases

  • ClickHouse
  • MongoDB
  • MySQL
  • PostgreSQL
  • Redis

SCM & CI/CD

  • Git
  • GitHub
  • GitLab
  • Jenkins

Security Guidelines

  • ISMS
  • ISO 27001
  • NIST Standards
  • OWASP Standards
  • Secure SDLC

Security Software

  • 1Password
  • Falco
  • Nessus
  • OPNsense
  • OSSEC

Monitoring

  • Grafana
  • Prometheus
  • Sentry
  • TICK

Web Development

  • Babel
  • esbuild
  • Parcel
  • PostCSS
  • Rollup
  • Webpack

Web Frameworks

  • Django
  • Electron
  • Next.js
  • React
  • Ruby on Rails
  • Tailwind CSS

Web Technologies

  • Web Components
  • Web Workers
  • WebAssembly
  • WebGL
  • WebRTC
  • WebSocket

Web Testing

  • AVA
  • Jest
  • Nightwatch.js
  • Playwright
  • Sinon
  • Testing Library

Languages

Languages I use in the rare occasions I'm interacting with humans rather than computers (or looking online for answers); with varying degrees of success.

Language Speak Write Read
Italian (native) C2 C2 C2
English C1 C1 C2
German B1 B2 B2
French A2 A2 B2
Japanese A1 A2 B1

Levels as defined by the CEFR.

Contact Me

Interested in who I am and what I do? Feel free to contact me via the following form or send me a message at the given email address; I'll do my best to get back to you as soon as I can.

lorenzowoelckner

Arianestrasse 9
8052 Zürich
Switzerland