You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
César López OlivaCL

César López Oliva

Junior Penetration Tester|Full stack developer C#

€150/day
Madrid, ES
0-2 years
Ciberseguridad
Hacking ético
Pentester
Hardworking
Not giving up

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About César

I am a Junior Pentester and DevSecOps Specialist, with experience in full stack development and eJPT certification, and working on OSCP+.

I help companies and developers detect vulnerabilities and strengthen the security of their web applications, infrastructures, and CI/CD pipelines.

🔍 Main Services:

Web security audits (OWASP Top 10)

Server and network hardening (Linux, Fortinet/Palo Alto firewalls)

Pentesting in development and pre-production environments

Integration of security controls in the SDLC

Automation of security tasks with Python and Bash

🧠 My approach combines a developer's vision and an offensive mindset, allowing me to detect and explain vulnerabilities from code to infrastructure.

I work with passion, detail, and constant communication. You can see examples of my reports on my GitHub:
👉
📍 Languages: Spanish and English (C1), French (A1)*learning*
💻 Modality: Remote / Hybrid
🚀 Objective: to help companies improve their security posture and grow with them.

  • Spanish

    Native or bilingual

  • English

    Fluent

  • French

    Basic

Can work on-site
Madrid (up to 50km)

Experience

  • Grupo Backup
    DevSecOps Engineer / Full Stack Developer
    October 2024 - Today (1 year and 8 months)
    • Conduct web security audits (WordPress, internal applications) identifying OWASP Top 10 vulnerabilities (SQLi, XSS).
    • Automation of hardening and monitoring of Linux servers with Python and Bash, reducing minor security incidents by 25% in the first quarter after implementation.
    • Integration of security controls in the SDLC and CI/CD deployments.
    • Collection and application of IOCs (Indicators of Compromise) to improve rules and signatures in monitoring systems.
    C# ASP.NET Core Microsoft Azure DevSecOps Automatización de procesos
  • Luanju Climatizaciones
    Software Developer & Security Specialist
    July 2023 - October 2024 (1 year and 3 months)
    • Management of security and hardening of WordPress environments: updates, security plugins, and reduction of attack surface.
    • Collaboration in configuring Fortinet firewall policies to restrict unnecessary access to internal services.
    • Development in C# with a focus on security from design.
    Firewalls IT Strategy IT support Wordpress PHP
  • Fontventa S.L.
    Software Development Internship
    March 2023 - June 2023 (3 months)
    Participation in .NET projects using Visual Basic, applying secure development practices under Agile.
    ASP.NET Core Hardworking Visual Basic ASP.NET MVC Next.js

Recommendations

Be the first to recommend César

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Certified Junior Penetration Tester (eJPT)
    eLearnSecurity (INE)
    2025
    Certified Junior Penetration Tester (eJPT)
  • OSCP (Offensive Security Certified Professional)
    2025
    OSCP (Offensive Security Certified Professional)
Check out César's education

Certifications

Skill set

DevSecOps
Linux Hardening / Automatización con Python
Auditoría de Seguridad Web (OWASP Top 10)
Hacking Ético / Pentesting
GRC (Governance, Risk and Compliance)
Risk and Vulnerability Assessment
Security Awareness Training

Categories