You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Joao LimaJL

Joao Lima

Software developer and IT Auditor

€109/day
Brasília, BR
3-7 years

Average response time: 1 hour

About Joao

I help companies build secure, scalable, and maintainable web applications using Python, FastAPI, Django, Java, Spring, React, Next.js, JavaScript, PostgreSQL, REST APIs, Docker, and cloud-ready architectures.

I am a Python Full-Stack Developer with a strong background in IT security, penetration testing, and security auditing. This means I can support projects not only as a developer, but also as someone who understands application security, secure authentication, access control, API security, OWASP Top 10 risks, vulnerability assessment, and secure software development practices.

I usually work on backend development, API integrations, internal tools, dashboards, SaaS MVPs, automation workflows, authentication systems, database design, and secure web applications. I can also help review existing systems, identify security weaknesses, document risks, and provide practical remediation guidance.

My experience includes working with financial institutions, legal technology projects, compliance-driven environments, and business applications. I am comfortable collaborating with developers, DevOps teams, and business stakeholders to deliver practical solutions that are functional, secure, and aligned with real business needs.

I can help with:

Full-Stack Development: Python, FastAPI, Django, Java, Spring, React, Next.js, JavaScript, REST APIs, PostgreSQL, SQL, Docker, Git, GitHub Actions, dashboards, internal tools, and SaaS MVPs.

Secure Development: secure authentication, JWT, role-based access control, input validation, audit logs, secure API design, secrets management, and secure coding practices.

Security Assessments: web application security reviews, API security testing, vulnerability assessments, penetration testing support, infrastructure review, OWASP Top 10 analysis, and remediation guidance.

My goal is to deliver software that is not only well-built, but also secure, maintainable, and ready to support business growth.
  • English

    Native or bilingual

  • Portuguese

    Native or bilingual

Remote only
Primarily works remotely

Experience

  • Louflin Law
    Tech Lead / Developer & Security Auditor
    LEGAL
    February 2026 - Today (6 months)
    Orange, United States
    • Lead the integration of a U.S. e‑filing platform, defining a Next.js frontend, Python/FastAPI
    backend, PostgreSQL database, and Docker‑based local development workflow.
    • Designed authentication and role‑based access models, user and firm data models, API
    contracts, and environment configuration, ensuring secure certificate‑signing integration with
    Tyler Technologies’ EFM APIs.
    • Directed the architecture for a Java/Spring Boot service to handle SOAP‑based integrations
    and collaborated closely with developers to deliver secure, scalable solutions.
    • Translated unclear business requirements into actionable development tasks, organized
    backlog items, and mentored the team on secure coding practices, CI/CD pipelines, and
    documentation.
    • Facilitated distributed team collaboration and alignment with legal and business stakeholders
    while ensuring compliance with ISO/IEC 27001 security standards
    Next.js Java Python Docker API
  • Stefanini
    Intern
    PUBLIC SAFETY
    October 2024 - February 2025 (4 months)
    Brasília, Brazil
    Involved in the daily maintenance and continuous improvement of the SIPROQUIM 2 system of the Brazilian Federal Police, supporting corrective and evolutionary development activities in a Java-based environment. Responsibilities included performing functional and regression tests, assisting in the development and adjustment of Java features, analyzing reported issues, validating bug fixes, and supporting the prioritization and management of technical demands.

    Worked closely with development teams and stakeholders to understand business requirements, document system behaviors, reproduce incidents, and ensure that delivered changes met functional expectations. Also contributed to quality assurance activities by testing new releases, identifying inconsistencies, reporting defects, and supporting the stabilization of the system in production and homologation environments.

    This experience strengthened my skills in Java application maintenance, software testing, bug analysis, requirements understanding, demand management, system support, and collaboration in public-sector technology projects.
    Scrum Java FastAPI React.js Spring boot
  • CNAC
    IT Auditor
    CONSULTING AND AUDITS
    February 2025 - Today (1 year and 6 months)
    Brasília, Brazil
    • • Conduct IT audit reviews to check the strength of systems, processes, and controls.
    • • Assess information security risks and help spot gaps in access controls and system settings.
    • • Review web and application setups to identify weak points that could lead to security issues.
    • • Document findings in clear reports and offer simple, practical steps for improvement.
    • • Support compliance checks to ensure teams follow internal rules and industry standards.
    Python IT-Security Cybersecurity Audit Risk Management

Recommendations

Be the first to recommend Joao

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Associate Degree in Systems Analysis and Development
    UNICEUB
    2025
    Associate Degree in Systems Analysis and Development
  • Python Programming with Object-Oriented Design
    Alura
    Python Programming with Object-Oriented Design

Certifications

Skill set

Categories