You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Jose J. LaraJJ

Jose J. Lara

Cybersecurity, AI and Automation

€250/day
Madrid, ES
3-7 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Jose J.

I help companies and professionals improve the security of their applications, infrastructure, and digital processes by combining offensive cybersecurity, web and infrastructure pentesting, automation, API integration, applied AI, backend development, and data analysis.

I can help you in three main areas:

**1. Cybersecurity and pentesting**: attack surface review, web and infrastructure pentesting with Burp Suite, SQLMap and other tools, vulnerability validation, evidence, technical reports, hardening, exposure analysis, vulnerability management, and mitigations.

**2. Automation and applied AI**: development of scripts and tools adapted to the project's language and stack, with Python as the main specialty. I work with APIs, Excel/CSV/PDF, dashboards, bots, legal scraping, reporting, data processing, internal assistants, integrations between tools, and task automation.

**3. Technical tooling and advanced analysis**: backend development, internal tools, data pipelines, financial analysis, backtesting, walk-forward validation, risk metrics, commission/slippage modeling, applied machine learning, and algorithmic trading.

I developed Web Ninja, my own framework for bug bounty and security research with a web dashboard, database, integration with Burp Suite via Java extension, subdomain modules, scanning, alerts, and evidence collection.

I also developed an algorithmic trading bot in Python with real-time data, exchange connection, backtesting, walk-forward validation, execution costs, spread, slippage, commissions, risk metrics, structured logs, and comparison between simulation and real execution.

I analyze the problem, simplify processes, and deliver maintainable and documented solutions.

Available for remote projects in Spain and Europe, with occasional in-person meetings in Madrid if the project warrants it.
  • Spanish

    Native or bilingual

  • English

    Conversational

Remote only
Primarily works remotely

Experience

  • Independent projects
    Python Automation & Security Tooling Developer
    CONSULTING AND AUDITS
    September 2024 - Today (1 year and 11 months)
    Madrid, Spain
    • Built custom Python automation tools for APIs, data processing, dashboards and internal workflows.
    • Developed Web Ninja, a modular bug bounty framework with Burp Suite integration, database backend and web dashboard.
    • Built crypto market data, backtesting and walk-forward validation infrastructure with risk and execution cost modelling.
    Python Automation API Integration Data Processing Cybersecurity
  • Bug Bounty Hunter | Python Automation & Cybersecurity
    Freelancer
    CONSULTING AND AUDITS
    September 2024 - Today (1 year and 11 months)
    Madrid, Spain
    Web application security research focused on authorized bug bounty programs and public scopes.

    I perform manual testing, reconnaissance, vulnerability validation and clear technical reporting.

    My work includes analysing authentication flows, access control issues, exposed attack surface, business logic weaknesses and misconfigurations.

    I also develop custom automation and tooling for recon, subdomain discovery, endpoint collection, evidence management and Burp Suite-assisted testing.
    Pentesting Burp Suite Web Security Python Bug Bounty
  • Wise Security Global (via Hays)
    Ethical Hacker
    CONSULTING AND AUDITS
    January 2023 - August 2023 (7 months)
    Madrid, Spain
    Manual web and infrastructure pentesting across real corporate environments, including banking applications under continuous development.

    I work on vulnerability discovery, exploitation, impact analysis and remediation-focused reporting.

    My experience includes web application testing, network and service review, Active Directory-related security checks, reverse engineering with GDB and Ghidra, and practical communication with technical teams to help validate and fix security issues.
    Pentesting Cybersecurity Reverse Engineering Burp Suite Ghidra

Recommendations

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master's Specialist in Computer and Information Security
    University of Castilla-La Mancha
    2018
    Master's Specialist in Computer and Information Security
  • Certified Ethical Hacker (CEH)
    EC-Council
    2018
    Certified Ethical Hacker (CEH)

Certifications

  • Certified Ethical Hacker
    EC-Council
    2019
    https://aspen.eccouncil.org/Verify
    Ethical Hacking Burp Suite Hacking Linux SQLMap Network Security Cybersecurity Reverse Engineering Pentesting Ethical Hacking

Skill set

Categories