You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Julian SalasJS

Julian Salas

Application Security | SDLC | Pentesting | OWASP

€300/day
Barcelona, ES
8-15 years
Cybersecurity
OWASP
OSCP
PenTest
SDLC

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Julian

🔐 Cybersecurity and Pentesting Expert | OSCP | CEH | OWASP | DevSecOps

With over 10 years of experience in application security, I specialize in pentesting, secure code review, DevSecOps, and security integration into the development cycle (SDLC). I have worked with leading companies managing vulnerabilities, automating security processes (SAST, DAST, SCA), and conducting penetration tests.

💻 Key skills:
✅ Ethical Hacking and Pentesting (OWASP Top 10)
✅ Security in CI/CD (SCA, SAST, DAST)
✅ Automation and scripting in Python
✅ Secure code review
✅ Bug Bounty program management

🔍 Tools: Burp Suite, Metasploit, Nessus, Nmap, Wireshark, SQLMap, AWS, Azure, Terraform, GitLab, and BitBucket.

🚀 If you are looking to strengthen the security of your developments, detect vulnerabilities before attackers do, or implement an efficient DevSecOps strategy, contact me!

  • English

    Native or bilingual

  • Spanish

    Conversational

  • Italian

    Conversational

Remote only
Primarily works remotely

Experience

  • PayRetailers
    Senior Application Security Engineer
    February 2024 - Today (2 years and 4 months)
    Barcelona, Spain
    - Implement application security automation by integrating SCA, SAST, and DAST tools into the CI/CD pipeline.
    - Conduct security design and code reviews.
    - Identify, triage, resolve, and manage security vulnerabilities.
    - Manage penetration test activities.
    - Bug bounty program
    - Azure WAF, EntraID.
    SDLC Cybersecurity OSCP Pentesting Code Review
  • Wallbox Chargers
    Senior Application Security Engineer
    June 2021 - March 2024 (2 years and 9 months)
    Barcelona, Spain

    - Implement application security automation by integrating SCA, SAST, and DAST tools into the CI/CD pipeline.
    - Conduct security design and code reviews.
    - Identify, triage, resolve, and manage security vulnerabilities.
    - Manage penetration test activities.
    - Bug Bounty program management.
    - Technologies: CloudFlare, Terraform, AWS, Gitlab, Jira, DataDog, NewRelic.
  • S21sec
    Security Auditor / Pentester
    April 2017 - June 2021 (4 years and 2 months)
    Barcelona, Spain
    Ethical Hacking, Python Scripting, Internal and External Penetration Test. OWASP TOP 10, Web Hacking. Source Code review, Waf Configuration.
Check out Julian's experience

Recommendations

Be the first to recommend Julian

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Master's degree, Information Security
    Universidad Camilo José Cela
    2018
    Master's degree, Information Security
  • Web Application Development Technician, Computing
    Universidad Nacional del Comahue
    2010
    Web Application Development Technician, Computing
Check out Julian's education

Certifications

  • Offensive Security Certified Professional (OSCP)
    Offensive Security
    2018
  • Certified Ethical Hacker (CEH)
    eccouncil
    2015

Skill set

Cloudflare
Penetration Testing
Risk and Vulnerability Assessment
Pentesting
Code Review

Categories