Summary
Ashkan Rafiee is a Security Team Lead with 8+ years embedding pragmatic security into delivery pipelines across telecom-scale environments. He’s led a five-person AppSec team and partnered with ~120 product/platform teams to implement SSDLC, CI/CD gates, and OWASP-aligned secure design—reducing system vulnerabilities by 40% and high‑risk incidents by 50%. Hands-on engineering background (Django, PHP, Python automation) informs his tool-agnostic approach to shift-left controls like SAST/SCA/DAST, secrets scanning, SBOMs, and unattended base-image patching. He built automated remediation workflows that handle ~300 vulns/week and a centralized AV gateway scanning ~500k files/day, catching ~95% of known malware before ingress. Known for measurable outcomes and developer-friendly guardrails, he’s trained 500+ engineers and translates technical findings into business risk (≈$500k averted) to drive prioritized remediation.
8 years of coding experience
2 years of employment as a software developer
Bachelor's degree, Computer Software Engineering, Bachelor's degree, Computer Software Engineering at Azad University (IAU)
English, Persian