Milan Lysoněk is a Senior Software Engineer in Test with a decade of experience focused on backend development, Linux systems, and security-minded test automation. He has progressed through multiple engineering roles at Red Hat and now works on Windows endpoint identity and validation at SentinelOne, blending deep QA expertise with practical development skills. An active open-source contributor, Milan has improved memory safety in the NIST-certified OpenSCAP toolkit and authored exploit tests for TLS/SSL weaknesses in the tlsfuzzer project, reflecting hands-on vulnerability research. He also contributes security automation and compliance tests to ComplianceAsCode, frequently writing shell and Ansible-based checks that bridge hardening guidance and executable tests. Based in Zlín, Czechia, Milan pairs a Master’s in Network and System Administration with a pragmatic focus on preventing memory leaks and hardening cryptographic protocol implementations.
10 years of coding experience
7 years of employment as a software developer
Master's degree, Network and System Administration/Administrator, Master's degree, Network and System Administration/Administrator at Brno University of Technology
Security automation content in SCAP, Bash, Ansible, and other formats
Role in this project:
Security Engineer & Test Automation Engineer
Contributions:171 reviews, 385 commits, 278 PRs in 4 years 9 months
Contributions summary:Milan's contributions center around enhancing security automation content by adding new test scenarios for various rules within the `complianceascode/content` repository. The primary focus is on testing and validating configurations related to security hardening, particularly within the auditing domain. The user frequently modifies shell scripts to test security settings, including adding tests to check compliance with security profiles.
Contributions:29 commits, 13 PRs, 3 pushes in 1 year 1 month
Contributions summary:Milan primarily focused on improving code quality and preventing memory leaks within the OpenSCAP project. Their contributions involved identifying and fixing memory leaks by adding missing `free()` calls in several C source files, including those related to CVRF parsing, OVAL probes, and RDS components. They also addressed duplicate string duplication issues and improved code correctness by moving code blocks to maintain memory safety.
nistdata-streamxccdfovalsecurity
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Milan Lysoněk - Senior Software Engineer In Test at SentinelOne