0xshilage

Cybersecurity & ML Engineer

SKILLS EXPERIENCE

Cybersecurity & Machine Learning Skillset

ADVANCED SOFTWARE PROTECTION & OBFUSCATION

80%

WHITE-BOX CRYPTOGRAPHY

85%

THREAT MODELING

100%

DIGITAL FORENSICS

70%

INCIDENT RESPONSE

75%

CLOUD AND DATABASE SECURITY ARCHITECTURE

90%

ADVERSARIAL ML & ATTACK COUNTERMEASURES

75%

ML FOR ANTI-REVERSE ENGINEERING & ANTI-TAMPERING

60%

Work Experience

I am 0xShilage, a Cybersecurity and Machine Learning Engineer based in Brazil. My interest in cybersecurity began in 2014, at the age of 11, initially sparked by curiosity through video games. Over the years, this passion led me to develop an early and well-defined career in the field. In mid-2022, my growing interest in data and automation prompted me to further deepen my expertise in Machine Learning. I also have always held a deep passion for geopolitics, warfare, and automation. Here you'll find a collection of my work experience and specific projects within the cybersecurity and AI industry.

EDUCATION

I am actively pursuing advanced formal education to complement my hands-on professional experience in cybersecurity and machine learning. I am enrolled remotely in a Bachelor of Science in Cybersecurity Engineering at an accredited American university. Concurrently, I am completing an Associate of Science in Data Science through another American university (also fully remote), deepening my proficiency in data modeling, statistical analysis, automation, and machine learning applications.

To further validate my offensive security capabilities, I hold three OffSec™ certifications: OSCP (Offensive Security Certified Professional), OSED (Offensive Security Exploit Developer), and OSWP (OffSec Wireless Professional), demonstrating advanced hands-on skills in penetration testing, Windows user-mode exploit development, and wireless network attacks. Additionally, I am certified as a Certified Counterintelligence Threat Analyst (CCTA) by the McAfee Institute, enhancing my expertise in cyber threat intelligence and counterintelligence methodologies.

Cybersecurity Engineering

Bachelor's. Enrolled since 2023 and expected to finish early 2027.

Data Science

Associate's. Enrolled since 2025 and expected to finish late 2027.

OffSec™

OSCP (PEN-200), OSWP (PEN-210) and OSED (EXP-301)

McAfee Institute

Certified Counterintelligence Threat Analyst (CCTA)

INDUSTRY

Oracle

2022 - 2023

As a Cybersecurity Engineer at Oracle, I focused on securing cloud infrastructure, enterprise applications, and sensitive data environments. Responsibilities included vulnerability management, threat modeling, secure configuration of Oracle Cloud services (OCI), identity and access management (IAM), encryption implementation, incident response, and compliance with global standards (e.g., SOC, ISO, FedRAMP). Contributed to hardening multi-tenant cloud platforms and protecting customer workloads in high-security, regulated sectors.

Irdeto

2021 - 2022

Cybersecurity Engineer at Irdeto's Cloakware division, implementing advanced software protections: code obfuscation, white-box cryptography, anti-tampering, anti-reverse engineering, and active integrity checks. Integrated protections into secure build pipelines for mobile, IoT, and connected devices in hostile environments.

Military-Industrial Complex

2023 - Present

In my current position as a Cybersecurity Engineer within a leading U.S. defense contractor’s cyber division, I contribute to the design, implementation, and sustainment of advanced cyber defense capabilities for a multitude of systems. My responsibilities include developing secure architectures, conducting threat modeling and risk assessments, hardening software and network environments, and integrating defensive controls to protect against sophisticated nation-state and advanced persistent threats. I collaborate closely with cross-functional teams to ensure resilience in high-assurance, classified, and tactical environments.

I specialize in areas such as endpoint protection, behavioral analytics, secure software supply chain practices, incident response automation, and compliance with stringent DoD standards (e.g., RMF, STIGs, Zero Trust principles). My work supports the protection of strategic assets, enabling secure operations in contested domains while adapting to evolving adversary tactics. This role allows me to apply deep technical expertise in real-world, high-stakes scenarios, bridging offensive knowledge with defensive engineering to deliver robust cyber resilience.

CONTACT ME

Thank you for visiting my resume. If you'd like to get in touch, feel free to fill the form aside.