Marcos Fernandez
About Marcos Fernandez
Marcos Fernandez is an Application Security Engineer with expertise in threat modeling and cloud security. He currently works at Scale AI and holds multiple certifications in penetration testing and web application security.
Work at ScaleAI
Marcos Fernandez has been employed at Scale AI as an Application Security Engineer since 2023. In this role, he focuses on enhancing the security posture of applications by implementing threat modeling techniques. His responsibilities include identifying and communicating potential threats, as well as recommending mitigations to protect valuable assets within the organization.
Previous Experience in Security Engineering
Prior to his current position, Marcos worked as a Security Engineer at TrustedSite from 2019 to 2021. During his tenure in the San Francisco Bay Area, he contributed to the development and implementation of security measures to protect digital assets. He also served as an Application Security Engineer at Redfin from 2021 to 2023, where he further honed his skills in application security.
Education and Expertise
Marcos holds a Bachelor of Science degree in Computer Science from the University of San Francisco, where he studied from 2015 to 2018. His educational background has equipped him with a strong foundation in computer science principles, which he applies in his professional work. He has expertise in cloud services and security, focusing on the protection of cloud-based applications and infrastructure.
Certifications in Security
Marcos Fernandez holds two notable certifications: the Offensive Security Certified Professional (OSCP) and the Offensive Security Web Expert (OSWE). The OSCP certification demonstrates his proficiency in penetration testing and ethical hacking, while the OSWE certification showcases his advanced skills in web application security. These certifications reflect his commitment to maintaining high standards in security practices.
Vulnerability Remediation Guidance
In his roles, Marcos provides vulnerability remediation guidance to teams, helping them understand and address security vulnerabilities in applications. His approach involves educating teams on best practices for security and ensuring that vulnerabilities are effectively mitigated to enhance overall application security.