Eric Yuan
Senior Software Engineer
Experience
Senior Software Engineer
AppDrawn Software Development
- Developed secure, cloud-native full stack applications using .NET, React, and Azure, embedding encryption, authentication, and automated security scanning across CI/CD.
- Designed AI model testing and monitoring pipelines using Python and Docker to identify vulnerabilities and assess model consistency and ethical compliance.
- Built automated test harnesses for API and data validation, improving accuracy and reproducibility of AI system evaluations.
- Implemented container-level hardening and runtime scanning using Docker Bench and Aqua, reducing attack surface by 40%.
- Collaborated with AI teams to conduct red-teaming of LLMs and RAG pipelines, simulating prompt injection and data exfiltration attacks.
- Created IaC modules with Terraform/Bicep to deploy secure multi-tier architectures in Azure for model hosting and testing environments.
- Led internal AI safety audits, producing actionable reports on data privacy, adversarial risks, and compliance alignment.
- Automated log analysis and vulnerability reporting using Python and Bash scripting, enabling proactive threat detection.
- Provided mentoring and security training to developers on OWASP Top 10 for LLMs and secure software lifecycle principles.
Software Engineer
Devlane
- Built CI/CD pipelines for AI evaluation workflows, integrating GitHub Actions and Docker containers for reproducible test environments.
- Conducted penetration tests on APIs and model endpoints, identifying key exposure points in multi-service deployments.
- Integrated automated unit, fuzz, and performance testing frameworks into AI microservices.
- Developed Python-based scripts for data validation, prompt testing, and simulated model adversarial inputs.
- Improved model inference pipelines by optimizing container orchestration and caching mechanisms, increasing efficiency by 25%.
- Supported DevSecOps initiatives by embedding SAST and DAST tools into continuous delivery workflows.
Full Stack Developer
Code Runners
- Built secure backend APIs and frontends using .NET Core and Angular with multi-factor authentication and encryption.
- Implemented role-based access control (RBAC) and secure session management for enterprise applications.
- Deployed containerized services with Docker and Azure App Services, ensuring security compliance and scalability.
- Automated vulnerability scanning and integrated Snyk and SonarQube checks into build pipelines.
- Assisted in threat modeling and code reviews, ensuring each release adhered to security best practices.
- Delivered detailed documentation for secure configuration, deployment, and patch management procedures.
Junior Full Stack Developer
KMS Technology
- Supported development of full stack web applications using C#, ASP.NET, and Angular, focusing on secure design and data protection.
- Wrote PowerShell and Bash scripts to automate application deployment and log analysis tasks.
- Implemented input validation, sanitization, and encryption to reduce injection and privilege escalation risks.
- Participated in Agile sprints with emphasis on test coverage, CI/CD optimization, and documentation accuracy.
- Conducted basic security testing on internal web apps using Burp Suite and OWASP ZAP.
- Assisted senior engineers in container setup and monitoring on AWS and Azure test environments.
Summary
Innovative AI and full stack engineer with 8+ years of experience in software engineering, cybersecurity, and automation, combining expertise in Python, .NET, AI/ML security, and DevOps pipelines to build, test, and harden intelligent systems. Skilled at red-teaming AI models, designing secure coding frameworks, and developing CI/CD-driven test automation for cloud-native environments. Passionate about advancing GenAI reliability, model safety, and reasoning performance through rigorous testing and creative adversarial evaluation.
Skills
Programming & Scripting: Python, C#, Typescript, Javascript, Bash, Powershell, Sql, Html5, Css3
Ai / Ml & Red-teaming: Llm Evaluation, Prompt Injection Testing, Rag Pipelines, Ai Agent Security, Garak, Pyrit, Adversarial Testing Frameworks, Ai Safety Research
Full Stack Development: .Net Core, Asp.net, Blazor, React, Angular, Flask, Restful Apis, Jwt, Oauth2, Secure Authentication, Microservices Architecture, Server-side Rendering (Ssr)
Cloud & Devops / Automation: Microsoft Azure (Functions, Event Hubs, Event Grids, App Services, Cosmosdb, Storage, Aks), Aws (Ec2, S3, Lambda, Rds), Docker, Kubernetes, Helm, Argocd, Ci/cd Pipelines (Azure Devops, Github Actions, Jenkins), Infrastructure As Code (Terraform, Bicep)
Cybersecurity & Penetration Testing: Owasp Top 10 For Web And Llms, Network Security, Application Security, Infrastructure Hardening, Exploit Development, Vulnerability Scanning, Penetration Testing, Secure Coding, Encryption, Rbac, Privilege Escalation
Data & Databases: Cosmosdb, Sql Server, Oracle, Postgresql, Data Modeling, Performance Optimization, Secure Data Transfer, Api Integration With Pim/erp/crm Systems
Monitoring & Observability: Sentry, Datadog, Application Logging, Real-time Monitoring, Automated Alerts, Telemetry Collection
Tools & Collaboration: Git, Github, Jira, Confluence, Vs Code, Visual Studio, Postman, Swagger, Ci/cd Automation Tools, Docker Compose, Helm Charts
Languages
Education
University of Liverpool
Master of Computer Science · Computer Science · Liverpool, United Kingdom
Dai Nam University
Bachelor of Computer Science · Computer Science · Hanoi, Viet Nam
Certifications & licenses
Microsoft Certified Azure Security Engineer Associate (AZ-500)
Similar Freelancers
Discover other experts with similar qualifications and experience
CTO/CISO
Senior Full Stack Engineer
Staff Software Engineer - Infrastructure
Cloud Architect & Lead Developer
Kubernetes Expert | Google Cloud Platform Engineer
Cybersecurity & Ethical Hacking Program
Senior Software Engineer
AR/VR/XR Architect
Principal Product Security Engineer
Ansible Automation, Windows Third Level Support
DevOps Engineer in the DevOps Team
Azure Solution Architect
Senior Software Architect
Senior Software Engineer
Security Expert
Senior Product Security Engineer
C# Fullstack Developer / Scrum Master / Product Owner Cloud Services / Product Owner Infrastructure & Core Services / Head of
Senior Full Stack Engineer
Azure Architect
Senior Full-Stack Engineer
Freelance DevOps Engineer
Senior Developer
Associate Partner - Information Security Consulting
Solution Architect / Project Manager
Senior Security Devops Engineer
Senior MLOps, DevOps Engineer
Senior Developer
Software Developer
Lead Developer
