Christiaan de Wet

Security Engineer | Researcher | Developer

I built my career foundation on system administration, and later gaining broad knowledge in Cyber Security, alongside certifications and qualifications which practically validate my 18 years of experience. While navigating life through H, J, K, and L, I enjoy to tinker and constantly explore all sorts of technologies in my spare time, and I find great satisfaction in writing code and developing applications.

christiaan.dewet@gmail.com
+44 7311 991910

Oxfordshire, UK

christiaan-de-wet
CryDeTaan
CryDeTaan

Skills

Brain archive; some current and past skills, tools and / or familiarities:

  • Red Teaming and Pentesting: Bloodhound,  Burp Suite,  CobaltStrike,  Guardara (FuzzLabs),  Kali
  • Reverse Engineering: Radare2,  Immunity Debugger,  OllyDbg,  Ghidra,  IDA
  • AI/ML: LLMs (Claude, Bedrock),  Embedding models & vector search,  Claude Code (Skills, Commands, MCP),  Agentic workflows
  • (Web) Development and Tooling: Bash,  C#,  GoLang,  Javascript,  PHP,  Python,  dnspy,  Docker,  Git,  Nginx,  Postman
  • Database: MySQL,  Snowflake,  Neo4j
  • Cloud and Cloud native: AWS,  AWS Lambda,  Azure,  Azure Functions,  Cloudformation,  Kubernetes,  Terraform
  • Security products: Checkmarx,  CyberArk,  Cybereason,  Fortify on Demand,  Splunk,  Snort,  SonarQube,  Tenable,  Websense
  • Enterprise: Windows,  Active Directory,  Exchange,  PostFix,  and many more
  • I like(d) to tinker with: Arduino,  Arch,  Home Assistant,  i3WM,  RaspberryPi

Recent Experience

Security Engineer - Lacework Labs | Software Engineer - Code Sec

Fortinet (Acquired Lacework) - Cloud security company

-

Present

Providing security subject matter expertise to drive improvements within the Lacework Platform

  • Developed and improved SAST and SCA features (GoLang, Java, GitHub Actions)

  • Developed and patented (US12407702) internal tooling for dynamic CVE Data collection (Laravel, VueJS)

  • Developed cloud-based composite alert detections from Threat Intelligence (Python, Sigma, Snowflake, Neo4j)

  • Developed CWE categorisation and consolidation pipeline using LLM and embedding models (Python, Bedrock)

  • Developed internal baseline framework to compare Lacework vulnerability evaluation engine against CVE Data sources (Python)

  • Developed PHP language support for the SAST engine (GoLang, Semgrep)

  • Developed PHP language support for the Code Aware Agent (GoLang)

  • Developed PR Comment features and improvements for Code Security CI/CD Apps(GoLang, Java)

  • Established a SAST Taxonomy for SAST detections

  • Established an Attack Simulation program to test and validate detections (Terraform)

  • Performed novel research on Living Off the Land vulnerability detection and presented at BlackHat USA 2023.

  • Support and drive Vulnerability Management features to improve CVE data efficacy (GoLang)

Founder & Lead Developer

Mailphantom - E-mail privacy SaaS

-

Present

SaaS offering which protects your email privacy by using unique email addresses online (A side project with paying customers).

  • Automated testing and deployment (GitHub Actions)

  • Design and build the entire web application (Laravel, VueJS)

  • Follow DevOps strategies to maintain the application and infrastructure

Sr. Manager - Penetration Testing and Security Research

Becton, Dickinson and Co. (BD) - Medical device manufacturer

-

Led the Penetration Testing and Security Research team and perform Security Research against BD's medical products and infrastructure.

  • Define and implement Penetration Testing and Security Research strategy

  • Develop Penetration Testing Methodologies, and define security best practices and standards

  • Develop proof of concept exploits to demonstrate impact of vulnerabilities (python, bash)

  • Perform manual code review to discover vulnerabilities within large code bases (C#, PHP, Java)

  • Perform Penetration Testing & Security Research on BD's products using emerging technologies such as Kubernetes and cloud native applications

  • Provide guidance on secure architecture design and DevSecOps within CI/CD pipelines

  • Support developers in their SDLC and provide guidance for mitigating emerging threats

  • Utilise SAST and DAST solutions within the testing methodologies and SDLC (Checkmarx, FoD)

  • Team Leadership, Mentoring, and Career Planning

Student Admin

Offensive Security (OffSec) - Cyber Security training provider

-

Provide support and improvements for the highly coveted OffSec Labs and Exams

  • Developed a plagiarism detection system using machine learning (spaCy NLP)

  • Provide assistance in building new lab and exam machines

  • Provide guidance to students during their lab time

  • Provide Linux, VPN, Virtual Machine technical support

  • Used the opportunity to up-skill, and learn from those who build Offsec and obtain two additional Offsec certificates

  • Write technical documentation for new lab and exam machines

Penetration Testing Team Lead

Capitec Bank - Retail Bank

-

Establish the Offensive Security and Red Teaming function

  • Develop and define engagement methodologies and frameworks

  • Implement automated source code analysis (SonarQube)

  • Plan and execute on security assessments on internal environments

  • Support Incident Response team during investigations, particularly where new TTPs were discovered

Penetration Tester/Security Engineer

Investec Bank - Investment Bank

-

Improve Security posture through initiatives, projects, and red team and penetration testing exercises

  • Advise internal infrastructure teams on designs and implementation strategies of new systems

  • Design and implement CyberArk as a least privilege solution and successfully manage all server and workstation local Admin accounts

  • Design and implement global Splunk infrastructure for security monitoring capability

  • Develop security monitoring detections and strategies from Threat Intelligence

  • Plan and execute on security assessments on internal environments

  • Research vulnerabilities, reverse engineer targeted malware and write associated internal advisories

  • Support Incident Response team during investigations, particularly where new TTPs were discovered

Technical Support Engineer and Services Manager

Performanta Technologies - Cyber Security service provider

-

Design, implement and manage multiple security technology domains and products, as well as Technical and operational management and support of the services department

  • Served as Information Security Officer and Consultant for multiple large organizations

  • Conducted R&D on emerging security threats and solutions

  • Implemented Data Loss Prevention solutions at Royal Bank of Scotland and Standard Bank SA

  • Advised sales teams on technical markets and trends throughout the sales lifecycle

Certificates

Publications

Living Off the Land Attack

An overview of Living Off the Land (LOTL) attack techniques

Lacework Labs
Protect containers from Living Off the Land (LOTL) attacks

How to protect containers from Living Off the Land (LOTL) attacks: A step-by-step guide

Lacework Labs
How to Protect Against "Living Off The Land" Attacks

A talk on how to protect against Living Off the Land attacks.

BlackHat USA 2023
Abstract Entropy

A blog I add some content to from time to time

Christiaan de Wet

Awards

BD Star Award

BD Information Security

Monthly award given to individuals who made significant contributions.

BD Annual Excellence Award 2021

BD Information Security

Annual award given to an individual who made significant contributions for the year.