Antonio Fontes



With over ten years experience in the software and information security industry, I specialize in the support to both public and private organizations in understanding threats, estimating risks and reducing the exposure of their software applications to security and privacy risks. As an active member of the OWASP organization, I contribute(d) to several application security projects such as the "CWE Top 25 most dangerous programming errors" and build the bridge between software development and information security communities. My daily activities include devops training/coaching, threat analysis and modeling, design and source code reviews, penetration testing and estabilsihing in-house SSGs (Software Security Group).