2003-5. First serious “job” writing a distributed CMS for a new thing called SEO, a.k.a keeping up with & playing tricks on Google. Nowadays known as FastTiger Development.
2005-6 Flew to Cyprus to build a poker website named RedKings, now part of EGO.
2007. Back in Israel to build a now-defunct indie classifieds site, Tet.
2008. Flew out with a bicycle to Portugal. Spent half a year pedalling across Europe to Russia.
2009. Built Greenie, a now-defunct, peer-to-peer bicycle delivery matching hub between clients, businesses & couriers. Was ahead of its time, not enough smartphone owners around, no meaningful bicycle culture in TLV at the time. Got some nice press nevertheless.
2009-10. Built Malioglasi.rs, a now-defunct classifieds aggregator in Serbia. Scraped around 100K items, daily, off a dozen sites, transforming them into an orderly format to be displayed, searched and filtered by their attributes on a website. Last solo project, discovered the limits of my abilities when unassisted.
2010-2018. Built & CTO’d SandStorm, a gaming platform featuring mobile-first HTML5 games, a powerful Backoffice, integrations to lots of 3rd party game providers, payment gateways, communication services. The project gave birth to a then-novel approach of creating performant mobile browser graphics, and a methodology of managing distributed developer teams, custom infrastructure, and a number of other open-source contributions.
2018- Full time Consultant & Development services provider & Architect of custom Web projects for various clients (references to be provided upon request). Increasingly invested in a single tech-stack of choice, which includes PostgreSQL, PostgREST, NodeJS & Svelte.
The term “Full stack” has been beat into a very low, broad meaning in recent years. However, I perceive myself as precisely that - a developer able to architect & execute on the Hardware, Virtualization, OS, Network, Services, Server-side apps, and finally the Browser planes.
Technologies of preference are marked in bold.
Hardware: have assembled servers, switches & racks.
Virtualization: qemu, ibvirt, docker, user-level isolation.
OS: Linux, with an understanding of what’s out there besides.
Persistence: MySQL, PostgreSQL, Redis. Horizontal scaling. Performance optimizations.
Network: Linux routing, Firewalling, OpenVPN, tunnelling, solid grasp of security & threat vectors.
Services: apache,nginx,haproxy,wsgi,postfix, ssh and a ton I’ve forgotten about.
Server side: potent in (sic) php, python, node. Can read a bunch of others. Dabbled in FP.
Client side: lots of projects in Svelte, experience with functional React & Redux. HTML, JS, CSS, at times hands-on, mobile & desktop. Authored JS frameworks for games, business UI.
Preference for undogmatic Agile and the lean approach. Context centric management attitude (everyone needs to know where we’re going). Creator of Project Management tools, merge orchestration tooling. Preferring to lead by example. Loves collaborative editing, documentation that's up to date by design, and diagrams.
While I have not dealt with security directly in the role of an attacker or an active penetration tester, I am more than familiar with the field both theoretically, as well as in practice, as an Architect, designing systems that:
Over the years, I have created systems that solved challenges, (traditional external adversarial threats aside), that are increasingly subtle & complex, such as:
Fulfilling the role of a CTO for several projects through my career, I have accumulated, and in turn, was guided by:
I have managed remote teams that consist of employees operating within uncontrolled and untrusted environments. To manage risks resulting from them, I have:
In addition, I am familiar with common Web Application flaws, vulnerabilities and exploitation techniques, as well as effective countermeasures to them::
© 2023 Web GMA R&D Ltd.