$ Hi, my name is

Chibuikem Okonkwo

I build hardened backend systems.

Backend Developer with a focus on Application Security (AppSec) and the Secure SDLC. I design Zero-Trust, event-driven microservices in Python (FastAPI) and Node.js — and break things on CTF platforms for fun.

View my work Get in touch View Resume

01. whoami

I'm a cybersecurity-aspiring backend developer who treats security as a property of the build, not a bolt-on. My day-to-day is architecting hardened backend infrastructure — and my nights are spent on Hack The Box and TryHackMe learning how attackers think.

At Emutare (Perth, Western Australia, remote) I help build a distributed platform of FastAPI microservices secured with a Zero-Trust, PKI-backed event bus. I'm comfortable across OAuth2 / OpenID Connect, RBAC/ABAC, cryptography, and the practical realities of shipping secure software through the SSDLC.

Technologies I reach for most often:

  • Python (FastAPI)
  • Node.js (Express)
  • PostgreSQL
  • RabbitMQ / Kafka
  • Docker
  • Linux (Kali/Ubuntu)

02. arsenal

Security Engineering

  • OAuth2 / OIDC
  • JWT
  • RBAC / ABAC
  • Zero Trust
  • SQLi mitigation
  • XSS prevention
  • AES / RSA
  • Rate limiting
  • PKI

Security Tools

  • Wireshark
  • Nmap
  • Burp Suite
  • Metasploit
  • OWASP ZAP
  • SAST
  • DAST

Languages & Frameworks

  • Python
  • FastAPI
  • JavaScript
  • Node.js / Express
  • Bash
  • PowerShell
  • SQL

Infrastructure & DevOps

  • Linux (Ubuntu/Kali)
  • Docker
  • Git
  • GCP
  • Cloud KMS / Vaults
  • RabbitMQ
  • Kafka

Networking

  • TCP/IP
  • VPN tunneling
  • Firewalls
  • DNS security
  • Switching & routing

Offensive Security

  • Web exploitation
  • Privilege escalation
  • OSINT
  • CTF
  • Vulnerability research

03. experience

Junior Security Software Engineer @ Emutare

Feb 2026 — Present

Perth, Western Australia · Remote

  • Scaled the enterprise microservices architecture by 400%, architecting and deploying 7 core distributed services in Python (FastAPI) backed by relational databases.
  • Designed a Zero-Trust, event-driven backbone over asynchronous messaging, with a PKI layer securing inter-service communication.
  • Contributed to a next-gen Identity & Access Management platform — hardware-backed auth (TPM), passkeys, and multi-factor protocols.
  • Spearheaded migration of secrets to cloud-native KMS vaults, enforcing strict encryption-at-rest.
  • Containerized and orchestrated services for service discovery and high availability across environments.

Security Software Developer Intern @ Emutare

Feb 2025 — Jan 2026

Perth, Western Australia · Remote

  • Contributed to the foundational architecture of an enterprise microservices platform, implementing scalable messaging with Node.js and NoSQL/AMQP.
  • Provisioned secure cloud-native environments for staging and integration testing with strict network access controls.
  • Authored technical API documentation and implemented initial RBAC logic to secure service-to-service communication.

Cybersecurity Intern @ Prodigy InfoTech

Nov 2024 — Dec 2024

Remote

  • Developed custom Python utilities for AES-256 encryption and secure hashing (data-at-rest protection).
  • Analyzed PCAP captures in Wireshark, flagging insecure protocols (Telnet, HTTP) and recommending TLS upgrades.
  • Built an entropy-based password strength analyzer simulating dictionary and brute-force resistance.
  • Researched keylogging mechanics to develop signature-based detection patterns.

Penetration Tester · CTF Competitor

2023 — Present

Hack The Box · TryHackMe · Africa CyberFest

  • Actively exploiting machines on Hack The Box and TryHackMe, focused on privilege escalation and web exploitation.
  • Executed OSINT to map attack surfaces during simulated red-team engagements.

04. selected work

A few things I've built or broken — distilled from production work and hands-on security research.

Production

Zero-Trust Event Backbone

An asynchronous, event-driven message bus connecting 7 FastAPI microservices, with a PKI layer issuing and verifying certificates so no service implicitly trusts another.

  • FastAPI
  • RabbitMQ
  • PKI
  • PostgreSQL
Production

Next-Gen IAM Platform

Identity & Access Management with hardware-backed authentication (TPM), passkeys, and layered MFA — moving auth from "passwords" to phishing-resistant credentials.

  • OAuth2 / OIDC
  • WebAuthn
  • TPM
  • RBAC/ABAC
Production

Hardened Secrets Management

Led migration of sensitive credentials out of config and into cloud-native KMS vaults, enforcing encryption-at-rest and tight, auditable access policies.

  • Cloud KMS
  • GCP
  • Encryption-at-rest
Research

AES-256 Crypto Toolkit

Custom Python utilities for AES-256 encryption and secure hashing — a practical study in correct key handling, IVs, and authenticated encryption for data-at-rest.

  • Python
  • AES-256
  • Hashing
Research

Entropy Password Analyzer

A strength analyzer that scores passwords by entropy and simulates dictionary and brute-force resistance — turning "is this strong?" into a measurable answer.

  • Python
  • Entropy
  • Threat modeling
Research

PCAP Traffic Analysis

Captured and dissected network traffic in Wireshark to surface cleartext protocols (Telnet, HTTP), document the exposure, and recommend TLS-based remediation.

  • Wireshark
  • TCP/IP
  • TLS

05. credentials

Certifications & Training

CiscoCCNA — Introduction to Networks
CiscoCCNA — Switching, Routing & Wireless Essentials
CiscoCCNA — Enterprise Networking, Security & Automation
The SecOps GroupCNSP — Certified Network Security Practitioner
CiscoCyberOps Associate
CiscoDevNet Associate
CiscoPython Essentials 1
Digital RegenesysCybersecurity Defence Toolbox
Lagos, NigeriaAfrica CyberFest CTF Competition (2024)

Education

University of Lagos

2019 — 2024

B.Sc. (Ed.) Mathematics · Second Class Upper

Lagos, Nigeria

University of the People

2018 — 2024

B.Sc. Computer Science · Cum Laude

Online · Coursework: Communications & Networking, Systems & Application Security, Advanced Networking & Data Security

06. get in touch

Let's build something secure.

I'm open to backend and application-security roles, collaborations, and CTF teams. Whether you have a question, an opportunity, or a vulnerability to discuss responsibly — my inbox is open.

Say hello