Profileimage by Felice Tufo Freelance Software Engineer | Software security consultant from

Felice Tufo

partly available
Contact

Last update: 20.06.2021

Freelance Software Engineer | Software security consultant

Graduation: Master Degree in Computer Science and Engineering, full marks with honors, from the University of Bologna. Postgraduate course in "Strategic homeland defense: threat intelligence, big data and cybersecurity of critical infrastructure"
Hourly-/Daily rates: show
The rates are for remote services; negotiable depending on project scope, contract duration, etc. Please visit my website for more info.
Languages: English (Full Professional) | Italian (Native or Bilingual)

Attachments

Resume-Felice-Tufo.pdf

Skills

Hi, I'm Felice. I'm a freelance software engineer and cybersecurity consultant, skilled in designing and developing safe and secure software. With my work, I help companies implement reliable systems.

I have more than 15 years of experience in software design and development, starting from requirements elicitation, to software architectural and behavioural modeling with UML, down to programming and testing. I’ve been working with C, C++ and Assembly languages for embedded resource-constrained projects, but also with Java, C# and Python for desktop and web applications. I’ve coded both on Windows and Linux based platforms, and also used embedded real time OS such as VxWorks and FreeRTOS. I regularly use tools such as SonarQube, Lint and xUnit testing frameworks, for maximum code quality. I've also worked as Software Configuration Manager and Build and Release Manager for several clients, using Git and Svn and tools such as Bitbucket, ClearCase, Synergy, Jenkins and Ansible, for which I have often developed integration and automation scripts

During my career, I’ve been involved in risk analyses, cybersecurity assessments and vulnerability testing; worked with application architects to ensure that security best practices and internal requirements were met through the entire development lifecycle; performed threat modeling, design reviews and code reviews with a focus on security as part of the development lifecycle. I hold a postgraduate course (Italian "Master") in “Strategic homeland defense: threat intelligence, big data and cybersecurity of critical infrastructure“. I’m also a member of CLUSIT (the italian association for information security).

Project history

11/2021 - Present
Freelance Cybersecurity Consultant
Undisclosed (50-250 employees)
Pharmaceuticals and medical technology
Cybersecurity risk assessment and threat modeling for medical and IOT devices

01/2020 - Present
Freelance Software Consultant
NIER Ingegneria SPA (50-250 employees)
Transport and Logistics
Development of a network procol for safety critical SIL4 systems (C POSIX - sockets, multithread, timers / MISRA).

Design and development of a network protocol simulator (C, Python, Cython, gRPC)

*** Details partially disclosable on request ***

06/2019 - 05/2020
Freelance Software Consultant
CINECA (500-1000 employees)
Energy, water and environment
Development of a desktop application for the offline analysis of geological data for the oil & gas industry (C++, QT, Vtk, Sqlite)

03/2019 - 05/2020
Freelance Software Consultant
Bicom (10-50 employees)
Industry and mechanical engineering
- Development of new features (C#, WPF, XML, Sqlite)
- Integration of digital payment solutions in the vending machines manufactured by Bicom (C#, REST Api)
- Security analysis of the software from the intellectual property protection point of view

08/2019 - 09/2019
Freelance Software Consultant
WinWinIt (10-50 employees)
Internet and Information Technology
Assessment of a Linux system, based on the Yocto Project (evaluation of the overall architecture, security, Yocto best practices, etc.)

01/2018 - 08/2019
Freelance Software Consultant on Atlassian products
ibuildings (50-250 employees)
Internet and Information Technology
- Development of Java plugins for the Atlassian suite (Jira, Confluence, Bitbucket) and integration with third-party systems.
- Atlassian products installation, configuration and tailoring via plugins

02/2019 - 06/2019
Freelance Software Consultant
MERMEC (500-1000 employees)
Industry and mechanical engineering
Development of a software module for rail data conversion between different formats (C#, XSLT, SQLite)

12/2017 - 03/2019
Freelance Software Consultant
Alstom (5000-10.000 employees)
Industry and mechanical engineering
Design and development of a C# software module for the ICONIS Traffic Management System, using SCRUM methodology.

Main technologies and tools used:
- C# (WPF, XAML, WCF)
- T-SQL
- Microsoft SQL Server
- Microsoft VSTS
- SonarQube

11/2013 - 09/2017
Freelance Software Engineer, Software Configuration Manager and Project Manager
Menarini (5000-10.000 employees)
Pharmaceuticals and medical technology
Main activities:
- Tech leading a team of 5+ software engineers
- Software design and development according to IEC 62304 (C++, C#)
- Hardware platform optimization using Linux KVM/QEMU virtualization infrastructure 
- Software Configuration and Release Management

06/2012 - 07/2013
Freelance Software Consultant
Selex ES (5000-10.000 employees)
Industry and mechanical engineering
Development of a network device for defense applications.

Main tasks and responsibilities:
- Writing of SRS, SDD, IDD documents, according to MIL-STD-498
- C/C++ software development on VxWorks MILS OS (ARINC 653)
- VxWorks BSP and device driver optimization for a MPC8548E based board
- Build&Release Management, Software Configuration Management using SVN
- Continuos Integration of software components

01/2012 - 05/2012
Freelance Software Consultant
Evidence (10-50 employees)
Internet and Information Technology
Development of an embedded system for home automation, based on Windows CE and C# on .NET compact framework, using:
- SCRUM as software development methodology
- TRAC + SVN for configuration and change management
- Jenkins for continuos integration

06/2010 - 12/2011
Freelance Software Consultant
Gambro (5000-10.000 employees)
Pharmaceuticals and medical technology
- Software development (C, C++) on an AMD Geode LX800 based board, running VxWorks 5.5 OS
- Management and automation of the software configuration toolchain (based on IBM Rational ClearCase) and software build toolchain (based on WindRiver Tornado 2.2.1)
- Improvement of the software development toolchain (mainly using Python), autogenerating a report for code quality metrics.

03/2008 - 05/2010
Software engineer
Magneti Marelli (5000-10.000 employees)
Automotive and vehicle construction
Management of the model-based toolchain based on Matlab/Simulink, DSpace TargetLink and SystemDesk: development of custom tools for automation purposes (Matlab, Java, Python) and integration with the Autosar toolchain

Development in C of some modules of the firmware running on the Engine Control Units: BIOS drivers for selected microprocessors (Freescale MPC555x, STM ST10, Infineon Tricore) and support for calibration tools (ETAS INCA) via standard protocols (CCP/XCP on CAN bus)

Development of translators between domain specific languages (based on JavaCC and ANTLR parser generators)

09/2006 - 03/2009
Researcher
Università di Bologna (1000-5000 employees)
Other
Development of an automated validation platform for the firmware of the Engine Control Units produced by Magneti Marelli Powertrain (integrating Matlab with Java and C modules to drive a custom Hardware-In-The-Loop system via CAN bus)

Time and spatial flexibility

I usually work from my home office in Bologna, Italy, and I'm available for business trips up to 20% of time.

Other

More info on https://www.felicetufo.com and http://linkedin.com/in/felicetufo

***** NOTE FOR RECRUITERS *****
I don't have a FreelancerMap Premium account (yet), so please don't send me premium messages here because I cannot read them.

Contact form

Contact details