Freelance Software Consultant
NIER Ingegneria SPA
(Transport and Logistics, 50-250 employees)
Keywords
Skills
Hi, I'm Felice. I'm a freelance software engineer and cybersecurity consultant, skilled in designing and developing safe and secure software. With my work, I help companies implement reliable systems.
I have more than 15 years of experience in software design and development, starting from requirements elicitation, to software architectural and behavioural modeling with UML, down to programming and testing. I’ve been working with C, C++ and Assembly languages for embedded resource-constrained projects, but also with Java, C# and Python for desktop and web applications. I’ve coded both on Windows and Linux based platforms, and also used embedded real time OS such as VxWorks and FreeRTOS. I regularly use tools such as SonarQube, Lint and xUnit testing frameworks, for maximum code quality. I've also worked as Software Configuration Manager and Build and Release Manager for several clients, using Git and Svn and tools such as Bitbucket, ClearCase, Synergy, Jenkins and Ansible, for which I have often developed integration and automation scripts
During my career, I’ve been involved in risk analyses, cybersecurity assessments and vulnerability testing; worked with application architects to ensure that security best practices and internal requirements were met through the entire development lifecycle; performed threat modeling, design reviews and code reviews with a focus on security as part of the development lifecycle. I hold a postgraduate course (Italian "Master") in “Strategic homeland defense: threat intelligence, big data and cybersecurity of critical infrastructure“. I’m also a member of CLUSIT (the italian association for information security).
I have more than 15 years of experience in software design and development, starting from requirements elicitation, to software architectural and behavioural modeling with UML, down to programming and testing. I’ve been working with C, C++ and Assembly languages for embedded resource-constrained projects, but also with Java, C# and Python for desktop and web applications. I’ve coded both on Windows and Linux based platforms, and also used embedded real time OS such as VxWorks and FreeRTOS. I regularly use tools such as SonarQube, Lint and xUnit testing frameworks, for maximum code quality. I've also worked as Software Configuration Manager and Build and Release Manager for several clients, using Git and Svn and tools such as Bitbucket, ClearCase, Synergy, Jenkins and Ansible, for which I have often developed integration and automation scripts
During my career, I’ve been involved in risk analyses, cybersecurity assessments and vulnerability testing; worked with application architects to ensure that security best practices and internal requirements were met through the entire development lifecycle; performed threat modeling, design reviews and code reviews with a focus on security as part of the development lifecycle. I hold a postgraduate course (Italian "Master") in “Strategic homeland defense: threat intelligence, big data and cybersecurity of critical infrastructure“. I’m also a member of CLUSIT (the italian association for information security).
Project history
01/2020
-
Present
Design and development of a network component for safety and security critical SIL4 rail systems (Linux, FreeBSD/C/POSIX/MISRA).
Development of a Linux and FreeBSD kernel module to test the RAM used by a process while the process is running.
Collaborating with FreeBSD core developers to fix a nasty bug in kernel timers (https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=264867).
Design and development of a network protocol simulator (C, Python, Cython, gRPC).
Teaching advanced Python course for professionals.
Development of a Linux and FreeBSD kernel module to test the RAM used by a process while the process is running.
Collaborating with FreeBSD core developers to fix a nasty bug in kernel timers (https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=264867).
Design and development of a network protocol simulator (C, Python, Cython, gRPC).
Teaching advanced Python course for professionals.
10/2021
-
10/2022
Freelance Cybersecurity Consultant
OPT SurgiSystems
(Pharmaceuticals and medical technology, 50-250 employees)
Cybersecurity risk assessment and STRIDE threat modeling for medical and IOT devices
06/2019
-
05/2020
Freelance Software Consultant
CINECA
(Energy, water and environment, 500-1000 employees)
Development of a desktop application for the offline analysis of geological data for the oil & gas industry (C++, QT, Vtk, Sqlite)
03/2019
-
05/2020
Freelance Software Consultant
Bicom
(Industry and mechanical engineering, 10-50 employees)
- Development of new features (C#, WPF, XML, Sqlite)
- Integration of digital payment solutions in the vending machines manufactured by Bicom (C#, REST Api)
- Security analysis of the software from the intellectual property protection point of view
- Integration of digital payment solutions in the vending machines manufactured by Bicom (C#, REST Api)
- Security analysis of the software from the intellectual property protection point of view
08/2019
-
09/2019
Freelance Software Consultant
WinWinIt
(Internet and Information Technology, 10-50 employees)
Assessment of a Linux system, based on the Yocto Project (evaluation of the overall architecture, security, Yocto best practices, etc.)
01/2018
-
08/2019
Freelance Software Consultant on Atlassian products
ibuildings
(Internet and Information Technology, 50-250 employees)
- Development of Java plugins for the Atlassian suite (Jira, Confluence, Bitbucket) and integration with third-party systems.
- Atlassian products installation, configuration and tailoring via plugins
- Atlassian products installation, configuration and tailoring via plugins
02/2019
-
06/2019
Freelance Software Consultant
MERMEC
(Industry and mechanical engineering, 500-1000 employees)
Development of a software module for rail data conversion between different formats (C#, XSLT, SQLite)
12/2017
-
03/2019
Freelance Software Consultant
Alstom
(Industry and mechanical engineering, 5000-10.000 employees)
Design and development of a C# software module for the ICONIS Traffic Management System, using SCRUM methodology.
Main technologies and tools used:
- C# (WPF, XAML, WCF)
- T-SQL
- Microsoft SQL Server
- Microsoft VSTS
- SonarQube
Main technologies and tools used:
- C# (WPF, XAML, WCF)
- T-SQL
- Microsoft SQL Server
- Microsoft VSTS
- SonarQube
11/2013
-
09/2017
Freelance Software Engineer, Software Configuration Manager and Project Manager
Menarini
(Pharmaceuticals and medical technology, 5000-10.000 employees)
Main activities:
- Tech leading a team of 5+ software engineers
- Software design and development according to IEC 62304 (C++, C#)
- Hardware platform optimization using Linux KVM/QEMU virtualization infrastructure
- Software Configuration and Release Management
- Tech leading a team of 5+ software engineers
- Software design and development according to IEC 62304 (C++, C#)
- Hardware platform optimization using Linux KVM/QEMU virtualization infrastructure
- Software Configuration and Release Management
06/2012
-
07/2013
Freelance Software Consultant
Selex ES
(Industry and mechanical engineering, 5000-10.000 employees)
Development of a network device for defense applications.
Main tasks and responsibilities:
- Writing of SRS, SDD, IDD documents, according to MIL-STD-498
- C/C++ software development on VxWorks MILS OS (ARINC 653)
- VxWorks BSP and device driver optimization for a MPC8548E based board
- Build&Release Management, Software Configuration Management using SVN
- Continuos Integration of software components
Main tasks and responsibilities:
- Writing of SRS, SDD, IDD documents, according to MIL-STD-498
- C/C++ software development on VxWorks MILS OS (ARINC 653)
- VxWorks BSP and device driver optimization for a MPC8548E based board
- Build&Release Management, Software Configuration Management using SVN
- Continuos Integration of software components
01/2012
-
05/2012
Freelance Software Consultant
Evidence
(Internet and Information Technology, 10-50 employees)
Development of an embedded system for home automation, based on Windows CE and C# on .NET compact framework, using:
- SCRUM as software development methodology
- TRAC + SVN for configuration and change management
- Jenkins for continuos integration
- SCRUM as software development methodology
- TRAC + SVN for configuration and change management
- Jenkins for continuos integration
06/2010
-
12/2011
Freelance Software Consultant
Gambro
(Pharmaceuticals and medical technology, 5000-10.000 employees)
- Software development (C, C++) on an AMD Geode LX800 based board, running VxWorks 5.5 OS
- Management and automation of the software configuration toolchain (based on IBM Rational ClearCase) and software build toolchain (based on WindRiver Tornado 2.2.1)
- Improvement of the software development toolchain (mainly using Python), autogenerating a report for code quality metrics.
- Management and automation of the software configuration toolchain (based on IBM Rational ClearCase) and software build toolchain (based on WindRiver Tornado 2.2.1)
- Improvement of the software development toolchain (mainly using Python), autogenerating a report for code quality metrics.
03/2008
-
05/2010
Software engineer
Magneti Marelli
(Automotive and vehicle construction, 5000-10.000 employees)
Management of the model-based toolchain based on Matlab/Simulink, DSpace TargetLink and SystemDesk: development of custom tools for automation purposes (Matlab, Java, Python) and integration with the Autosar toolchain
Development in C of some modules of the firmware running on the Engine Control Units: BIOS drivers for selected microprocessors (Freescale MPC555x, STM ST10, Infineon Tricore) and support for calibration tools (ETAS INCA) via standard protocols (CCP/XCP on CAN bus)
Development of translators between domain specific languages (based on JavaCC and ANTLR parser generators)
Development in C of some modules of the firmware running on the Engine Control Units: BIOS drivers for selected microprocessors (Freescale MPC555x, STM ST10, Infineon Tricore) and support for calibration tools (ETAS INCA) via standard protocols (CCP/XCP on CAN bus)
Development of translators between domain specific languages (based on JavaCC and ANTLR parser generators)
09/2006
-
03/2009
Researcher
Università di Bologna
(Other, 1000-5000 employees)
Development of an automated validation platform for the firmware of the Engine Control Units produced by Magneti Marelli Powertrain (integrating Matlab with Java and C modules to drive a custom Hardware-In-The-Loop system via CAN bus)
Local Availability
Only available for remote work
I usually work from my home office in Bologna, Italy, and I'm available for business trips up to 20% of time.
Other
More info on https://www.felicetufo.com and http://linkedin.com/in/felicetufo
***** NOTE FOR RECRUITERS *****
I don't have a FreelancerMap Premium account (yet), so please don't send me premium messages here because I cannot read them.
***** NOTE FOR RECRUITERS *****
I don't have a FreelancerMap Premium account (yet), so please don't send me premium messages here because I cannot read them.
