ALDI SETIAWAN

Application Security Engineer

Penetration testing, secure code review, and vulnerability management across web, mobile, and API surfaces. 4+ years turning security findings into secure-by-design systems before they reach production.

CEH PRACTICAL CASE · JAVA IEEE · SCOPUS PYTHON OWASP
security_audit.py
$ python scan.py --target api
[*] Scanning endpoints...
[+] Brute force: BLOCKED
[+] SQLi payload: BLOCKED
[+] XSS attempt: BLOCKED
[!] IDOR found → reported
[✓] System secured.
Experience

Application Security Engineer

PT Dipo Star Finance · Jakarta, Indonesia

Apr 2026 – Present
  • Led penetration testing and attack simulation initiatives spanning web applications, mobile applications, and APIs, surfacing critical vulnerabilities ahead of production release.
  • Established a secure code review process (manual and tool-assisted) that catches security defects before they reach release.
  • Built an internal vulnerability monitoring system tracking CVEs affecting company dependencies, cutting patch prioritization time.
  • Delivered SCA and SAST as part of the automated security testing pipeline.

Backend Engineer

PT Dipo Star Finance · Jakarta, Indonesia

Nov 2021 – Apr 2026
  • Led backend development projects using Python, FastAPI, PostgreSQL, and Redis, from design through deployment.
  • Designed system architecture and defined the technology stack for internal projects.
  • Embedded security considerations into application design from the architecture stage (secure by design).
  • Conducted code reviews to maintain code quality and security standards across the team.
Featured Projects

MAFIA

Middleware AI Firewall Application

Python middleware for FastAPI with AI-based brute force detection and SQLi filtering.

Python FastAPI Redis ML
View Project →

JITORM

Just-In-Time Optimized ORM

High-performance Python ORM with LLVM-based JIT compilation. Scopus-indexed research.

Python LLVM PostgreSQL
View Project →
Publication

Enhancing Python Object-Relational Mapping Performance using Just-In-Time Compiler

Aldi Setiawan · Telkom University, 2025 · IEEE Xplore #10933413

SCOPUS INDEXED IEEE XPLORE
Certifications
CEH Practical — Certified Ethical Hacker
EC-Council
Valid until 2026
CASE — App Security Engineer (Java)
EC-Council
Valid until 2027