JONATHAN TROWBRIDGE

CAREER SUMMARY

Experienced software engineer with over a decade of success building secure, scalable systems across web, mobile, and backend. Currently transitioning into cybersecurity with a focus on penetration testing, backed by practical experience through the SANS Applied Cybersecurity (ACS) program, GIAC certifications (GPEN, GCIH, GSEC, GFACT), Capture the Flag (CTF) events, and TryHackMe labs. Brings a strong foundation in full-stack development, secure coding practices, and vulnerability analysis. Recognized for leadership, mentorship, and cross-functional collaboration, with a strategic approach to system design and a strong commitment to continuous learning in cybersecurity.

EDUCATION & CERITIFCATIONS

COMPETENCIES & SKILLS

PROFESSIONAL EXPERIENCE

• Led the end-to-end migration of the Coinme native iOS and Android applications to Flutter, unifying the mobile codebases and significantly improving developer velocity, code reuse, and release frequency.
• Designed and implemented a scalable application architecture using Riverpod, enabling maintainable, testable, and modular code to support rapid feature growth.
• Directed key engineering initiatives including onboarding, mentorship, and team process improvements enhancing team productivity, consistency, and long-term scalability of development efforts.

• Led development of a commercial real estate listing module for Android, along with the supporting ASP.NET Core Web API, delivering a seamless end-to-end solution used across platforms.
• Built and maintained scalable web applications with React, .NET, and Node.js, and developed a reusable .NET Core AWS push notification system adopted across the organization to support real-time, cross-platform communication.
• Collaborated cross-functionality with design, product, and engineering teams to deliver intuitive user experiences and ensure consistent, high-quality feature releases across mobile and web.

• Built cross-platform iOS and Android applications using Xamarin Native and Xamarin Forms, delivering custom mobile solutions across including skiing, agriculture, and logistics.
• Developed and modernized backend systems with ASP.NET and Azure Mobile App Services, including migrating monolithic APIs to modular services and implementing robust unit testing.
• Engineered real-time inventory and shipping synchronization within a cross-platform mobile application, using advanced PCL code and LINQ queries to streamline data flow across distributed devices and APIs.

• Led implementation of claims-based authentication and user management systems for government applications, including a secure recruiting portal for the U.S. Air Force, enhancing access control and compliance.
• Developed environmental and conservation-focused modules for Virginia state agencies using Backbone, Marionette, and ASP.NET Web API, improving regulatory workflows and monitoring efficiency.
• Modernized legacy web applications, including migrating from jQuery to Dojo, resulting in improved performance, user experience, and maintainability.

PRACTICAL CYBERSECURITY EXPERIENCE & SIDE PROJECTS

• Participated in the SANS GCIH and GPEN CTF events, applying knowledge of attacker tactics, techniques, and procedures (TTPs) aligned with real-world threat scenarios.
• Completed over 145 hands-on cybersecurity challenges on TryHackMe since October 2024, covering topics such as enumeration, privilege escalation, exploitation, persistence, and reverse engineering.

• Built a full-stack Flutter frontend and Ktor backend as a boilerplate project to accelerate rapid application bootstrapping, supporting user registration, profile updates, and SMS-based two-factor authentication (2FA).
• Implemented JWT-based authentication and authorization, with MySQL for persistent user data, Redis for transient 2FA token storage, and GitHub Actions for automated backend deployment.
• Architected the Ktor backend using a modular, feature-based structure grounded in Clean Architecture principles and Domain-Driven Design (DDD), organizing core business logic into clearly defined use cases to enhance separation of concerns, scalability, and testability.

• Built a native Android application that facilitates the sequential streaming of torrent media for playback on the local device or Chromecast devices.
• Powered media playback using a custom VLC/libVLC wrapper.
• Integrated in-app torrent search capabilities, enabling users to find and stream content without leaving the application.

• Built a native Android application that integrates with the Jackett torrent indexer aggregation engine.
• Implemented a custom Foreign Function Interface (FFI) to enable direct interop between Kotlin and a Jackett .NET Core library, offloading indexer management to the Jackett project.
• Leveraged cross-runtime communication to reduce maintenance overhead and align with upstream improvements.

• Developed a comprehensive Android media player library leveraging the core libVLC library and Open Subtitles API, facilitating seamless media playback on Android and Chromecast devices

(Download resume as PDF or DOCX; private GitHub repositories available for review upon request)