Hi! My name is

Patrick Jfremov-Kustov

Designing, building, and monitoring security functions

Proficient in·Python·Java·SQL·Bash·FastAPI·Flask·AWS·Azure·Google Cloud·Terraform·GitHub Actions·DevSecOps·SIEM/XDR (Rapid7)·EDR (Crowdstrike)·Email Gateway Security (Mimecast)·VPCs·Security Groups·Subnets·EC2·Load Balancers·CosmosDB·Azure Functions·Linux·OAuth 2.0·Webhooks·NoSQL (Firestore, MongoDB)·Burp Suite·Nmap·Wireshark·Metasploit·Kali Linux·OWASP Top 10·ISO/IEC 27001·Penetration Testing·CTFs·TryHackMe·Security Operations·Incident Response·Cloud Security·Python·Java·SQL·Bash·FastAPI·Flask·AWS·Azure·Google Cloud·Terraform·GitHub Actions·DevSecOps·SIEM/XDR (Rapid7)·EDR (Crowdstrike)·Email Gateway Security (Mimecast)·VPCs·Security Groups·Subnets·EC2·Load Balancers·CosmosDB·Azure Functions·Linux·OAuth 2.0·Webhooks·NoSQL (Firestore, MongoDB)·Burp Suite·Nmap·Wireshark·Metasploit·Kali Linux·OWASP Top 10·ISO/IEC 27001·Penetration Testing·CTFs·TryHackMe·Security Operations·Incident Response·Cloud Security·Python·Java·SQL·Bash·FastAPI·Flask·AWS·Azure·Google Cloud·Terraform·GitHub Actions·DevSecOps·SIEM/XDR (Rapid7)·EDR (Crowdstrike)·Email Gateway Security (Mimecast)·VPCs·Security Groups·Subnets·EC2·Load Balancers·CosmosDB·Azure Functions·Linux·OAuth 2.0·Webhooks·NoSQL (Firestore, MongoDB)·Burp Suite·Nmap·Wireshark·Metasploit·Kali Linux·OWASP Top 10·ISO/IEC 27001·Penetration Testing·CTFs·TryHackMe·Security Operations·Incident Response·Cloud Security

Download CV

About Me

Cybersecurity graduate with a First-Class BSc in Computer Science (University of Southampton, 2025) and hands-on experience across enterprise security, cloud security, and penetration testing. CompTIA Security+ certified and ranked in the top 1% on TryHackMe, with proven skills in SecOps, DevSecOps, and offensive security through CTFs and exploitation labs. Experienced in securing cloud infrastructure with Terraform, developing APIs with Python/FastAPI, and integrating security into CI/CD pipelines. Proficient in penetration testing tools including Burp Suite, Nmap, Wireshark, Metasploit, and Kali Linux. Proven communicator with experience delivering security workshops to technology departments and translating complex concepts for diverse audiences.

Experience

Work Experience

Jun 2024 – Sep 2024
Security Operations & DevSecOps · Esure Group(United Kingdom - Remote)
- Proficient in Python and SQL, leveraging FastAPI for web development and implementing POST endpoints, webhooks and CRUD APIs
- Built cloud infrastructure using Terraform, automating the provisioning and management of AWS resources, including VPCs, security groups, subnets, and EC2 instances
- Developed webhook endpoint for Wiz integration and implemented CSPM controls such as S3 Block Public Access
- Developed CI/CD pipelines (GitHub Actions) and advocated for DevSecOps shift-left security practices, integrating security into the development lifecycle
- Gained hands-on experience with SIEM/XDR (Rapid7), EDR (Crowdstrike), and email gateway security (Mimecast)
- Performed SIEM/XDR (Rapid7) log analysis and initial incident triage, escalating per playbooks and contributing to containment and remediation notes
- Contributed to SecOps operations, including ISO 27001 supplier assurance and phishing email handling, strengthening understanding of security tools and compliance
PythonFastAPITerraformAWSGitHub ActionsDevSecOpsSIEM/XDRRapid7CrowdstrikeMimecast
Sep 2023 – Present
Onboarding & Acquisitions - Team Member · Starling Bank(United Kingdom - Remote)
- Performed due diligence on a high volume of account applications, verifying documentation against internal/external sources to ensure regulatory compliance and mitigate risk
- Coached and upskilled team members on application review processes, effectively supporting management and improving overall performance
- Designed and delivered workshops to the team on complex areas requiring in-depth knowledge, enhancing accuracy and consistency across operations
Risk ManagementComplianceTraining & Development
Nov 2022 – Present
Founder & Technical Operations Lead · House of Veins(United Kingdom)
- Founded and managed an e-commerce business, gaining hands-on leadership and end-to-end technical ownership
- Implemented security best practices in business operations, including multi-factor authentication, access controls, and GDPR-conscious handling of customer data
LeadershipE-commerceSecurity Best PracticesGDPR

Education

2022 – 2025
BSc (Hons) Computer Science, First Class (1:1) · University of Southampton(Southampton, United Kingdom)
- Dissertation: "Collaborative Access Control for People with Mild Dementia" - 85%; undergoing publication to an ACM conference (CPSIoTSec 2025)
- Applied the kill chain model to analyse cyber-attacks and evaluate threat actor profiles (Principles of Cyber Security) - 79%
- Developed Python-based Azure Functions for CosmosDB CRUD operations; deployed FunctionApps ensuring seamless cloud service integration (Cloud Application Development) - 79%
- Explored web and cloud application attack/defence strategies, strengthening security knowledge beyond industry standards (Web & Cloud-Based Security) - 76%
- Demonstrated exceptional programming proficiency by achieving 90% in a Java project and 95% in UNIX/SQL databases
Computer ScienceCybersecurityPythonJavaAzureCosmosDBSQL
A-Levels · The College of Richard Collyer(United Kingdom)
- A* Mathematics; A Computer Science; A Psychology

Leadership & Activities

Ongoing
CTFs & Labs · Cybersecurity Competitions & Community(United Kingdom)
- Ranked in the top 1% on TryHackMe
- Regularly engage in Capture the Flag (CTF) exercises
- Applied a structured pen-testing workflow (reconnaissance, enumeration, exploitation, post-exploitation) across web, network, and privilege-escalation labs
TryHackMeCTFPenetration TestingKali LinuxBurp SuiteNmap

Certifications & Awards

Certifications ·
- CompTIA Security+ (2025)
- CyberFirst Futures (SCQF Level 5)
- AWS Cloud Practitioner Course (O'Reilly)
- OSCP (in progress)
- HTB CPTS (in progress)
CompTIA Security+CyberFirst FuturesAWS Cloud PractitionerOSCP
Awards ·
- The Ranstad Education ICT Award

Projects

Principles of Cyber Security

March 2024

Applied the kill chain model to analyse cyber-attacks and evaluate threat actor profiles.

CybersecurityKill Chain ModelThreat AnalysisAttack AnalysisSecurity Assessment

Web and Cloud Based Security

November 2024 - January 2025

Explored cloud and web application security, emphasising attack and defence strategies to enhance cybersecurity knowledge.

Cloud SecurityWeb SecurityCybersecurityAttack & DefenceSecurity Analysis

Collaborative Access Control for People with Mild Dementia

September 2024 - October 2025

Built a proof-of-concept access control system connecting multiple IoT data sources for people with dementia, based on security principles. The system is designed for cloud deployment and cross-device compatibility.

IoTAccess ControlCloud ComputingSecurityTypeScriptPythonMulti-DeviceHealthcare Technology