Miguel Cazares - Security Engineer (Mobile + AppSec) - Del Rio, TX

Security Engineer (Mobile + AppSec)

Security Principle

“Assume breach. Defense in depth. Ship with receipts”

I help teams ship features that are harder to break, harder to abuse, and easier to operate

$1.5M+

ATO losses prevented

6 apps

security checks shipped

Faster

incident response

Hardened

auth + identity

Security focus

What I do, how I do it, and proof it shipped

AppSec for mobile/web: secure auth flows, deep-link guardrails, abuse prevention
Secure SDLC: CI security gates, dependency hygiene, secrets detection
Threat modeling and design reviews teams can actually use
Privacy by design: data minimization, PII handling, retention controls

Project	Stack	Role	Impact	Links
AppSec for Mobile/Web	AppSec iOS Android	Security Engineer	Hardened auth flows, secure storage strategy, and deep-link validation patterns for production apps	Artifacts GitHub Request write-up
Identity & Account Protection	Auth Rate limiting Abuse Prevention	Security Engineer	Closed an account takeover exposure path and prevented $1.5M+ in potential losses	Artifacts GitHub Request case study
Secure SDLC Guardrails	CI/CD SAST Secrets	Builder	Shipped security checks across 6 apps with merge-time guardrails and repeatable release hygiene	Artifacts GitHub Request demo
Threat Modeling Reviews	Threat Modeling Design Reviews	Facilitator	Converted one-off review meetings into lightweight templates teams complete before release	Artifacts GitHub Request template
Incident Readiness	Logging Alerting Runbooks	Owner	Reduced downtime and improved response speed with clearer ownership and postmortem follow-through	Artifacts GitHub Request examples
Notes	AppSec Mobile Security Architecture	Writer	Planned posts: Mobile app security checklist; threat modeling that does not waste time; designing auth flows for abuse resistance this website github request notes contact

Project

Stack

Role

Impact

Links

AppSec for Mobile/Web

AppSec iOS Android

Security Engineer

Hardened auth flows, secure storage strategy, and deep-link validation patterns for production apps

Artifacts

GitHub Request write-up

Identity & Account Protection

Auth Rate limiting Abuse Prevention

Security Engineer

Closed an account takeover exposure path and prevented $1.5M+ in potential losses

Artifacts

GitHub Request case study

Secure SDLC Guardrails

CI/CD SAST Secrets

Builder

Shipped security checks across 6 apps with merge-time guardrails and repeatable release hygiene

Artifacts

GitHub Request demo

Threat Modeling Reviews

Threat Modeling Design Reviews

Facilitator

Converted one-off review meetings into lightweight templates teams complete before release

Artifacts

GitHub Request template

Incident Readiness

Logging Alerting Runbooks

Owner

Reduced downtime and improved response speed with clearer ownership and postmortem follow-through

Artifacts

GitHub Request examples

Notes

AppSec Mobile Security Architecture

Writer

Planned posts: Mobile app security checklist; threat modeling that does not waste time; designing auth flows for abuse resistance

this website github request notes contact

Roles I'm open to

Security Engineer (Mobile + AppSec)

Security focus