Portfolio ·
Python Developer · SOAR · NDR · Microservices

Ruslan Voitovych

Senior Software Developer · Krakow, Poland.
6+ years building cybersecurity products — SOAR, NDR, and high-throughput alert processing systems.
Contact LinkedIn GitHub
[email protected]
linkedin.com/in/rvoitovych/
Building systems where security and performance are never a compromise — since 2019.
Python REST API and microservices developer specialising in cybersecurity products — SOAR and NDR platforms. Experienced in designing and implementing high-throughput systems capable of processing hundreds of security alerts per minute, integrating with platforms like CrowdStrike, Splunk, Darktrace and more.
Proven team lead: mentored junior developers, drove 95% test coverage, led cross-team collaboration, and created training materials and documentation. Comfortable across the full delivery lifecycle — from architecture and CI/CD pipelines to performance optimisation and on-call production support.
Skills & Stack 01 / 03
Languages
Python Go JavaScript TypeScript
Frameworks
FastAPI Flask REST API Microservices
Databases
PostgreSQL Elasticsearch MongoDB CouchDB
Infrastructure
AWS GCP Docker Kafka CI/CD
Security
SOAR NDR SIEM
Leadership
Team Leadership Mentorship Task Planning Cross-team Collaboration Documentation
Career 02 / 03
Live
Jan 2024
→ Present
Senior Software Developer
UnderDefense · Krakow, Poland

Developing an internal SOAR platform for the MDR team and customers. Built RESTful APIs and integrations with third-party security platforms — including CrowdStrike, Splunk, LogRhythm, and Darktrace, among others — within a microservices architecture. Led and coordinated team efforts to optimise performance and delivery quality. Built an AI-driven solution that enriches security alerts and automation playbooks, reducing SOC analyst processing time by 30%. Designed data aggregation and sync functionality handling hundreds of security alerts per minute. Created comprehensive training materials and product documentation.

PythonFastAPIAWSPostgreSQLDockerSOARAI
Feb 2022
→ Dec 2023
Middle Software Developer
UnderDefense · Lviv, Ukraine

Worked on NDR (Network Detection and Response) product within a microservices architecture on GCP, developing custom security rules for network traffic analysis. Built RESTful APIs in Go and Python scripts to automate DevOps processes. Mentored two junior Python developers. Increased test coverage to 95% and resolved 100% of linter issues. Identified and resolved performance bottlenecks, improving service request processing speed by 10×.

GoPythonGCPNDRElasticsearchDockerKafkaMentorship
Jun 2019
→ Jan 2022
Junior Software Developer & Splunk Engineer
UnderDefense · Lviv, Ukraine

Developed Splunk applications in Python for collecting and storing network traffic data, building dashboards, and implementing automated security alert rules. Developed a high-performance Python handler processing up to 1 million network events, and Python-based security alerts handling up to 100,000 events per minute. Also began NDR development as a Go developer, and conducted R&D on information security products and network protocols as an R&D Specialist.

PythonGoSplunkNDRR&D
Credentials 03 / 03
Certification
PCAP 31-03
Python Institute Certified Associate in Python Programming. Issued September 2022.
ID: jozL.gaut.RO3j
Volunteering
NoNameCon
Volunteer at Ukraine's leading cybersecurity conference. Science & Technology. April 2019.
Open to opportunities
Let's work Together.
Get in touch LinkedIn GitHub