I build platforms, harden systems, and ship products that scale.

Senior software engineer with 7+ years building customer-facing portals, enterprise integrations, and security-critical systems. From authentication flows to cloud marketplace provisioning — I own the full lifecycle.

Experience

7+

Years building production platforms

Shipped

800+

Issues delivered end-to-end

Security

35+

Vulnerabilities found & resolved

Cloud

3

AWS, Azure, GCP marketplace integrations

Andrey Kishtov
Career progression
2019 — 2020

Product launch & foundation

Launched a customer portal from zero, integrated GCP Marketplace with SSO and JWT validation, resolved penetration test findings, and cut page load times from 15+ seconds to fast response.

170+ issues

2021 — 2022

Architecture & platform scale

Built a license server from scratch with Spring Boot, shipped AWS PrivateLink for enterprise customers, migrated all team builds to new CI infrastructure, and redesigned multi-subscription management.

290+ issues

2023 — 2025

Security, leadership & strategy

Led 30+ security remediations across penetration tests, launched a partner portal to production, architected marketplace V2 with SNS/SQS, Webhooks, and PubSub, and drove platform-wide modernization.

400+ issues

Summary

Started as a frontend developer shipping features and fixing bugs. Grew into architecting entire systems from scratch — license servers, partner portals, cloud marketplace integrations — and owning them through production.

800+ issues shipped across 7 years. The common thread: take the problem end-to-end, treat security as a first-class concern, and build things that last.

What I bring
01

Customer portals, partner platforms, and marketplace integrations across AWS, Azure, and GCP

02

Authentication systems, SSO, MFA, and 35+ security vulnerability remediations

03

Billing integrations, subscription management, and cloud marketplace provisioning

04

License servers, entitlement APIs, and enterprise feature architecture built from scratch

Core stack

Frontend

Vue.js / Vue 3, Pinia, Element+, Cypress

Backend

Spring Boot, Node.js, REST APIs, JWT/OAuth

Cloud

AWS (S3, SNS/SQS, PrivateLink), Azure, GCP (PubSub)

Data & Ops

MySQL, Redis, Docker, Kubernetes, Jenkins CI/CD

Integrations

Salesforce, Zuora, Keycloak, Grafana

Principles

I prefer durable systems over clever ones.

01

Build for clarity first, then scale the complexity only where it earns its keep.

02

Treat security as product work, not as an afterthought.

03

Prefer systems that are understandable, observable, and easy to change.

04

Own the feature beyond the merge: rollout, support, and follow-through matter.