Welcome to my portfolio!

Hey, I'm
Olof Segergren a Software developer an IT Security enthusiast

I'm a Software developer with a big interest in programming, IT Security, and computer hardware. I program a lot in my spare time and for Open Source projects like RePlays.

svg image

Projects I have created and participated in

Security Vulnerability Reports

Image
Data Leakage - October, 2023

An exposed endpoint enabled the retrieval of an individual's email address using their personnummer (social security number). This vulnerability allowed one to determine whether an individual has or has had insurance with the company. It also enables targeted phishing attacks and fraud attempts.

Ethical Disclosure Process: More than 90 days have passed since the initial report was sent. Despite providing time for assessment and remediation, there has been no further communication or confirmation of a fix from the affected organization's side.

Sensitive Data Exposure - September, 2023

A public endpoint allowed searches for addresses, first names, and last names of Swedish children based on their personnummer (social security number). Additionally, it could be determined whether an individual had protected identity or not.

Ethical Disclosure Process: The company fixed the issue within two weeks.

Image
Insecure Direct Object References - February, 2023

Gym Capacity Manipulation Vulnerability in SATS Gym Management System API allowed unauthorized users to modify gym capacity values via an internal API endpoint. This information was displayed on their website and in the app used by their 700 000 members.

Ethical Disclosure Process: The company fixed the issue within one week and, as a token of appreciation for my findings, gave me a reward.

Experiences

2024

Software DeveloperFolksam

Jan 2024 - Ongoing

Currently working in team Folksams Finest on modernising older web applications from the ground up using technologies such as Java 21, Springboot 3, Openshift, and ArgoCD.

2023

Junior Software DeveloperFolksam

Aug 2022 - Dec 2023
2022

Internship with focus on IT security & DevOpsMartin & Servera

2021 - 2022

Key projects during my Internship at Martin & Servera:

  • Distinguish strategic IT security and Operational IT security and how they interact.
  • The impact of data protection regulations on the company.
  • The relationship between IT security and data protection (GDPR).
  • IT security and programming in agile teams.
  • IT security in the cloud.
  • Azure Fundamentals Certification
  • Programming in C#
  • Creating dashboards in Power BI

2022

CO-founder & IT managerSVIT

2020 - 2022

Co-founder & IT manager. SVIT is the union section for those who study Information Systems and Digital Business Development. We work to ensure that students get as much as possible out of their study time. I plan, lead and develop IT Infrastructure for the section and take care of the social media (Instagram, Discord, Facebook).

Education

2022

Information SystemsUppsala Universitet

2019 - 2022

Bachelor's program in Information Systems at Uppsala Universitet. Courses includes programming, databases, data analytics and visualization, IT Security and project management approaches and frameworks.

Programming courses: C#, Java, Javascript, SQL, IT Security, Android development, Algorithms and data structures, Architecture and design patterns.

2019

Engineering SciencesÖsteråkers Gymnasium

2016 - 2019

Improved my knowledge and skills in technology, programming, computer science, physics, and mathematics.

Interested to work together? Let's talk