Rab Michael Bombeo | Secure Full-Stack Developer

I turn complex civic, real estate, security, and automation workflows into modern web platforms with Next.js, API design, cloud infrastructure, and security-first execution.

Email me

Software developer

Rab Michael Bombeo

Architecture
Security
Delivery

years IT and software experience

135

security vulnerabilities remediated

47k+

towns covered in civic platform data

15%

productivity gain through automation

Portfolio-worthy work

Built systems, real outcomes.

01 / Civic Tech Platform

Constituency

Impact

Context

A public-facing civic engagement platform connecting Irish citizens with elected representatives across 26 counties and 47,000+ towns.

Problem

Citizens needed representative lookup, case workflows, petitions, payments, and secure status tracking in one reliable product.

Contributions

Architected and built the platform end to end with Next.js, React, Django Ninja, PostgreSQL, Redis, Docker, and AWS.
Implemented case management, petition workflows, analytics, Stripe payments, four-role RBAC, and device-aware sessions.
Added AWS Rekognition image redaction and remediated 135 vulnerabilities, including 5 critical and 65 high severity findings.

Evidence

Covered 26 counties, 47,000+ towns, and closed 135 security findings.

Live site

Next.jsDjango NinjaAWSRBACStripe

02 / Security Case Study

Secure App Hardening

Impact

Context

Application security and compliance work across production web systems handling sensitive workflows and user data.

Problem

The system required risk reduction across authentication, session behavior, access boundaries, and known vulnerability exposure.

Contributions

Applied OWASP, SSDLC, and GDPR principles to reduce real product risk.
Strengthened authentication, RBAC, session security, and privacy-sensitive media handling.
Turned vulnerability findings into traceable remediation work with concrete closure numbers.

Evidence

Closed 135 vulnerabilities, including critical and high severity issues.

OWASPSSDLCGDPRRBACSessions

03 / Real Estate Lead Platform

Gilder

Impact

Context

A full-stack real estate product for property discovery, lead generation, agent workflows, and user account actions.

Problem

The product needed clean listing UX, lead capture, saved homes, home valuation flows, API quality, and secure access control.

Contributions

Built search, listing detail, galleries, saved homes, authentication, and home valuation workflows.
Developed backend modules for properties, leads, showings, neighborhoods, analytics, mortgage tools, and agent operations.
Improved platform quality with JWT auth, role-based access, rate limiting, API documentation, tests, and migrations.

Evidence

Delivered complete consumer and agent workflows with stronger platform security.

ReactAPIsJWTTestingMigrations

04 / Senior Web Developer

Aquila 2

Impact

Context

Senior Web Developer engagement delivering full-stack web platforms, SIEM tooling, MSSP backends, and risk management applications.

Problem

The team needed secure, compliant tooling for SIEM, file management, auto-suggestions, and managed security service provider workflows.

Contributions

Built and maintained full-stack features for web platforms and project management tools.
Implemented secure AWS S3 file management to support privacy and security compliance requirements.
Delivered solutions for SIEM-related tooling, whitelabeled MSSP backends, auto-suggestion services, and a risk management application.

Evidence

Delivered secure SIEM, MSSP, file compliance, and risk management platform capabilities.

Live site

AWS S3SIEMMSSPRisk ManagementWeb Platforms

05 / Client Website

Consulting Website Portfolio

Impact

Context

A paired client website portfolio for leadership and energy consulting brands, built on Squarespace and refined with custom HTML, CSS, and visual assets.

Problem

Both clients needed polished, credible websites that clearly communicated their expertise, services, and brand positioning.

Contributions

Built and refined both sites using Squarespace with custom HTML/CSS enhancements.
Created and adapted visual assets using Canva, Figma, and Photoshop.
Shaped clean service pages, brand-forward layouts, and responsive presentation for professional audiences.

Evidence

Delivered two polished client websites for consulting businesses.

Competent Leaders Milton Stark

SquarespaceHTMLCSSFigmaPhotoshop

06 / Workflow Automation

WeFlex Automation

Impact

Context

Internal automation work connecting business tools, databases, reporting, and repeatable operating procedures.

Problem

Teams were losing time to repetitive manual workflows, recurring reporting, and process knowledge scattered across tools.

Contributions

Designed workflow automations across business tools and backend services.
Automated reporting and reduced repetitive operational work.
Produced SOPs and technical documentation so processes could be reused and maintained.

Evidence

Improved team productivity by 15%.

AutomationReportingSOPsBackend Services

Repeating value themes.

The throughline is not one framework. It is reliable ownership of systems where product, security, and operations meet.

Secure Full-Stack Delivery

Products ship with authentication, authorization, session controls, secure coding, and vulnerability remediation built into the work.

End-to-End Ownership

Frontend UX, backend APIs, databases, infrastructure, testing, and docs are treated as one product system.

Operational Leverage

Automation, reporting, SOPs, and workflow design reduce repetitive work and improve how teams execute.

Complex Domain Translation

Civic tech, real estate, cybersecurity, automation, and infrastructure problems become usable, maintainable products.

Technical range.

A practical stack for shipping modern web apps that survive real users, real data, and real security expectations.

Frontend

Next.jsReactTypeScriptTailwind CSSshadcn/ui

Data + APIs

Django NinjaNode.jsPostgreSQLPrismaRedis

Security + Cloud

OWASPSSDLCDockerAWSJWTRBAC