{
  "basics": {
    "name": "Justin Wofford",
    "label": "Security Engineer | Application Security | Penetration Testing",
    "email": "justin@wofford.dev",
    "website": "https://signal.wofford.dev",
    "summary": "Application security engineer and builder focused on secure systems, wireless research, and practical privacy tooling. Based in Austin, Texas.",
    "location": {
      "city": "Austin",
      "region": "Texas",
      "countryCode": "US"
    },
    "profiles": [
      {
        "network": "LinkedIn",
        "url": "https://www.linkedin.com/in/justinwofford21/"
      },
      {
        "network": "GitHub",
        "url": "https://github.com/JayDub21"
      }
    ]
  },
  "work": [
    {
      "name": "Texas Department of Family and Protective Services",
      "position": "Application Security Analyst",
      "startDate": "2024-09",
      "endDate": null,
      "summary": "Primary technical owner for application security in production environments.",
      "highlights": [
        "Secure SDLC guidance, vulnerability triage, and risk analysis for agency systems",
        "Partner with engineering teams on remediation and defensive controls"
      ]
    },
    {
      "name": "Sync Power Solutions, LLC",
      "position": "Software Engineer",
      "startDate": "2021-01",
      "endDate": null,
      "summary": "Full-stack engineering with security-minded delivery practices.",
      "highlights": [
        "Product and infrastructure engineering across workstreams"
      ]
    },
    {
      "name": "Texas Commission on Law Enforcement (TCOLE)",
      "position": "Information Security Officer",
      "startDate": "2023-01",
      "endDate": "2024-08",
      "summary": "Led information security for a state law-enforcement agency.",
      "highlights": [
        "Policy, risk, and operational security ownership across systems and vendors"
      ]
    },
    {
      "name": "Texas Commission on Law Enforcement (TCOLE)",
      "position": "Programmer III",
      "startDate": "2021-10",
      "endDate": "2023-01",
      "summary": "Built and maintained agency application services.",
      "highlights": [
        "Transitioned into ISO role with deeper security ownership"
      ]
    },
    {
      "name": "Fremont Capital Partners",
      "position": "Software Engineer",
      "startDate": "2021-02",
      "endDate": "2021-10",
      "summary": "Software engineering for capital/markets-facing product work.",
      "highlights": []
    },
    {
      "name": "Continuum Spine",
      "position": "Director of Operations",
      "startDate": "2013-11",
      "endDate": "2019-12",
      "summary": "Operations leadership with HIPAA and FDA HCT/Ps compliance ownership.",
      "highlights": [
        "Maintained HIPAA and company information security practices",
        "Established and sustained FDA HCT/Ps licensing and compliance programs"
      ]
    }
  ],
  "education": [
    {
      "institution": "The University of Texas at Austin",
      "area": "Full Stack Web Development",
      "studyType": "Certificate",
      "startDate": "2019",
      "endDate": "2020"
    },
    {
      "institution": "University of North Texas",
      "area": "",
      "studyType": "Bachelor of Science",
      "startDate": "2007",
      "endDate": "2012"
    }
  ],
  "certificates": [
    {
      "name": "GIAC Python Coder (GPYC)",
      "date": "2026-04",
      "url": "https://credly.com/badges/d2a2bad4-ac5d-440a-91c2-4b7f914d14c5/public_url",
      "issuer": "GIAC"
    },
    {
      "name": "GIAC Web Application Penetration Tester (GWAPT)",
      "date": "2025-08",
      "url": "https://www.giac.org/certifications/web-application-penetration-tester-gwapt/",
      "issuer": "GIAC"
    },
    {
      "name": "CompTIA Security+",
      "date": "2023-06",
      "url": "https://www.comptia.org/certifications/security",
      "issuer": "CompTIA"
    }
  ],
  "skills": [
    {
      "name": "Security",
      "keywords": [
        "Application security",
        "Web app pentesting",
        "Threat modeling",
        "Secure SDLC",
        "Risk analysis"
      ]
    },
    {
      "name": "Engineering",
      "keywords": [
        "Python",
        "JavaScript/TypeScript",
        "Rust",
        "Node.js",
        "Cloudflare Workers"
      ]
    },
    {
      "name": "Infrastructure",
      "keywords": [
        "Zero Trust",
        "Cloudflare Access",
        "Docker",
        "Linux",
        "Wireless research"
      ]
    }
  ],
  "projects": [
    {
      "name": "Sigil",
      "description": "Rust-native wireless security toolkit.",
      "url": "https://signal.wofford.dev/work#sigil",
      "keywords": ["Rust", "802.11", "Security"]
    },
    {
      "name": "GhostProxy",
      "description": "Privacy-focused proxy and tunneling experiments.",
      "url": "https://signal.wofford.dev/work#ghostproxy",
      "keywords": ["Privacy", "Networking"]
    },
    {
      "name": "The Lab",
      "description": "Home lab for AD, containers, and security practice.",
      "url": "https://signal.wofford.dev/work#thelab",
      "keywords": ["Home lab", "AD"]
    }
  ]
}
