Laci Szabo

OE NIK

Master's degree, Computer and Information Sciences and Support Services

N/A – Present

Self-employed

Company Owner

August 1, 2021 – Present

Budapest, Hungary

Falcon.io

Team Lead

April 1, 2019 – August 1, 2021

Falcon.io

Staff backend engineer

March 1, 2017 – April 1, 2019

Falcon.io

Senior backend engineer

August 1, 2015 – March 1, 2017

Sonrisa International Inc.

Technical Team Lead

March 1, 2015 – August 1, 2015

Sonrisa International Inc.

Senior software developer

May 1, 2012 – March 1, 2015

Statlogics Zrt.

Software Engineer

January 1, 2008 – May 1, 2012

Mentor Graphics

Intern

September 1, 2006 – June 1, 2007

Salesforce Integration

February 1, 2019 – August 1, 2021

Our customer contracts had been stored in Salesforce and the lifecycle of a new customer was also starting in Salesforce, therefore we used it as a source of truth for our customer base. My task was to design and lead the implementation of an integration project between Salesforce Contracts domain and our application domain. Tasks to solve: - automatic onboarding of new customers with the platform once they sign their contract. Invite emails. tutorial setup flow on the frontend, etc... - snapshot Salesforce data locally in case of Salesforce downtimes - maintain snapshot consistency and provide a Restful API for other services

Social Media Token Proxy

August 1, 2017 – January 1, 2019

The company had a Unified Social Media Management platform built with a microservice architecture. There were different domains responsible for different type of Social Media integrations. Advertisement had its own microservice domain, the same way as for example posting or indexing comments. The platform supported several Social Media providers, managing permission tokens for each, requiring different token management logic for each also. Refreshing, revoking, etc.. This setup had several problems: - sometimes expired tokens caused chain reaction of errors - the tokens were exposed for too many systems, increasing the security risks We developed a internal token management microservices storing tokens in a secured way in HashiCorp Vault. We also introduced new "Social Media Proxies" for each providers which resolved the appropriate client tokens (based on request headers and authn tokens) and enriched the requests before forwarding. This way introduced centralized control over the requests towards social media platforms: - centralized token management removed the additional hassle with tokens for every other domain in the company - centralized rate limiting which protected our client's request limits - audit log and control over token accesses - supporting multiple tokens based on provider

GDPR - Audit-log

August 1, 2016 – August 1, 2017

The GDPR regulations forced us to invest resource into a platform wide audit-log system. My responsibility was to discover and design the solution and lead the implementation project. My main goal was to design a solution which beneficial for the company and tech stack even over the scope of audit-log and GDPR. We were implementing a publish-subscribe model based solution where each system domain publishes Since one of our main RND goal was to continuously refactor our legacy monolith to event-driven microservices the design was built on a publish-consumer based model where the audit-log was listening and ETL services were indexing every domain event in the system as a Big Brother. This solution not only introduced a non-invasive way of audit-log integration for different product domains but since lot of the domains hadn't implemented domain event publishing that time, it brought our service infrastructure much closer to our goal: a proper event-driven microservice architecture. Besides the audit-log functionalities within the scope of audit-log we also introduced domain event publishing in 8+ domains and opened the possibility for future integrations with minimal effort.

Introducing OIDC for the Platform

January 1, 2016 – August 1, 2016

This projects goal was to replace our session based homebrew Authentication solution with a standardized token based technology, using Keycloak. I was leading the project as a technical lead. Did discoveries and represented the design along with the migration plan for the complete platform. I also took a big part in the implementation tasks and assisted in the migration procedure for the other teams in the company. I feel this project a great success because we introduced the changes seamlessly for 2000+ concurrent users without any real issue or rollbacks and we enabled such features as: - Two-factor authentication - JWT based authz - Enable SSO for our customers with SAML/OIDC - Possiblity to use centralized auhtz with UMA

CAbi online

March 1, 2015 – July 1, 2015

Participated as a tech lead in the development of an application made for an MLM company. Besides general lead tasks I was mostly involved with back-end development, but I also contributed in front-end tasks. - JHipster stack - Jpa 2.0 (hibernate) - QueryDsl - Spring - Spring-integration - Spring-security - Spring-data - JMX - Codahale metrics - Mysql spatial - Liquibase - Apache Tomcat 7 - (angularJS, Twitter bootstrap)

NKP-FTR

January 1, 2015 – March 1, 2015

An application developed to support digitalization of land-measuring data for the Nemzeti Kataszteri Program. My primary task was the development of the workflow layer and the implementation of some higher complexity Wicket components. - JPA 2.0 (hibernate) - QueryDsl - Activiti jBPM workflow - Spring-security - Spring-data - Postgres SQL - Liquibase - Apache Wicket - JQuery - Apache Tomcat 7 - Alfresco CMS

KH Apollo program

September 1, 2013 – January 1, 2015

Outsourced participation in the development of a multi-tier application for KBC group for almost two years duration. The application, which consisted several modules was developed as an exchange of the legacy application modules used by the bank. During my stay I was participating in front-end and back-end development, supporting version changes, and implementing a general code base shared among the modules. Besides these I have developed several broadly used services and main features in the system (server push messages, shared module menus), etc. - EJB 3.1 - JPA 2.0 (hibernate) - Oracle 11g - Oracle Coherence - Apache Wicket - JQuery - Websocket with Atmosphere - Twitter bootstrap - Weblogic in Cluster - jax-rs, jax-ws - Dozer - JMS

NAV OPG

March 1, 2013 – September 1, 2013

I have participated in the development of the back-end module of NAV’s (National Tax Authority) new online cash register system. I have assembled the structure of the Maven project, defined the business interfaces and helped to implement them. In addition to these I have also supported the onsite deployment processes. - EJB 3.1 - JPA 2.0 (hibernate) - Oracle 11g - Weblogic in cluster - jax-ws (Apache CXF) - JMS

MAVIR Wind strength and direction visualization

January 1, 2013 – March 1, 2013

We created a GeoServer based system for MAVIR (Hungarian Power Companies) in three different projects. This consisted of a spring-batch based Java application to load and process spatial data, and a GeoServer instance. - Spring-batch - Spring-data - JPA 2.0 (hibernate) - Oracle 11g Spatial - GeoServer - KMZ and KML files

KFKI-IDM

May 1, 2012 – January 1, 2013

This was a workflow based identity management system for KFKI (Central Research Institute for Physics). Among back-end and workflow development I have created the Maven project layout, the base of the service layer and participated in java technical decisions. - JPA 2.0 (hibernate) - Activiti jBPM workflow - Spring-security - Spring-data - Mysql - Liquibase - Apache Wicket - JQuery - jax-ws - Apache Tomcat 7 - Apache Directory (LDAP)

Credilogic

September 1, 2007 – May 1, 2012

Our team had a dedicated task: to develop and support credit scoring and accounting systems for the leading financial institution in Hungary. This includes automatic scoring/decision capabilities and web-based acquisition modules also. I was the only one in the team responsible for developing and maintaining the system modules written in Delphi. Besides these activities occasionally I also developed the Java Web modules, and I took big part in the development and refactoring of our legacy middleware systems written in Java or Oracle PL/SQL. The continuous phone and technical support was another part of my main accountabilities which mainly consisted of resolving production system issues and problems during the upgrade processes. On a daily basis we usually supported testing, composed complex statistical database queries or answered business questions. - Java - Spring - Hibernate - BeanShell / Groovy script - Ant, Maven - jax-ws (Apache CXF) - Struts 1 - Swing - Oracle 12g - Oracle PL/SQL Delphi 7 / Delphi 2010 / Delphi XE2, Direct Oracle Acces (DOA), JEDI, Webservice

Certified Enterprise Integration Specialist

VMware

June 27, 2026 – Present