Thilan Dissanayaka

Thilan Dissanayaka

Engineer / Security Researcher / Developer

Building secure, scalable applications with modern technologies. Passionate about clean code and cybersecurity.

Blog Resume

About Me

I completed my BSc in Electrical Engineering, where I explored areas like power generation, distribution, and machine systems. But even back then, my true interest was always in computers and software. I’ve always loved coding and building things that solve real-world problems. Specially anything related to low-level systems.

Today, I work as a Security Engineer at WSO2. My journey in tech began with a curiosity about how things work under the hood, which naturally led me into both software development and cybersecurity.

I specialize in full-stack development with a strong focus on security best practices. Whether it’s designing scalable architectures, implementing secure authentication systems, or optimizing system performance, I approach every project with attention to detail and a commitment to quality.

Career Experience

Security Engineer Icon

Security Engineer

WSO2

2025 june - Present
  • Focus on application security, Penetration testing and vulnerability assessments.
  • Hands on Experience in Java, Go application security.
  • Works on both red team and blue team security.
Intern Icon

Software Engineer Intern

WSO2

2024 december - 2025 june
  • Worked in API Manager BU.
  • Completed a research project on Token validation in Edge computing.
  • Developed the Ballerina Web3 tool and the library to work with blockchains.

Education

Award Icon

BSc in Electrical and Information Engineering

University of Ruhuna, Faculty of Engineering

Specialized in Software Engineering

A comprehensive multidisciplinary program covering Electrical Engineering, Software Engineering, Telecommunication Engineering, and Electronics Engineering.

Skills & Technologies

Programming Icon

Software Development

Frontend API/Middleware Mobile Apps BlockChain C/C++/Assembly OS/HPC
Frameworks Icon

Security

AppSec Pen testing Exploit dev Shellcoding Hardware Mobile
Tools Icon

DevOps

Linux Docker Kubernetes Database GIT AWS
Security Icon

Security

Embedded sys PCB Avionics Mechatronics

Featured Projects

SecureAuth Platform

A comprehensive authentication system with multi-factor authentication, OAuth integration, and advanced security features including rate limiting and token rotation.

React Node.js PostgreSQL JWT Redis
Code Demo

Vulnerability Scanner

Automated security scanning tool that identifies common vulnerabilities in web applications. Features include SQL injection detection, XSS scanning, and security header analysis.

Python FastAPI Docker MongoDB
Code

E-Commerce Dashboard

Full-stack analytics dashboard for e-commerce platforms with real-time data visualization, inventory management, and sales tracking capabilities.

Next.js TypeScript Tailwind CSS Supabase
Code Demo

API Gateway Service

Microservices API gateway with request routing, load balancing, authentication, rate limiting, and comprehensive logging for monitoring and debugging.

Go Redis PostgreSQL Docker
Code