Stefanos Flokos

Automotive Cybersecurity Engineer

Automotive Cybersecurity Engineer with a strong technical foundation in software development and system hardening. Specialized in securing embedded automotive architectures through Threat Analysis and Risk Assessment.

My objective is to contribute to the safety and security of connected vehicles by ensuring compliance with industry standards and implementing robust defense mechanisms against emerging automotive cyber threats.

Professional Experience

Automotive Cybersecurity Engineer

Software Competitiveness International

Oct 2024 - Present Athens, Greece

Performed Threat Analysis and Risk Assessment (TARA) per ISO/SAE 21434 for Over-the-Air (OTA) update architecture of embedded Android devices integrated in infotainment systems.
Performed Threat Analysis and Risk Assessment (TARA) ISO/SAE 21434 for Telematics Control Unit (TCU) architecture of connected vehicles.

Junior Software Developer

Business & Bytes Ltd

Sep 2023 - Oct 2023 Athens, Greece

Developed a Windows application for remote server monitoring with custom rules for system/database checks (.NET Framework, SQLite).
Created a secure web interface for rule status reporting and business statistics (Postgres, Razor Pages, Docker).

Software Developer Intern

Business & Bytes Ltd

Oct 2021 - Apr 2022 Athens, Greece

Led the frontend development team for a COVID-19 health monitoring system (European funded project).

Education

University of Piraeus

Department of Informatics

MSc in Cybersecurity and Data Science

2025 - Present Embedded Systems Security

National and Kapodistrian University of Athens

Department of Informatics and Telecommunications

BSc in Computer Science

Fall 2018 - Summer 2023 Minor in Software

↳ Conforming to ACM “Computer Science” curriculum

Bachelor Thesis: JSON Web Token vulnerabilities and their Mitigation

Certifications

Cloud Practitioner

CLF-C02 AWS Issued: Jan 2025

Security+

SY0-701 CompTIA Issued: Aug 2024

Technical Experience

Embedded Systems & Automotive

STM32, Zephyr OS, CANBus, Crypto

RTOS Security: Integrated cryptographic operations and secure libraries on STM32 microcontrollers using Zephyr OS, focusing on data protection in resource-constrained environments.
Vehicle Protocols: Experimented with CANBus module integration, analyzing message frames and network behavior to simulate and test in-vehicle communication scenarios.

Security Research & Exploitation

C, Assembly, Python, PHP

Vulnerability Analysis: Conducted white-box testing on legacy LMS platforms (OpenEclass), identifying and exploiting critical flaws including XSS, SQL Injection, and CSRF.
Binary Exploitation (CTF): Executed memory corruption attacks (buffer overflows, format string vulnerabilities) and cryptographic padding oracle attacks against remote C-based servers.

Core Software Engineering

C++, Java, Python, LLVM

System Architecture: Implemented low-level process management using semaphores and shared memory in C/C++, alongside custom database management using heap files.
Compiler Design: Developed a fully functional LL(1) parser and an intermediate code generator transforming MiniJava source code into LLVM IR.

Cloud & Infrastructure

Docker, Nginx, Bash, PostgreSQL

Self-Hosted Infrastructure: Architected and maintained a hardened Raspberry Pi server utilizing IPtables for network segmentation and Docker for service isolation.
Full Stack Deployment: Designed and deployed a containerized personal platform codebaseit.com using .NET Core, Postgres, and Nginx as a reverse proxy.

Skills

Languages

CC++PythonAssemblyBashC#Java

Automotive

ISO/SAE 21434TARACANBusZephyr OSSTM32Android Automotive

Infra & Web

DockerPostgreSQLNginx.NETAngularGit

Soft Skills

Quick-learning Teamwork Persistency in Problem Solving Analytical & Critical Thinking Attention to Detail Responsibility & Consistency