Roman Rott

Hello, my name is Roman Rott!

I'm a Ukrainian front-end/back-end developer with 10+ years of IT experience and 5+ years experience dedicated to web development and security audit of web applications. I specialize in developing secure and optimised apps as well as in testing websites for security vulnerabilities.

Ruby is my favorite when it comes to following TDD and OOP best practices, while JavaScript is the best one for front-end and functional programming.

I do enjoy building everything from small OSS libs, business sites, landing pages to rich interactive web apps, single page applications, etc.

I'm working remotely on web projects for clients all over the world and from time to time I take part in bug-bounty programs.

Web Developer

Over the 9 years I was working on various positions and at different departments in a big Cloud and Shared Hosting company, 6 of them were in Tech Support(Customer Relation) department and 4 in IT as a Ruby/Rails developer. There I grew up as a web-developer, as a manager, and as a person.

Now I am an Engineer at Sphere Software, a consulting company, where I've got extended expirience in React, Redux and ES6.

I also design and develop vulnerable applications for CTF hacking games that give an opportunity for researchers to practice their skills. Below is a portfolio that contains a list of such web services.

All of these sites were developed using Ruby, CoffeeScript, JS, ES6, React, Backbone, Sinatra, Padrino and RoR frameworks. Some of them handles large amounts of traffic on daily basis.

My Full-Stack web developer portfolio is a brief summary of the projects samples that I've accomplished during last 2 years.

Security Researcher

I like to test websites for security vulnerabilities (both white-box and black-box) at BugCrowd and other private bug bounty services. The result of my interest in ethical hacking has resulted in dozens of found and reported security issues in such services as:, ZeroMail,, etc

Last year I took part in a CTF(Capture The Flag security game) as a Game Master and designed several vulnerable web applications for CTF hacking games organized by «Berezha Security» for:

Community Development

Contributing to open source projects:

react-toolbox gitlab-org/gitlab-ce floere/phony dnesteryuk/site_prism.vcr

Developing local community: