Aller au contenu principal
Accueil Accueil

Main navigation

  • Communauté
  • Challenges
  • Offres d'emploi
fr
  • English
  • French
  • Dutch
JT

John Turay

Bug bounter @ Intigriti
Anvers, Belgique

Application Security Engineer with 6+ years in penetration testing, AppSec, and secure development. CNSS-certified expert in embedding security into SDLC and CI/CD pipelines. Proficient in Java, JavaScript, Python; skilled in SAST, DAST, SCA, and API Security. Experienced in container/cloud security and reducing vulnerability risk through developer collaboration. Active bug bounty contributor and CTF participant.

Rôles occupés

Développeur / Programmeur< 2 years
Application/Solution Architect5 - 10 years

Back-end

Java
Python

Front-end

JavaScript

Miscellaneous

APIs

Business Intelligence

SAS

Cloud

Docker
Langues
Bon English
English
Bon
Dutch
Moyen
Expériences professionnelles
Since 2016
Bug bounter @ Intigriti
01 June 2023 -

Conduct in-depth vulnerability assessments on web applications and APIs using SAST/DAST methodologies. Perform API security testing using Burp Suite and OWASP ZAP, combining manual and automated approaches. Deliver comprehensive security reports with prioritized remediation recommendations for development teams. Collaborate with developers to reproduce findings, validate fixes, and promote secure coding practices.

Bug bounter @ Bugcrowd
01 January 2023 -

Identify and validate complex security vulnerabilities including SQLi, XSS, IDOR, and CSRF. Write detailed technical reports with proof-of-concept (PoC) exploits for program owners. Collaborate closely with stakeholders to prioritize findings based on business risk.

Software Engineer @ Ubuntu Tech Afrika
01 March 2023 - 01 June 2025

Developed REST APIs using Java (Spring Boot) and Angular (TypeScript/JavaScript) with security embedded throughout the development lifecycle. Implemented authentication, authorization, and input validation following OWASP guidelines. Collaborated with DevOps to integrate security checks into CI/CD pipelines.

Ethical Hacker @ Lavenir SAS
01 February 2022 - 01 July 2022

Executed comprehensive penetration tests on web applications using manual and automated tools. Identified injection flaws, session weaknesses, and business logic vulnerabilities.

penetration Tester @ Link Corporation
01 January 2019 - 01 December 2021

Conducted black-box and gray-box assessments on production web applications against OWASP Top 10. Performed static code reviews across Java, JavaScript, and PHP codebases.

Senior Web Developer @ Real Developers
01 January 2016 - 01 December 2016

Designed and developed secure PHP-based e-commerce applications using LAMP stack. Mentored junior developers on secure coding practices and web security fundamentals.

Études et diplômes
Since 2022
Informatica @ University of Hungary
01 January 2025 - 31 December 2025

Master in Informatica.

Informatica @ Sierra Leone University
01 January 2022 - 31 December 2022

Professionele bachelor in Informatica.

Connect with John Turay

Bon retour parmi nous

Bienvenue à bord!

  • S'identifier
  • Devenir membre
CAPTCHA
Cette question sert à vérifier si vous êtes un visiteur humain ou non afin d'éviter les soumissions de pourriel (spam) automatisées.

Oops, j'ai

oublié mon mot de passe
M'inscrire avec mon mail
footer logo

EDITx permet aux informaticiens, aux sociétés et aux écoles supérieures de mettre en évidence leur expertise informatique, de réseauter, participer à des concours technologiques et de trouver des emplois IT.

Follow us

  • editx-facebook
  • editx-twitter
  • editx-instagram

Share the ❤ with your friends

Footer

  • EDITx
    • About us
    • FAQ
    • Contact
  • Tech Talents
    • Community
    • Tech Challenges
    • IT jobs
  • Employers
    • About Challenges
    • Use cases
    • Products

©2023 EDITX - All rights reserved - Use policy - Politique de confidentialité - Conditions des concours