Overslaan en naar de inhoud gaan
Home Home

Main navigation

  • Community
  • Challenges
  • Jobs
nl
  • English
  • French
  • Dutch
JT

John Turay

Bug bounter @ Intigriti
Antwerpen, België

Application Security Engineer with 6+ years in penetration testing, AppSec, and secure development. CNSS-certified expert in embedding security into SDLC and CI/CD pipelines. Proficient in Java, JavaScript, Python; skilled in SAST, DAST, SCA, and API Security. Experienced in container/cloud security and reducing vulnerability risk through developer collaboration. Active bug bounty contributor and CTF participant.

Top functies

Developer / Programmer< 2 years
Application/Solution Architect5 - 10 years

Back-end

Java
Python

Front-end

JavaScript

Miscellaneous

APIs

Business Intelligence

SAS

Cloud

Docker
Taal
Goed English
English
Goed
Dutch
Gemiddeld
Werkervaring
Since 2016
Bug bounter @ Intigriti
01 June 2023 -

Conduct in-depth vulnerability assessments on web applications and APIs using SAST/DAST methodologies. Perform API security testing using Burp Suite and OWASP ZAP, combining manual and automated approaches. Deliver comprehensive security reports with prioritized remediation recommendations for development teams. Collaborate with developers to reproduce findings, validate fixes, and promote secure coding practices.

Bug bounter @ Bugcrowd
01 January 2023 -

Identify and validate complex security vulnerabilities including SQLi, XSS, IDOR, and CSRF. Write detailed technical reports with proof-of-concept (PoC) exploits for program owners. Collaborate closely with stakeholders to prioritize findings based on business risk.

Software Engineer @ Ubuntu Tech Afrika
01 March 2023 - 01 June 2025

Developed REST APIs using Java (Spring Boot) and Angular (TypeScript/JavaScript) with security embedded throughout the development lifecycle. Implemented authentication, authorization, and input validation following OWASP guidelines. Collaborated with DevOps to integrate security checks into CI/CD pipelines.

Ethical Hacker @ Lavenir SAS
01 February 2022 - 01 July 2022

Executed comprehensive penetration tests on web applications using manual and automated tools. Identified injection flaws, session weaknesses, and business logic vulnerabilities.

penetration Tester @ Link Corporation
01 January 2019 - 01 December 2021

Conducted black-box and gray-box assessments on production web applications against OWASP Top 10. Performed static code reviews across Java, JavaScript, and PHP codebases.

Senior Web Developer @ Real Developers
01 January 2016 - 01 December 2016

Designed and developed secure PHP-based e-commerce applications using LAMP stack. Mentored junior developers on secure coding practices and web security fundamentals.

Opleiding
Since 2022
Informatica @ University of Hungary
01 January 2025 - 31 December 2025

Master in Informatica.

Informatica @ Sierra Leone University
01 January 2022 - 31 December 2022

Professionele bachelor in Informatica.

Connect with John Turay

Welkom terug

Welkom aan boord!

  • Inloggen
  • Lid worden
CAPTCHA
Deze vraag is om te controleren dat u een mens bent, om geautomatiseerde invoer (spam) te voorkomen.

Oops, ik heb

mijn wachtwoord vergeten
Meld u aan met uw e-mailadres
footer logo

EDITx stelt IT profielen, bedrijven & universiteiten in staat om hun IT expertise in de kijker te plaatsen, te netwerken, deel te nemen aan tech challenges en interessante ICT jobs te delen.

Follow us

  • editx-facebook
  • editx-twitter
  • editx-instagram

Share the ❤ with your friends

Footer

  • EDITx
    • About us
    • FAQ
    • Contact
  • Tech Talents
    • Community
    • Tech Challenges
    • IT jobs
  • Employers
    • About Challenges
    • Use cases
    • Products

©2023 EDITX - All rights reserved - Use policy - Privacy policy - Challenge terms