Tatiana Mitsik

Application Security Engineer and Penetration Tester with 2+ years of experience in application security, penetration testing, security audits, and vulnerability management. Skilled in using SAST/DAST/SCA tools, integrating them into workflows, and collaborating with development teams to ensure secure SDLC. Delivered 40+ penetration tests, validated 100+ Bug Bounty reports, and developed automation to improve vulnerability assessment efficiency. Strong knowledge of OWASP methodologies, risk assessment, and compliance frameworks (GDPR, ISO 27001).

Penetration tester and Application Security in different areas (educational, aviation, e-commerce). 

• build processes for security (secure code review, vulnerability triage, remediation tracking, risk assessment, reporting)
• implemented and optimized SAST/DAST/SCA solutions, ensuring that 80% of critical vulnerabilities were fixed before production release
• managed BugBounty program
• developed PoC via Python scripts and Nuclei templates

5,5 years Bachelor’s + Master’s degree in Cyber Security. Major in information security, cryptography, networks and programming (Python and C/C++).