Prakhar Prasad

Security Engineer

India5 yrs 6 mos experience

Most Likely To Switch

Key Highlights

Authored a book on Web Penetration Testing.
Recognized in multiple security hall of fames.
Led security initiatives protecting billions of users.

Stackforce AI infers this person is a Product Security Engineer with expertise in vulnerability assessment and secure software development.

Contact

Skills

Core Skills

Product SecuritySoftware Development LifecycleVulnerability AssessmentBug Bounty ProgramSecurity Reviews

Other Skills

Antivirus EvasionApplication SecurityEthical HackingHardeningLinux SecurityMalware AnalysisPenetration TestingSecure Development Culture and PracticesSecurity Architecture DesignSecurity ResearchSocial EngineeringSource Code ReviewThreat ModelingTool DevelopmentVulnerability Management

About

As a Product Security Engineer at Atlassian, I embed security practices in the Software Development Lifecycle (SDL) of world-class collaboration and productivity tools for teams, such as Jira, Confluence, Trello, and Bitbucket. I have authored a book on Mastering Modern Web Penetration Testing in 2016, and have spoken at Botconf 2013 in France about browser-based botnets. Prior to joining Atlassian, I worked as a Security Analyst at Meta (earlier known as Facebook) in London, UK, and at Grab in Singapore, focusing on the bug bounty and data abuse programs. I have discovered and reported security vulnerabilities in multiple companies, such as Google, Facebook, Twitter, PayPal, and others, earning recognition and rewards from their security hall of fames. I have also obtained the Offensive Security Certified Professional (OSCP) and Offensive Security Wireless Professional (OSWP)

Experience

Atlassian

2 roles

Security Engineer

Jun 2024 – Present · 1 yr 9 mos · India · Remote

Atlassian is a software company that builds world-class collaboration and productivity tools for teams. Its portfolio includes products like Jira, Confluence, Trello, and Bitbucket, which are used by millions of people worldwide to help teams work together efficiently and effectively.

Product Security Engineer

Jan 2022 – Jan 2023 · 1 yr · India · Remote

I am a Product Security Engineer in Secure Development Culture and Practices (SDCP) team, which embeds security practices in Atlassian's Software Development Lifecycle (SDL).
Atlassian is a software company that builds world-class collaboration and productivity tools for teams. Its portfolio includes products like Jira, Confluence, Trello, and Bitbucket, which are used by millions of people worldwide to help teams work together efficiently and effectively.

Product SecuritySoftware Development LifecycleSecure Development Culture and Practices

Facebook

Security Analyst

Oct 2019 – Dec 2020 · 1 yr 2 mos · London, United Kingdom · On-site

I worked as a Security Analyst in the Product Security team based out of London; focused mostly on the bug bounty and data abuse program - triage external vulnerability submissions, review source code to identify root-cause of those vulnerabilities and develop internal tools.
Responsibilities:
Analyze, assess, and respond to various security vulnerabilities we receive as part of our bug bounty program.
Understand the root cause of security vulnerabilities to help the product team fix them.
Take a leadership role in driving internal security and privacy initiatives.
Interact directly with the security community regarding vulnerabilities and threats.
At the end of the day, the team is responsible for protecting security and privacy of billions of people across Facebook, Instagram, WhatsApp and etc.

Bug Bounty ProgramVulnerability AssessmentSource Code Review

Grab

Security Engineer

Dec 2017 – Jul 2019 · 1 yr 7 mos · Downtown Core, Singapore · On-site

Worked in Grab's product security team mostly performing security reviews, writing tools and spearheading their bug bounty program.
Grab is Southeast Asia's biggest startup, with a valuation of more than $14 billion.

Security ReviewsBug Bounty ProgramTool Development