Patrik Grobshäuser

DevOps Manager

Offenburg, Baden-Württemberg, Germany10 yrs 3 mos experience

Key Highlights

  • Over 10 years of experience in security engineering.
  • Expert in vulnerability assessment and penetration testing.
  • Proven track record in bug bounty program operations.
Stackforce AI infers this person is a Cybersecurity expert with extensive experience in vulnerability management and security assessments.

Contact

LinkedIn

Skills

Core Skills

Vulnerability AnalysisSecurity AssessmentsSecurity Tooling DevelopmentVulnerability Management

Other Skills

Threat DetectionDetection EngineeringYAML SignaturesNMAP NSE ScriptsPythonVulnerability IntelligenceVulnerability AssessmentSecure Coding PracticesSecurity DocumentationVulnerability TriageTeam ManagementTraining DevelopmentTechnical ValidationVulnerability Assessment GuidelinesBlogging

About

Security Engineer with 10+ years of experience in vulnerability assessment, penetration testing, and security automation. Proven track record of identifying and responsibly disclosing critical vulnerabilities in major platforms. Expert in bug bounty program operations and security assessments. Core competencies include vulnerability analysis, security tooling development, and technical assessments. Experienced in both technical individual contributor roles and security team leadership positions.

Experience

10 yrs 3 mos
Total Experience
2 yrs 3 mos
Average Tenure
11 mos
Current Experience

Assetnote

Sicherheitsforscher

Jun 2025Present · 11 mos · Remote

Threat DetectionVulnerability ManagementVulnerability AnalysisSecurity Assessments

Recorded future

Senior Threat Research Engineer

Jul 2023May 2025 · 1 yr 10 mos · Remote

  • Led detection engineering initiatives for the Attack Surface Intelligence (ASI) platform, managing research, development, testing, and deployment of detection signatures.
  • Architected detection capabilities for critical vulnerabilities and technology fingerprints using customized YAML signatures, NMAP NSE scripts, and protocol-specific banner analysis.
  • Developed and maintained a suite of Python-based internal tools that improved vulnerability scanning efficiency and reduced false positives.
  • Built a comprehensive vulnerability intelligence collection system monitoring multiple sources for early identification of emerging threats.
  • Served as the technical escalation point for detection accuracy issues, resolving complex edge cases and providing detailed technical documentation.
  • Led regular collaboration sessions with Insikt Group analysts to improve signature sharing and standardize detection methodologies across teams.
  • Applied reverse engineering techniques to analyze security patches for critical vulnerabilities, developing novel detection methods.
  • Created detailed technical remediation playbooks for high-risk security issues affecting enterprise technologies, improving customer remediation processes.
Detection EngineeringYAML SignaturesNMAP NSE ScriptsPythonVulnerability IntelligenceVulnerability Analysis+1

Shopify

Security Engineer

Dec 2021Jun 2023 · 1 yr 6 mos · Remote

  • Evaluated and triaged security vulnerabilities reported through the HackerOne bug bounty program
  • Performed comprehensive security assessments for new features and architectural changes
  • Collaborated with development teams to implement and enforce secure coding practices
  • Contributed to security documentation and refined vulnerability management processes
  • Helped maintain and improve the internal security assessment workflow
  • Participated in security training sessions and knowledge sharing initiatives
  • Conducted vulnerability assessments and provided detailed remediation guidance
Vulnerability AssessmentSecure Coding PracticesSecurity DocumentationVulnerability AnalysisSecurity Assessments

Hackerone

2 roles

Triage Manager EMEA

Promoted

Jan 2018Dec 2021 · 3 yrs 11 mos · Remote

  • Managed and mentored a team of 15 Security Analysts across EMEA region for vulnerability triage operations
  • Developed and implemented standardized vulnerability assessment criteria and validation procedures
  • Created training materials and conducted technical workshops for security analysts
  • Optimized triage workflows resulting in 40% improvement in response times and accuracy
  • Served as technical escalation point for complex vulnerability assessments
  • Collaborated with program managers to refine security scope and vulnerability disclosure policies
Vulnerability TriageTeam ManagementTraining DevelopmentVulnerability Management

Application Security Engineer

Jan 2016Jan 2018 · 2 yrs · Remote

  • Performed technical validation of security vulnerabilities across diverse client programs
  • Assessed impact and severity of reported security issues using industry-standard frameworks
  • Provided detailed vulnerability reproduction steps and remediation guidance to customers
  • Maintained communication with security researchers throughout the disclosure process
  • Contributed to the development of internal vulnerability assessment guidelines
Technical ValidationVulnerability Assessment GuidelinesVulnerability Analysis

Ernw gmbh

Security Analyst

Feb 2015Mar 2017 · 2 yrs 1 mo · Heidelberg, Baden-Württemberg, Germany

Bugcrowd inc

Application Security Engineer

Feb 2015Aug 2016 · 1 yr 6 mos

  • Individual contributor to the Bugcrowd Application Security Engineer Team.
  • Providing Security Assessment and Validation of incoming Security Reports for a wide variety of companies
  • Main point of focus was the technical validation of Mobile (iOS / Android) Security issues.
Security AssessmentValidation of Security ReportsVulnerability Analysis

It-securityguard

Sicherheitsforscher

Apr 2011Dec 2021 · 10 yrs 8 mos · Greater Freiburg Area

  • Author of blog.it-securityguard.com.
  • Published 32 write-ups on Application Security topics including Reverse Engineering, Mobile App Reverse Engineering, Host discovery and Bug Bounties.
  • Average readership of 12.000 unique visits per post
  • Offering Pentesting Services to Small-Medium Businesses.
  • Including Black Box Penetration Testing and White Box Penetration Testing of Mobile and Web Applications
BloggingPentesting Services

Education

Hochschule Furtwangen

Master of Science - MS — Mobile Systems

Jan 2016Jan 2018

Hochschule Furtwangen

Bachelor of Science - BS — Computer Networking

Jan 2012Jan 2014

Stackforce found 100+ more professionals with Vulnerability Analysis & Security Assessments

Explore similar profiles based on matching skills and experience

IS

Ishika Sehgal

Product Security Engineer

at LogiNext

Gurugram, India2 yrs 10 mos exp
Application SecurityCybersecurity
Rajatkumar Karmarkar

Rajatkumar Karmarkar

Offensive Security - Senior Vulnerability Analyst

at Mastercard

Dubai, United Arab Emirates10 yrs 1 mo exp
Cloud SecurityPenetration TestingSecurity EngineeringSecurity TestingVulnerability Assessment
Lloyd Evans 🌩

Lloyd Evans 🌩

Vice President of Governance, Risk, and Compliance

at Aquia

Austin, United States8 yrs 11 mos exp
Application SecurityCloud SecurityCybersecurityInformation TechnologyMilitary Leadership
Sakshi Sharma

Sakshi Sharma

Technical Program Manager

at Guidewire Software

Canada7 yrs 11 mos exp
Application SecurityCloud SecurityPenetration TestingProduct SecurityRisk Management
SA

Sahil Ahamad

Security Analyst, Bug Bounty

at Meta

London, United Kingdom12 yrs 6 mos exp
bug bounty managementpenetration testingsecurity auditsvulnerability assessments
Mayank Dhawan

Mayank Dhawan

Senior Product Security Engineer

at Rippling

Bengaluru, India11 yrs 5 mos exp
Application SecurityThreat ModelingCloud SecurityPenetration Testing
Armaan Pathan

Armaan Pathan

Senior Engineer - Security

at KATIM

Dubai, United Arab Emirates11 yrs 4 mos exp
Penetration TestingApplication Security
Mark Short

Mark Short

Recruiter and Quartermaster

at SEEKR

London, United Kingdom18 yrs 4 mos exp
Program managementProject managementGeopolitical risk analysis