Summary
Collin Berman is a Lead Penetration Tester with 14 years of security experience and a 12-year track record as a principal security tester, specializing in offensive assessments across web, API, mobile, and cloud environments. He’s a Burp Suite subject-matter expert who discovered a vulnerability and collaborated with PortSwigger to remediate it, and has consistently found high- and critical-severity issues inside large enterprises. His work spans hands-on pentesting, custom tooling (including web shells and AWS Lambda attack-surface tools), automation of DAST/SAST pipelines, and integrating LLMs to reduce false positives in security scans. Collin has supported product teams at Google Cloud and built proof-of-concept malicious tooling for OpenAI to drive policy and safety improvements, demonstrating a rare blend of red-team depth and responsible disclosure practice. Based in Seattle, he combines deep technical research (reverse engineering and custom assembly early in his career) with practical leadership—teaching secure coding, creating offensive training, and delivering patented data-loss prevention solutions.
14 years of coding experience
5 years of employment as a software developer
High School Computer Technology/Computer Systems Technology, High School Computer Technology/Computer Systems Technology at Thomas Jefferson High School for Science and Technology
Bachelor's Degree Computer Science and Mathematics, Bachelor's Degree Computer Science and Mathematics at University of Virginia
English, German