Ivan Iushkevich is a Lead Application Security Engineer with 10+ years of hands-on experience hunting vulnerabilities across banking systems, web apps, and infrastructure. Based in Amsterdam, he builds offensive security programs and company-wide secure development initiatives, having led training, Security Champions, and PCI awareness at Just Eat Takeaway.com. A seasoned penetration tester and former team lead, he has practical experience automating analysis (SAST/DAST), extending tooling like Semgrep for SonarQube, and developing dynamic binary instrumentation modules earlier in his career. He also teaches a Master's course in Safe Software Engineering and creates CTF-like platforms and training materials, blending academic rigor with applied red-team practice. Known on GitHub as Steph, he combines event-driven community building with frequent security research and bespoke tooling rather than just one-off bug bounties.
10 years of coding experience
9 years of employment as a software developer
Диплом специалиста по инженерной специальности Безопасность компьютерных и информационных систем/защита информации, Диплом специалиста по инженерной специальности Безопасность компьютерных и информационных систем/защита информации at Peter the Great St.Petersburg Polytechnic University
Dutch Government Bugbounty scope analysis, subdomains and url lists
Contributions:16 PRs, 218 pushes, 2 branches in 1 year 2 months
bugbountydutchinfosecpentestsecurity
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Ivan Iushkevich - Lead Application Security Engineer