Summary
John Lightsey is a Senior Principal Security Researcher with 15 years of hands-on experience shifting software security from "penetrate and patch" to secure-by-design development. Based in Houston, he blends deep vulnerability research and exploit development with practical dev work across Perl, C/C++ and PHP, having led product security, auditing and remediation at cPanel and later as a consultant and independent researcher. At Oracle he continues to drive secure software practices at scale, informed by years triaging, fixing and hardening complex hosting platforms and upstream projects like Debian and CPAN. A former U.S. Army corporal, he brings disciplined, mission-focused problem solving to both offensive research and defensive engineering, and is known for training teams and improving static/dynamic detection tooling as much as for finding bugs.
15 years of coding experience
25 years of employment as a software developer
Bachelor of Science (BS) Computer Science, Bachelor of Science (BS) Computer Science at Troy University