Summary
Zak Fedotkin is an application security researcher with a decade of hands-on experience hunting vulnerabilities across Java, C++ and PHP ecosystems. Currently advancing web security research at PortSwigger, he has a strong track record of discovering flaws in open-source data processing libraries, HTTP clients and third‑party extensions. Previously he built Secure SDLC processes, integrated static analysis into CI/CD, and led security teams at Ataccama, Citrix and Wrike, blending research with practical engineering. Comfortable with both manual code review and automated testing, he also trains engineers on OWASP risks and product-specific vulnerabilities. Based in the UK, he brings a rare combination of offensive research instincts and pragmatic security program delivery.
10 years of coding experience
4 years of employment as a software developer
Information Security Specialist, Information Security Specialist at Bauman Moscow State Technical University
Английский