Remote-first security-focused backend or application security role where I can work globally, contribute to secure software development (AppSec / DevSecOps), and grow as a hands-on engineer. I’m looking for practical security work, not managerial roles.
Looking for a job
Okan taşçıoğlu
@okntscgl
Penetration tester and secure backend developer focused on web and API security.
TurkeyWhat I'm looking for
I am a hands-on penetration tester with a strong background in application and API security, combined with practical secure backend development experience. I focus on identifying real-world vulnerabilities through full attack lifecycle testing, including reconnaissance, exploitation, and post-exploitation, with an emphasis on business logic, access control, and privilege escalation issues.
On the engineering side, I build and secure production-ready REST APIs using Python and Java, implementing modern authentication and authorization mechanisms, role-based access control, and secure data handling. This development background allows me to assess applications with a deep understanding of how systems are actually designed, built, and deployed.
I take a practical, results-driven approach to security, aligning my work with OWASP Top 10 and secure-by-design principles. I maintain a strong hands-on security profile, including a high global ranking on TryHackMe (#105), and aim to deliver findings that are actionable, realistic, and valuable to engineering teams.
Experience
Work history, roles, and key accomplishments
SE
Current
Penetration Tester
Self-Employed
Jan 2024 - Present (2 years 5 months)
Conducted hands-on penetration testing of web applications, APIs, Android apps, and networks, identifying injection, access control, and privilege escalation vulnerabilities and delivering actionable findings aligned with OWASP standards.
SE
Current
Backend Developer
Self-Employed
Jan 2024 - Present (2 years 5 months)
Developed secure, production-ready REST APIs using Python (FastAPI) and Java (Spring Boot) with JWT/OAuth2 and Keycloak-based authentication, implemented encrypted data storage and secure-by-design controls.
Education
Degrees, certifications, and relevant coursework
Okan hasn't added their education
Don't worry, there are 90k+ talented remote workers on Himalayas
Availability
Looking for a job
Location
TurkeyAuthorized to work in
Salary expectations
4k-6k USD
Social media
Job categories
Skills
Penetration TestingApplication SecurityMobile SecurityAPI SecurityPythonfastAPIJavaSpring BootJWTKeycloakMongoDBSecure Data StorageDockerCI CDBurp suiteMetasploitNmapWiresharkSqlmapOWASP ZAPGobusterNucleiLinPEAS WinPEASOWASP Top 10Security By DesignDevSecOpsGitHubLinuxOAUTH2WindowsZAPSQLSelenium Webdriver
Interested in hiring Okan?
You can contact Okan and 90k+ other talented remote workers on Himalayas.
Message OkanFind your dream job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
