Himalayas logo
TO
Open to opportunities

Tayo Ojo

@tayoojo

Energetic Senior Application Security Engineer with expertise in vulnerability management.

United States
Message

What I'm looking for

I am looking for a role that fosters a strong security culture and offers opportunities for professional growth and collaboration on innovative security initiatives.

I am a Senior Application Security Engineer with a strong focus on enhancing security posture and efficiency through vulnerability management and automation. My experience includes leading the HackerOne bug bounty program at Glassdoor, where I increased hacker engagement by 50% and reduced mean time to remediation by 54%. I am passionate about integrating security into product development early, collaborating with engineering teams and executive stakeholders to ensure robust security measures are in place.

Throughout my career, I have spearheaded key security initiatives such as SAST and Threat Modeling, which have significantly reduced vulnerabilities and increased developer engagement in annual security training. My ability to streamline critical security workflows through automation has resulted in a 30% reduction in manual tasks, enhancing team efficiency and enabling faster remediation of security issues.

With a Bachelor of Science in Information Science focused on Cybersecurity & Privacy from the University of Maryland, I have developed a comprehensive skill set that includes application security testing, vulnerability assessments, and incident response. I am committed to fostering a culture of security within organizations and continuously improving security protocols to protect against emerging threats.

Experience

Work history, roles, and key accomplishments

GL
Current

Senior Application Security Engineer

Glassdoor

Jul 2023 - Present (2 years 1 month)

Led analysis, triage, and management of the HackerOne bug bounty program, leading to increased hacker engagement by 50%, decreased mean-time to remediation by 54%, and a 20% decrease of High and Critical vulnerabilities. Spearheaded the development and launch of key security initiatives, including SAST and Threat Modeling, enhancing security posture by reducing vulnerabilities and increasing devel

Vulnerability ManagementSASTThreat ModelingBug BountyHackerOneAPI SecurityGitlabSonarCloud
TS

Cybersecurity Engineer I

Textron Systems

Jan 2023 - Present (2 years 7 months)

Leveraged ACAS tools (Nessus and SCC) to perform in-depth security analyses on 50+ systems, identifying critical vulnerabilities and enhancing compliance with CISA and industry standards for the Shadow TUAS project. Created comprehensive internal technical documentation for key processes and systems, enhancing team efficiency and accelerating executive reporting.

ACASNessusCISATechnical Documentation
AM

Cybersecurity Intern

Amtrak

Sep 2022 - Present (2 years 11 months)

Transformed internal cybersecurity playbooks and SOP by critically reviewing and revising content, enhancing operational efficiency and risk management protocols. Collaborated with stakeholders to recommend priority NIST controls, ensuring compliance with TSA Railroad Security Directives and enhancing overall security posture.

SOP DevelopmentRisk ManagementNISTComplianceServiceNow
TS

Cybersecurity Engineer Intern

Textron Systems

May 2022 - Present (3 years 3 months)

Created a user-friendly GUI tool in PowerShell that streamlined application control policy management, reducing management time by 80% and boosting operational efficiency based on user feedback.

PowerShellPolicy Management
VI

Cybersecurity Software Engineer Intern

VTNGLOBAL, INC

Sep 2020 - Present (4 years 11 months)

Engineered a Python-based vulnerability scanning tool that successfully identified common vulnerabilities across numerous websites, enhancing overall security measures. Conducted in-depth research on the OWASP Top 10 vulnerabilities and critical CVEs, leading to the creation of enhanced internal security protocols and documentation.

PythonOWASP Top 10CVESecurity ProtocolsDocumentation

Education

Degrees, certifications, and relevant coursework

University of Maryland, College Park logoUP

University of Maryland, College Park

Bachelor of Science, Information Science - Cybersecurity & Privacy

2019 - 2022

Studied Information Science with a specialization in Cybersecurity & Privacy. Gained expertise in application security testing, code reviews, API security, SAST & DAST, vulnerability assessments, incident response, threat modeling, and bug bounty programs.

Tech stack

Software and tools used professionally

HackerOne logo

HackerOne

GitLab logo

GitLab

Gmail logo

Gmail

JavaScript logo

JavaScript

PowerShell logo

PowerShell

Datadog logo

Datadog

SumoLogic logo

SumoLogic

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Application Security EngineerCybersecurity EngineerApplication Security EngineerSecurity AnalystVulnerability AnalystLead Application Security EngineerSenior Security EngineerSenior Cybersecurity Engineer

Skills

Security TestingCode ReviewAPI SecuritySASTDASTVulnerability AssessmentIncident ResponseThreat ModelingBurp suiteWizAWSDatadog)HackerOneGitlabSonarCloudSumoLogicPythonJavaScriptBASHPowerShellGmail

Interested in hiring Tayo?

You can contact Tayo and 90k+ other talented remote workers on Himalayas.

Message Tayo

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Tayo Ojo - Senior Application Security Engineer - Glassdoor | Himalayas