I am an Information Security Professional with more than a decade of experience in the security industry. In my past, I have worked as a security consultant in a boutique firm Cigital performing web application pentests for different clients with different stacks and technologies.

I then moved onto securing products in product based enterprise companies such as EMC, Intuit and Atlassian. I also had a couple of short gigs in startups that were in the healthcare technology space doing all things security. Since December 2022, I have been working in Lyft as the Tech Lead of the Application Security team.

At the core, I love building programs from the scratch, working on difficult and interesting security engineering problems, innovating by using the latest technologies, exploring greenfield areas and constantly pushing myself to learn something new on a daily basis.

I am also the co-host of The Boring AppSec Podcast which you can find here.

You can find some of my OSS contributions on my Github. You can catch me rambling about bug bounties on Twitter. And, for everything professional, you can connect with me on LinkedIn.

I have also given a workshop at Defcon'17 and spoken at conferences such as Black Hat Arsenal, Defcon Recon Village, Toorcon, Rootcon and AtlasCamp.

I also write about my personal life on Substack.

If you like what you see here and would like to connect or simply chat, feel free to drop me a note at - anshuman dot bhartiya at gmail dot com