Protector47

I'm M. Asim Shahzad

Cyber Security Specialist & Penetration Tester

Security is an illusion

Introduction

About Me

Muhammad Asim Shahzad

Vice President - Unit Head VA/PT at United Bank Limited Muhammad Asim Shahzad has more than 10 years of experience in Vulnerability Assessment and Penetration Testing. He has his BS in Computer Science from IQRA University. He has experience of various Vulnerability Assessment and Penetration Testing tools. He is listed on the top hundred hackers of HackerOne for consecutive three years (2014 to 2016) and was also recognized by some well-known companies such as Microsoft, Google, Facebook, Salesforce, Dropbox and Snapchat etc.

He also attended the Live Hacking Competition H1-702 in Las Vegas organized by HackerOne. He is also member of the world's biggest Red Team (Synack). He has conducted various Cooperate Cyber Security Awareness & Penetration Testing Training. He has done CEH (Certified Ethical Hacker), CWASP (Certified Web Application Security Professional) and eWPTXv2 (eLearnSecurity Web Application Penetration Testing Extreme version 2) Certifications.

Download CV

Vulnerability Assessment

90%

Penetration Testing

80%

Source Code Review

85%

Secure SDLC

80%

Reverse Engineering

80%

Red Teaming

80%

My Resume

Education & Experience

Education

IQRA University

2013-2017

Bachelors in Computer Science

Jinnah Govt. College

2010-2012

Intermediate

Programmer School

2010

Matriculation

Employment

Vice President -Unit Head VA/PT

January 2025 - Present

Manager & Team Lead Penetration Testing at Bank AL Habib Limited

April 2021 - January 2025

Unit Head - Application Security Lead at BankIslami Pakistan Limited

Dec 2019 - April 2021

Sr. Pentest Engineer at Trillium Information Security Systems

April 2019 - Oct 2019

Information Security Analyst at JS Bank

Oct 2018 - April 2019

Cyber Security Trainer at Elevate Pakistan

Jan 2018 to Dec 2019

Bug Bounty Hunter at HackerOne & Bugcrowd

2013 to Present

Red Team Member at Synack

May 2019 - Present

What I do

I am a Penetration Tester who
cares about the Information Security

Working on platforms like HackerOne, Synack, and some other cybersecurity platforms since 2013. We guaranteed you to convey the best assistance according to your necessity and eagerness to deal with this task. We have attended multiple live hacking competitions in Las Vegas organized by HackerOne & secured a good rank by highlighting some 0-days on well-known international companies' products.

Hunted more than 500 international companies including Microsoft, Facebook, Google, Snapchat, Dropbox, Salesforce, etc. Listed on the top hundred hackers of the World's biggest hackers community (HackerOne) for consecutive 3 years.

The penetration testing services i provide, help organizations determine if a cyber attacker can gain access to their critical assets while giving them detailed insights into the overall business impact of a cyber-attack.

Perform security assessments of the organization's Networks & Infrastructure, Web Applications, Database Security and Hardening, Mobile Applications (Android & iOS), Reverse Engineering, Secure Web Development, Source Code Review, IoT Devices such as thin clients. ATMs, Hardening of CMS such as WordPress, etc...

Help organizations to develop secure products by following the Secure Architecture Design and Review leads organizations through an in-depth assessment of their existing network infrastructure and implemented design against industry best practices & addresses network security loopholes to ensure the CIA triad.

Offering the following Cybersecurity Training:

1- Bug Bounty Hunting Training
2- Web Application Penetration Testing Training
3- Mobile Application Penetration Testing Training
4- Network Penetration Testing Training
5- Cyber Security Awareness Training (For Corporates)
6- Cyber Security Employee Awareness Training
7- Email Security Training
8- Network & Infrastructure Security Training
9- Mobile Device Security Training