Reza Dayhool

Cybersecurity professional with hands-on experience in web, mobile, and API penetration testing, security triage, and secure application design. Experienced in conducting penetration testing in agile environments and collaborating with development and SOC teams during major security incidents, contributing to the prevention of critical security issues and identifying information disclosure vulnerabilities. Worked closely with development teams to remediate vulnerabilities at the code level and provided secure coding guidance for payment application teams. Former member of the Bugdasht triage team, responsible for coordinating remediation of more than 1,000 vulnerabilities and conducting penetration testing across more than 100 application scopes.

• Conducted penetration testing within an agile security team for newly implemented changes and completed up to three security assessments per month.
• Collaborated with development and SOC teams during major security incidents at Irancell, contributing to the prevention of a critical incident and identifying an information disclosure vulnerability during investigation.
• Worked closely with development teams to remediate vulnerabilities at the code level and delivered secure coding guidance for two payment application development teams.

• Member of the security triage team, responsible for coordinating remediation of more than 1,000 vulnerabilities reported by white-hat hackers.
• Developed reconnaissance tools based on company requirements to support vulnerability assessment and security investigation processes.
• Conducted penetration testing for more than 100 application scopes annually and ensured proper remediation through continuous follow-up with development teams.