For me, information security is not just a profession – it is a way of thinking, a mindset, which can be used to improve the lives of billions of users.

I am a  security enthusiast. I performed over 400 security audits and penetration tests (application and network), managed a team of a dozen security consultants and reported critical security vulnerabilities in products of large software vendors, such as: Google, IBM, Oracle, Adobe, Microsoft, Facebook, SAP, BEA, and more.

The purpose of this blog is to share my personal opinions and discoveries.