You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Hasan Tufan TurhanHT

Hasan Tufan Turhan

Senior Penetration Tester

€486/day
Istanbul, TR
3-7 years
Cybersecurity (Web, Mobile & API)
Penetration Testing (Red Team & AppSec)
Network Security
Kubernetes Security
Source Code Review

Average response time: 1 hour

About Hasan Tufan

I am a cybersecurity professional with over 4 years of experience securing critical infrastructures in the finance and technology sectors. My expertise covers web, mobile, API, and network penetration testing, as well as in-depth source code analysis (SAST), dynamic testing (DAST), software composition analysis (SCA), and container & Kubernetes security.

I combine manual testing with automation to discover and exploit real-world vulnerabilities, providing clear and actionable reports that help organizations strengthen their security posture. I also have hands-on experience in ISO 27001 compliance, red teaming, threat modeling, and building automated security testing pipelines.

My goal is to help organizations reduce their attack surface, build strong and sustainable security architectures, and align with international security standards.

✅ Key Skills:
• Penetration Testing (Web / Mobile / API / Network)
• Source Code Analysis (SAST), DAST & SCA
• Container & Kubernetes Security
• Vulnerability Assessment & Reporting
• ISO 27001 Compliance
• Red Teaming & Threat Modeling
• Linux, Scripting & Security Automation

  • English

    Native or bilingual

Remote only
Primarily works remotely

Experience

  • Private Bank
    Senior Penetration Tester
    July 2023 - Today (2 years and 11 months)
    -Web and Mobile Application Penetration Testing -Internal, External Network, Database Penetration Testing -Vulnerability Assessments and Management -Social Engineering Testing -Container Security -Kubernetest Security -Source Code Review -Api Security
    Web and Mobile Application Penetration Testing Internal, External Network Pentesting Source Code Review Social Engineering Testing Database Penetration Testing
  • CyberForce
    Senior Penetration Tester
    July 2021 - July 2023 (2 years)
    Web and Mobile Application Penetration Testing -Internal, External Network, Database Penetration Testing -Wireless Penetration Testing -Vulnerability Assessments and Management -DDoS -Social Engineering Testing
  • BOUNTY HUNTER,
    BUG
    September 2022 - Today (3 years and 9 months)
    -Web and Mobile Application Penetration Testing -Internal, External Network, Database Penetration Testing -Vulnerability Assessments and Management -Social Engineering Testing -Container Security -Kubernetest Security -Source Code Review -Api Security
Check out Hasan Tufan's experience

Recommendations

Be the first to recommend Hasan Tufan

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • MANAGEMENT INFORMATION SYSTEM
    Beykent University
    2021
    MANAGEMENT INFORMATION SYSTEM
  • Offensive Security Certified Professional (OSCP) Turkish Standarts Instiue (TSE) Certified Penetration Testing Specilist e-LearnSecurity Web Application Penetration Tester Extreme (eWPTX) Alibaba Cloud Certification-Cloud Security
    Offensive Security Certified Professional (OSCP) Turkish Standarts Instiue (TSE) Certified Penetration Testing Specilist e-LearnSecurity Web Application Penetration Tester Extreme (eWPTX) Alibaba Cloud Certification-Cloud Security

Skill set

Pentesting Web Application
Pentesting Mobile Application
Pentesting Network
SAST
DAST
SDLC
API Security
Pentesting API

Categories