~/kabir.au
$ cat about.txt

About

Hi! I'm Kabir, a senior security engineer with a deep passion for highly technical pentesting and security research. I spent my time at Atlassian applying Application Security concepts to modern technologies including LLMs/AI, networks, AWS/GCP/Azure cloud platforms, SaaS integrations and in-house products and tooling. Now I work at Transgrid, securing Australia’s largest electricity network and its OT environment. I play CTFs on the global stage with Emu Exploit, HashMob, and TheHackersCrew and produce music in my spare time.

PythonVulnerability AssessmentPenetration TestingApplication SecurityReverse EngineeringLLM SecurityOT SecurityNetwork ProtocolsProblem SolvingThreat ModelingCTI
##

experience

Aug 2025 - Present

Transgrid

Senior Cyber Security Testing Intelligence Engineer @ Sydney, New South Wales, Australia

  • >Securing Australia’s largest electricity network and its OT environment.
  • >Winner of the 2025 Dragos, Inc. CTF (OT/ICS Security).
Apr 2025 - Aug 2025

Atlassian

Security Engineer @ Sydney, New South Wales, Australia

  • >Conducted 250+ security reviews, supporting software and ML engineers to make better security decisions.
  • >Delivered 15+ security threat models, improving understanding of information risk in platforms including Forge and Rovo (AI/LLM).
  • >Found, reported and aided patching for 10+ security vulnerabilities external to threat models.
  • >Patched 70+ security vulnerabilities.
Feb 2024 - Apr 2025

Atlassian

Graduate Security Engineer @ Sydney, New South Wales, Australia

  • >Created the centralised source of truth for ecosystem platform security, cementing myself as the SME.
  • >Ran a tabletop exercise to evaluate the success of our ecosystem security uplift project.
  • >Developed an internal graph based AI/LLM code scanner tool to save time diagnosing Snyk Code results.
  • >Shadowed Detection and Response team, learning how to make Splunk queries and action detection tickets.
  • >Shadowed Corporate Security team and worked with them to build corporate security controls for AI/LLM usage and employee device management.
  • >Participated in annual security bug bash (high paced pentesting), squashing 10+ bugs.
Nov 2022 - Feb 2024

Atlassian

Security Engineering Intern @ Sydney, New South Wales, Australia

  • >Co-created the LLM security initiative at Atlassian.
  • >Provided direct LLM security advice to the CISO to speak on a panel.
  • >Conducted 13 security investigations (small glassbox tests) on suspicious services to find vulnerabilities.
  • >Delivered Damn Vulnerable Forge App, a project to showcase developer security footguns on the Atlassian Forge platform.
Apr 2022 - Nov 2022

Macquarie University

Cyber Security Intern @ Sydney, New South Wales, Australia

  • >Network penetration testing and firewall rule validation.
  • >Active directory threat mapping and patching with Bloodhound.
  • >Writing automated Python scripts to detect vulnerabilities across the network.
  • >Designing challenges and infrastructure for Hack Mac CTF.
Jan 2018

Westpac

Operations Infrastructure Work Experience @ Sydney, New South Wales, Australia

  • >Security group policy review (password renewal, access and permission management).
  • >Automating repetitive active directory tasks with PowerShell.
  • >Troubleshooting physical server faults in a data center.
Dec 2017

Westpac

Information Security Analyst Work Experience @ Greater Sydney Area

  • >Phishing detection, prevention, reporting and response.
  • >Penetration testing against internal networks and devices.
  • >Code review and bug fixing.
##

education

Feb 2021 - Nov 2023

Macquarie University

Bachelor of Cyber Security

  • >GPA: 3.917/4 | 6.292/7 | WAM: 82.958
  • >2023 Merit List
  • >Highest Achiever in Digital Forensics
  • >Highest Achiever in Systems Programming