kabir.au

About Me

Hi! I'm Kabir, a senior security engineer with a deep passion for highly technical pentesting and security research. I spent my time at Atlassian applying Application Security concepts to modern technologies including LLMs/AI, networks, AWS/GCP/Azure cloud platforms, SaaS integrations and in-house products and tooling. Now I work at Transgrid, securing Australia’s largest electricity network and its OT environment. I play CTFs on the global stage with Emu Exploit, HashMob, and TheHackersCrew and produce music in my spare time.

PythonVulnerability AssessmentPenetration TestingApplication SecurityReverse EngineeringLLM SecurityOT SecurityNetwork ProtocolsProblem SolvingThreat ModelingCTI

Experience

Aug 2025 - Present

Transgrid

Senior Cyber Security Testing Intelligence Engineer

Sydney, New South Wales, Australia

  • Securing Australia’s largest electricity network and its OT environment.
  • Winner of the 2025 Dragos, Inc. CTF (OT/ICS Security).
Apr 2025 - Aug 2025

Atlassian

Security Engineer

Sydney, New South Wales, Australia

  • Conducted 250+ security reviews, supporting software and ML engineers to make better security decisions.
  • Delivered 15+ security threat models, improving understanding of information risk in platforms including Forge and Rovo (AI/LLM).
  • Found, reported and aided patching for 10+ security vulnerabilities external to threat models.
  • Patched 70+ security vulnerabilities.
Feb 2024 - Apr 2025

Atlassian

Graduate Security Engineer

Sydney, New South Wales, Australia

  • Created the centralised source of truth for ecosystem platform security, cementing myself as the SME.
  • Ran a tabletop exercise to evaluate the success of our ecosystem security uplift project.
  • Developed an internal graph based AI/LLM code scanner tool to save time diagnosing Snyk Code results.
  • Shadowed Detection and Response team, learning how to make Splunk queries and action detection tickets.
  • Shadowed Corporate Security team and worked with them to build corporate security controls for AI/LLM usage and employee device management.
  • Participated in annual security bug bash (high paced pentesting), squashing 10+ bugs.
Nov 2022 - Feb 2024

Atlassian

Security Engineering Intern

Sydney, New South Wales, Australia

  • Co-created the LLM security initiative at Atlassian.
  • Provided direct LLM security advice to the CISO to speak on a panel.
  • Conducted 13 security investigations (small glassbox tests) on suspicious services to find vulnerabilities.
  • Delivered Damn Vulnerable Forge App, a project to showcase developer security footguns on the Atlassian Forge platform.
Apr 2022 - Nov 2022

Macquarie University

Cyber Security Intern

Sydney, New South Wales, Australia

  • Network penetration testing and firewall rule validation.
  • Active directory threat mapping and patching with Bloodhound.
  • Writing automated Python scripts to detect vulnerabilities across the network.
  • Designing challenges and infrastructure for Hack Mac CTF.
Jan 2018

Westpac

Operations Infrastructure Work Experience

Sydney, New South Wales, Australia

  • Security group policy review (password renewal, access and permission management).
  • Automating repetitive active directory tasks with PowerShell.
  • Troubleshooting physical server faults in a data center.
Dec 2017

Westpac

Information Security Analyst Work Experience

Greater Sydney Area

  • Phishing detection, prevention, reporting and response.
  • Penetration testing against internal networks and devices.
  • Code review and bug fixing.

Education

Feb 2021 - Nov 2023

Macquarie University

Bachelor of Cyber Security
  • GPA: 3.917/4 | 6.292/7 | WAM: 82.958
  • 2023 Merit List
  • Highest Achiever in Digital Forensics
  • Highest Achiever in Systems Programming