JA Jobyer Ahmed
Jobyer Ahmed

Jobyer Ahmed

Security Professional & Entrepreneur

Founder of Bytium, OSCE3-certified cybersecurity expert with deep experience in pentesting and vulnerability assessment.

Work with me Read the blog
GitHub LinkedIn Twitter/X
Jobyer Ahmed
Jobyer Ahmed
Security Pro • Entrepreneur
Work with me

Who I am

Hi—I’m Jobyer Ahmed, a Security Pro & Entrepreneur. I help companies harden critical apps and ship secure products. I’ve led audits, pentests, and security strategy for startups and growth-stage teams. Beyond hands-on security work, I build and advise product teams on “security by design”, org readiness, and GTM for security offerings.

When I’m not threat-modeling, I’m exploring product ideas, writing, or dialing in an espresso shot ☕.

Core skills

Web App PentestingThreat ModelingRed Team AdvisorySecurity ArchitectureActive DirectoryCloud SecurityIncident ReadinessAWSDockerPythonC/C++Assembly languageExploit development

Tools I use

Burp SuiteCobalt StrikeCore ImpactBloodHoundOWASP ZAPNmapMetasploitsqlmapffufwfuzzNiktoWiresharkWazuhChrome DevToolsPostmanAWSDockerGitHub Actions

Certifications & Badges

Offensive Security Certified Expert 3 (OSCE3)
OffSec
Offensive Security Exploit Developer (OSED)
OffSec
Offensive Security Web Expert (OSWE)
OffSec
Offensive Security Experienced Penetration Tester (OSEP)
OffSec
RastaLabs
Hack The Box
Offensive Security Certified Professional (OSCP)
OffSec
Ethical Hacking: Hacking Web Servers and Web Applications
LinkedIn
Advanced+ Penetration Testing Certified
Virtual Hacking Labs
Penetration Testing
Virtual Hacking Labs
CompTIA Network Vulnerability Assessment Professional – CNVP
CompTIA
CompTIA PenTest+ ce
CompTIA
CompTIA Security+ ce
CompTIA
Google IT Support Professional Certificate
Google

Timeline

Founder & CEO, Bytium Jan 2024 — Present
Leading Bytium LLC, a cybersecurity and IT consulting company helping SMBs secure systems with penetration testing, compliance, and scalable security solutions.
Founder & Cybersecurity Researcher Feb 2022 — Jan 2024
Founded Rednode Services, delivering web app and network pentests, security research, and mentoring on secure development practices.
Penetration Tester Oct 2022 — May 2023
Performed targeted penetration tests on web applications and infrastructure for enterprise clients.
Cyber Security Specialist Jun 2020 — Dec 2021
Provided black box web and network penetration testing for SMEs worldwide.
Cyber Security Specialist Jan 2021 — Aug 2021
Delivered penetration tests and remediation reports for clients across finance and enterprise sectors.
Security Consultant Feb 2010 — Jun 2021
Independent consultant providing web app security, vulnerability assessments, and incident response support.
CTF Player May 2018 — Jan 2020
Active in Hack The Box CTFs and labs, specializing in offensive security and Active Directory exploitation.
Technical Support Specialist Feb 2007 — Jan 2014
Delivered remote technical support, system troubleshooting, and administration for SMEs and individuals.

Research: CVEs & Exploits

CVEs
CVE-2024-8784 CVE-2024-8945 CVE-2024-8867 CVE-2024-9030 CVE-2025-3219 CVE-2025-3219
Exploits & Advisories
RISE CRM 3.7.0 - SQL Injection Exploit

FAQ

What types of pentests do you run?
Black/gray box web apps, APIs, mobile (basic), and cloud posture checks; reports include remediation paths.
Do you sign NDAs and handle sensitive systems?
Yes. Standard security and legal processes are in place.
How do I engage you for a pentest or security audit?
Start by contacting me via the contact page with a brief scope and timeline. I’ll provide a written proposal with deliverables, timeline, and pricing.
What does a typical report look like?
Reports include an executive summary, prioritized findings, technical details, reproduction steps, and recommended fixes with severity ratings.
Do you offer training or workshops?
Yes — I offer tailored workshops for secure development practices, manual pentesting fundamentals, and red team awareness sessions. Contact for availability and pricing.