Jaymark Pestaño

Metro Manila, Philippines ¡¤ contact@jaymarkpestano.ninja

Information Security enthusiast, traveler, hobbyist and a gamer.


Application Security Engineer

Responsible for the ongoing triage and validation services of Bugcrowd managed programs. Take incoming submission data and curate it for validity, accuracy, and severity as well as communicate directly with Bugcrowd¡¯s clients and/or researchers when additional information is required. Handle Incident Response ¨C escalating and communicating about the highest severity bugs to clients.

December 2019 - Present

Cybersecurity Threat Management Senior Consultant

Conducted security tests on thick / mobile / web applications, documented and wrote security reports, discussed solutions with key customers within EY.

March 2018 - December 2019

Web Application Security Consultant

Performed automated, manual, and advanced vulnerability assessments with false positive validation in a wide range of web applications.

August 2014 - February 2018

Bug Bounty Hunter

Responsibly disclosing website vulnerabilities through bug bounty platform/community.

December 2013 - Present


Pamantasan ng Cabuyao

Bachelor of Science in Information Technology - Web Development Major
Cabuyao City Laguna, Philippines
2009 - 2014


Usually, I spend a large amount of my free time exploring the latest trends and technology in the cyber world.

I enjoy travelling but when I am indoors, I watch a number of sci-fi, fantasy, war, horror, documentary genre movies/shows, play shooting games, MMORPG and sometimes my e-drums.

Awards & Certifications

  • EC-Council Certified Security Analyst - CN: ECC70464023927 (expired)
  • CVE-2017-2644: Stored XSS in Moodle
  • 3rd Place - Rootcon XI: Bugcrowd Capture the Flag
  • 2nd Place - Rootcon X: Capture the Flag (group)
  • 2nd Place - Rootcon VIII: Capture the Flag (group)
  • Acknowledged and rewarded for responsibly disclosing website vulnerabilities of various companies:
    • Microsoft
    • Twitter
    • Yahoo
    • Linkedin
    • Autodesk
    • Slack
    • Quora
    • Patreon
    • Glassdoor
    • Airbnb
    • Couchsurfing
    • Edmodo
    • Starbucks
    • etc.