Özgür Alp

I’m a cybersecurity specialist with over 10 years of experience in offensive security, consulting and training. I hold OSCP and OSWE certifications, and currently rank among the Top 3 all-time researchers on Synack, with 2000+ accepted vulnerabilities across more than 500 unique client projects, including 250+ critical findings (CVSS 9.0+).

As a LEGEND Hall of Fame inductee, I’ve fulfilled all five of Synack’s elite researcher criteria — a distinction achieved by only three people globally. I’ve earned TITAN status four years in a row, the platform’s highest annual recognition for performance and consistency. With over $2M in lifetime earnings solely from bug bounty work, I’m one of the the most impactful and trusted offensive researchers in the private bug bounty landscape.

I started my career at Deloitte Turkey, where I spent four years as a cybersecurity consultant and technical lead. During that time, I worked on over 200 projects for multinational and domestic companies across various industries. Since then, I’ve worked independently as a bug bounty hunter and on-demand offensive security consultant — reporting thousands of vulnerabilities and delivering consultancy and training services to companies around the world.

Beyond hands-on work, I actively contribute to the security community through technical blogging, public speaking, and university-level instruction. For four years, I taught undergraduate courses such as “Introduction to Cybersecurity” and “Web Application Hacking” at two prestigious universities in Istanbul. As a Synack Circle of Trust member, I advise on platform changes and researcher experience. I’ve helped 20+ new researchers join via the Envoy program and mentor 4–5 SRTs long-term. I’ve represented Synack at global live events (Mexico, Bali, Costa Rica, Portugal), engaged in an on-site client project in Hong Kong, spoke at Black Hat, supported the booth, contributed to Synack’s blogs, podcasts, and spotlight interviews, and appeared on their homepage as one of the faces of the SRT. I also organized the first official global SRT hangout to foster community engagement and collaboration.