John Stawinski

About

Speaker at Black Hat USA 2024 and DEF CON 32. Instructor at Black Hat USA 2025. Currently executing on the Red Team Operations Group at Meta, focusing on RTOs, CICD + supply chain security, and corporate engagements. Published vulnerability researcher, identifying critical CI/CD vulnerabilities in Google, Meta, Node.js, GitHub, Microsoft, Web3, and more. Graduated from Cornell University with a Computer Science Engineering degree concentrating in Cybersecurity, Business, and Operations Research. Former Division I athlete. For more information, check out the "About Me" section of https://johnstawinski.com/about/.

Experience

• Senior Offensive Security Engineer at Meta
  Dec 2025 - Present · 7 mos

• Praetorian (Full-time · 3 yrs 6 mos)
  • Staff Security Engineer
    Apr 2025 - Dec 2025 · 9 mos

  • Lead Security Engineer (Red Team)
    Oct 2024 - Apr 2025 · 7 mos

  • Senior Security Engineer (Red Team)
    Feb 2023 - Oct 2024 · 1 yr 9 mos

• Security Engineer at Praetorian
  May 2021 - Aug 2021 · 4 mos

• Cybersecurity Associate - Testing Team at Aon
  May 2020 - Aug 2020 · 4 mos

• Fit 2 Excel (4 yrs 8 mos)
  • Marketing & Rental Manager
    Jan 2015 - Aug 2019 · 4 yrs 8 mos

  • Personal Trainer
    Apr 2015 - Jul 2019 · 4 yrs 4 mos