Skip to main content

Ismail Melih Tas

Senior Security Consultant, Synopsys

Melih Tas is a Senior Security Consultant at Synopsys in London, UK with responsibility for performing penetration testing, application/network security testing, source code review, and software security initiatives for mostly Fortune 500 customers.

Before joining Synopsys, he worked as a Principal Offensive Security Specialist at Garanti BBVA Bank from 2015 to 2020 in Istanbul, Turkey. Besides being a multiple-time award-winning intrapreneur, he secured funds and led cyber-security projects in Nortel Networks Netas in the cybersecurity R&D department between 2010 and 2015 where he was one of the founders of the department. He also worked in a global troubleshooting center where he found the root causes of telecommunication fraud and security incidents and designed effective solutions. His 15+ years of experience as a cybersecurity professional is noteworthy.

Melih Tas received B.Sc. and M.Sc. degrees in Computer & Electronics Science from Marmara University from 2003 to 2013. He completed his Ph.D. education in Computer Engineering & Cyber Security at Bahcesehir University between 2014 and 2022.

He is an active speaker at hacker conferences including DEFCON, BlackHat, Offzone, and NopCon. His academic research was published in journals including IEEE and Elsevier. He is the author of Mr.SIP: A SIP-Based Audit and Attack Tool. He holds an OSCP certificate.

He won awards in many entrepreneurship and innovation competitions, including the best cyber security project and the best cyber security thesis.

His recent academic interests focus on developing a Novel Blockchain-Based Caller-ID Authentication Scheme in order to combat caller-ID spoofing attacks. As of today, he contributed to the academic literature with 5 novel VoIP attacks and 2 novel VoIP defense approaches and has 6 CVEs from big companies like IBM, Cisco, and HP.

His professional interests cover the design and analysis of both offensive and defensive security mechanisms in the fields of VoIP Security, Vulnerability Intelligence, Attack Surface Management, Asset Mapping, and Cyber Insurance.