Tomek is an Application Security Consultant at NCC Group with experience in secure web application development, security tool research and development, code review, and penetration testing. Over the past 2 years, he has looked at and assessed the security of some of the largest Ruby on Rails applications on the internet with great success. Tomek has recently been credited with the disclosure of 3 Rails related CVEs. (CVE-2015-3225, CVE-2015-3227, and CVE-2015-4619).