Meet the team.

Architect-led engagements. Credentialed engineers. Banking-sector security experience and real-world bug bounty skills behind every audit.

Certified engineers. Proven results.

Every Cloud Upload engagement is led by a credentialed engineer named in the report. Our team brings industry-standard certifications, banking-sector security experience, and active engagement with bug bounty programs and OWASP.

  • TA

    Taha A.

    Founder & Cloud Architect

    GCP Professional Cloud Architect

    Architecture, FinOps, Multi-Cloud Strategy, Client Engagement

  • AT

    Abdullah T.

    Cloud Security Lead

    CISSP Associate · CCSP

    DevSecOps, Compliance, NOC/SOC, Multi-Cloud Ops, DR/BC

  • AH

    Ali H.

    Application Security Lead

    CEH · eMAPT · eWPT

    Penetration Testing, OWASP, Secure Code Review, Bug Bounty, Banking Security

  • AH

    Abdul H.

    DevOps Engineer

    AWS Cloud Practitioner

    CI/CD, Terraform, Cloud Migration, GCP & AWS, Monitoring, IaC

Reports for paid audits and Pen Tests are signed by the engineer who performed the work. Auditors and customer security teams accept signed PDFs as evidence of credentialed authorship.

Credentials portfolio

Industry-recognized awarding bodies.

Cloud Upload engineers hold certifications from the most respected bodies in cloud and cybersecurity. Plus active engagement with bug bounty programs that validate practitioner skill against real adversaries.

  • ISC2

    CISSP (Certified Information Systems Security Professional), CCSP (Certified Cloud Security Professional). The gold-standard cloud-security certification body recognized for ANSI/ISO 17024 accreditation.

  • Google Cloud

    Professional Cloud Architect, Professional DevOps Engineer (in progress). GCP-issued certifications validating production-grade architecture decisions on Google Cloud.

  • Amazon Web Services

    AWS Cloud Practitioner. AWS-issued foundational certification covering core AWS services, security, and architecture principles.

  • EC-Council + INE Security

    CEH (Certified Ethical Hacker) from EC-Council. eMAPT (Mobile App Penetration Tester) and eWPT (Web App Penetration Tester) from INE Security. Hands-on penetration testing certifications validating practitioner skill across web, mobile, and infrastructure attack surfaces.

All certifications are individually attributable to named team members on this page. Reports for paid audits and Pen Tests cite the credentialed engineer who performed the work.

Validated through real-world testing

HackerOne Bug Bounty Participation.

Our security engineers participate in HackerOne bug bounty programs — finding real vulnerabilities in real companies, validated and rewarded by the affected organizations. Continuous bug bounty engagement keeps practitioner skill current against live adversary techniques, not just lab scenarios. Methodology for our paid Pen Test tier reflects this real-world validation.

Start with a free audit.

Submit your AWS account ID. We deliver severity counts, a category breakdown, and top issues — same scan engine as our paid tiers, no credit card required to start.

Start your free audit → Talk to the team →