Profile

Name
Yuta Morioka (森岡 優太)
Handle
morioka12 (@scgajge12)
Birthplace
Kanagawa, Japan
Position
Security Engineer · Business Development (BizDev)
Specialty
Product Security · Offensive Security
Practice
Bug Bounty Hunter (since 2020)
Community
AWS Community Builder — Security (since 2024)
15+ CVE IDs Disclosed
2 Books Published
6th Intigriti Peak · Feb.2024
20+ Talks & Lectures

Work Experience

Future
Future · Aspiration
Product Security Engineer
Enterprise / Product Company (PSIRT · Security Team)
  • Product Security Engineering
  • PSIRT · Vulnerability Coordination
  • In-house Security Team Operations
Present
Apr.2025 – present
Security Engineer · BizDev
Cyber Security Vendor x2
  • Business Development (Professional Services, Product)
  • Security Consulting (DevSecOps / IR Support, Education)
  • Security Advisory (External Advisor)
Past
May.2023 – Mar.2025 (Full-time / Part-time)
Security Engineer・Pentester
GMO Cybersecurity by Ierae, Inc.
  • Web Penetration Test
  • Source Code Assessment
  • LLM Security Assessment
Jul.2020 – Apr.2023 (Long-term Internship)
Security Engineer・Assessor
Flatt Security Inc.
  • Vulnerability Assessment (Web, Cloud, Platform)
  • Launched a New Service (Cloud Security Assessment)
  • Technical Blog Writing
Mar.2019 – Jan.2020 (Part-time)
Cram School Teacher
Rinkai Inc.
Consulting Track Record
  • DevSecOps maturity uplift & process improvement
  • Security guideline refinement & standardization
  • Security strategy & initiative roadmap planning
  • Incident response support & advisory
  • Security training delivery & internal enablement
  • Sounding-board sessions for day-to-day security operations

Education

Apr.2020 – Mar.2024
Department of Information Security
Information Science College
Research theme: “Current Issues and Solutions Regarding AWS WAF”
FY2022 Captain
Member · Information Technology Circle
IPFactory

Books

2026 (Zenn Book)
脱初心者のための実践バグバウンティ登竜門
EN: Beyond the Basics: Practical Bug Bounty Hunting
2025 (Zenn Book)
30日でCVE取得! OSSバグハント入門
EN: Practical Introduction to OSS Bug Hunting
2026 (Forthcoming · July)
An introductory book on Bug Bounty / Bug Hunting
Publication · JP — Title & venue to be announced.

Press

Levtech LAB · Interview

The Hope of the Bug Hunter World: Why I Tackle Bug Bounty and Their True Appeal

Interests

Security
Web Security Cloud Security Penetration Test DevSecOps
Bug Hunt
Bug Bounty OSS
CTF / Hands-on
Capture The Flag Hack The Box

HTB: Pro Hacker (Mar.2021) · Japan 6th (Jan.2023)

Other
Web Development CLI Tool Honeypot Log Analysis Competitive Programming Support for DX
Now · Recent Focus
  • Software Supply Chain Security
  • Cloud Breach
  • Security for AI
  • MCP & Skills Security
  • Incident Response
  • DevSecOps · Shift Left

Tech Skills

Focus Areas

Web Application Security Cloud Security (AWS) Offensive Security Vulnerability Research Source Code Assessment LLM Security Assessment

Programming Languages

Go Python TypeScript JavaScript Ruby PHP C

Cloud · AWS

AWS S3 EC2 Lambda GuardDuty WAF Bedrock

Tooling

Claude Code Caido Nuclei Original CLI Tools

Qualifications

2022
AWS Certified Solutions Architect – Associate (AWS SAA)
2021
AWS Certified Cloud Practitioner (AWS CLF)
2018
Information Technology Passport Examination (IPA FE)

Primary

Writing

Talks & Profile

Last updated: