Ulad Murashka

Ulad began his IT career in 2011 as a technical support specialist and joined ScienceSoft as a Linux system administrator in 2014. Passionate about information security, Ulad became a security engineer in 2015 and actively participated in the development of the security testing direction at ScienceSoft. Having profound knowledge and experience in offensive security, Ulad became a Certified Ethical Hacker (CEH) in 2017.

During his tenure at ScienceSoft, Ulad contributed to over 100 security projects as a team lead, security engineer, and consultant. He enriched his portfolio through hands-on experience with vulnerability assessments; black, white, and gray-box penetration testing of networks and applications; secure code reviews; infrastructure security audits; and testing of IT systems and components for compliance with SOC 2, HIPAA, PCI DSS, and GDPR. In one of his projects, he helped a European bank with $400+ million in assets to significantly increase its API security level.

Ulad participated in security conferences like IBM & ScienceSoft Security Day, Black Hat USA 2019, researched the latest domain trends, and mentored cybersecurity specialists. Due to his invaluable contribution to the cybersecurity field (security solution development, both conducting and undergoing security training, mentorship, and writing feature articles), Ulad earned a Cybersecurity Career Mentor badge from EC-Council. He used to regularly share his knowledge with readers on ScienceSoft’s blog. For example, he explained the differences between a source code review and penetration testing, drew a detailed guide to network vulnerability assessment, and compared different types of penetration testing.

Due to his deep knowledge of cybersecurity solutions and practices, innovative mindset, and leadership skills, Ulad was appointed Principal Architect in 2025. As a Principal Architect, he researched new approaches to secure system design and created solutions to effectively counter cyber threats and overcome complex architectural challenges.

As he noted during his time at ScienceSoft:

The complexity of the requirements, infrastructures, or software has never been a reason to turn down a new project, even if it’s something we’ve never tackled before. On the contrary, ScienceSoft sees it as a chance to push its expertise further, solve problems others shy away from, and deliver meaningful security outcomes.