Calum Elrick

Cybersecurity professional bridging technical security and criminal justice. Discovered CVE-2022-1386, a critical zero-day vulnerability. Commercial experience includes 18 months of conducting penetration testing and vulnerability management, plus a recent summer internship at Reversec covering network, web, cloud, AI and mobile security.

Currently completing BSc Criminology and Cybercrime at the University of Portsmouth (graduating 2026), developing expertise in cyber threat landscapes, digital forensics, and policy formation. Proficient in security tooling, vulnerability research and threat analysis.

Highlights

CVE Discovery

Discovered CVE-2022-1386, a critical WordPress vulnerability recognised by NIST, demonstrating real-world impact in vulnerability research.

Professional Experience

• 18 months as Cybersecurity Consultant at Rootshell Security (Feb 2022 - Sep 2023)
• Summer 2025 internship at Reversec UK Ltd focusing on network, web, cloud, mobile and AI security
• Current IT Help Advisor at University of Portsmouth (Sep 2024 - present)

Academic Excellence

BSc (Hons) Criminology and Cybercrime at University of Portsmouth, graduating 2026 with First-class honours (78% average in second year). Dissertation examining safety and privacy risks in live-location-based dating applications.

Certifications

• Certified Ethical Hacker (CEH) (2021-2025)
• HackTheBox Hacker Rank (multiple domains)

---

Current Focus

I'm actively researching identity security, specifically Microsoft Entra Connect synchronisation exploitation, and examining the intersection of criminology and cybersecurity through my dissertation work on dating application safety.

Graduating summer 2026 and seeking roles in offensive security, threat intelligence, or government cybersecurity.

---

Quick Links

• Research Projects
• Professional Experience
• Academic Work
• Contact