Richard Clarke
About Richard Clarke
Richard Clarke is a Senior Application Security Engineer with extensive experience in application security and vulnerability discovery. He has worked in various roles at Huawei Technologies and VGW, advocating for the adoption of fuzzing in software development.
Current Role at VGW
Richard Clarke currently serves as a Senior Application Security Engineer at VGW, a position he has held since 2021. In this role, he focuses on enhancing application security practices within the organization. His responsibilities include overseeing security measures and implementing strategies to protect applications from vulnerabilities. Clarke's expertise in application security contributes to VGW's commitment to maintaining high standards of security in its software development processes.
Previous Experience at Huawei Technologies
Richard Clarke has extensive experience at Huawei Technologies, where he worked in various security roles from 2011 to 2017. He began as a Junior Security Analyst, progressing to Security Analyst, and ultimately serving as a Senior Security Analyst. His tenure at Huawei spanned six years, during which he developed skills in security analysis and vulnerability assessment within the telecoms industry. This experience laid the foundation for his subsequent roles in application security.
Education and Expertise
Richard Clarke earned a Master of Engineering (MEng) in Computer Science from the University of Southampton, where he studied from 2006 to 2010. His academic background provided him with a solid foundation in computer science principles, which he has applied throughout his career. Clarke specializes in source code review, reverse engineering, and fuzzing, focusing on identifying vulnerabilities in software applications. He advocates for the integration of fuzzing into standard development practices.
Advocacy for Fuzzing in Development
Richard Clarke is a proponent of adopting fuzzing as a standard practice alongside unit testing in software development. He emphasizes the importance of this technique in discovering vulnerabilities early in the development process. Clarke's advocacy is rooted in his belief that integrating fuzzing into the continuous integration/continuous delivery pipeline enhances overall application security and helps developers create more robust software.
Technical Support Experience
In addition to his security roles, Richard Clarke worked as a Technical Support Assistant at the University of Southampton in 2009. This position involved providing technical assistance and support, contributing to his understanding of user needs and technical challenges. This experience complements his security expertise by enhancing his ability to communicate effectively with developers and stakeholders.