top of page
Screenshot 2021-12-18 at 3.24.47 PM.png
Navid Kagalwalla

I am a Security and Privacy Engineer at Skyflow. I recently graduated with an MS in Information Technology - Privacy Engineering (MSIT - PE) degree from the School of Computer Science at Carnegie Mellon University. I received the (ISC)2 Graduate Scholarship (2022). Previously, I have worked at Skyflow as a Privacy Research Intern and at Deloitte as a Cyber and Strategic Risk intern.  

I have reported critical vulnerabilities in Pfizer, Proctor & Gamble, Audi and many more.  I have 7 CVE IDs issued to me for finding vulnerabilities in content and booking management systems. For more details please see my write-ups.

My research interests span security, privacy and blockchain. For more details please see my publications.

I use he/him pronouns. 


  • Feb 2023: Joined Skyflow as a Security and Privacy Engineer

  • Nov 2022: I will be a reviewer at PPAI - AAAI'23 

  • Sept 2022: Attended UBRI Connect London 2022 (funded by CMU)

  • Jul 2022: Short position paper accepted at Privacy Threat Modelling Workshop @ USENIX SOUPS'2022

  • Jul 2022: Awarded the 2022 (ISC)2 Graduate Scholarship

  • Feb 2022: Attended ETHDenver 2022 (funded by CMU)

  • Sept 2021: Issued 7 CVE IDs for vulnerabilities reported in content and booking management systems

  • Aug 2021: Started my Masters at Carnegie Mellon

  • May 2021: I got accepted into Carnegie Mellon, Georgia Tech and Johns Hopkins for my Masters

Photo Credits: @sohotography
bottom of page