Michal Špaček
AeroLeads people directory · profile

Michal Špaček Email & Phone Number

Security engineer & hacker, web developer, speaker and consultant at Shoptet
Location: Prague, Czechia, Czech Republic 11 work roles
1 work email found @shoptet.cz LinkedIn matched
✓ Verified Jul 2026 3 data sources Profile completeness 86%

Contact Signals · 1 work email

Work email s****@shoptet.cz
LinkedIn Profile matched
3 free lookups remaining · No credit card
Current company
Role
Security engineer & hacker, web developer, speaker and consultant
Location
Prague, Czechia, Czech Republic
Company size

Who is Michal Špaček? Overview

A concise factual answer block for searchers comparing this professional profile.

Quick answer

Michal Špaček is listed as Security engineer & hacker, web developer, speaker and consultant at Shoptet, a with 71 employees, based in Prague, Czechia, Czech Republic. AeroLeads shows a work email signal at shoptet.cz and a matched LinkedIn profile for Michal Špaček.

Michal Špaček previously worked as Head of Security at Shoptet and Hacker at Web Security & Php Consultancy, Trainings, Speaking, Bug Hunting.

Company email context

Email format at Shoptet

This section adds company-level context without repeating Michal Špaček's masked contact details.

*@shoptet.cz
71% confidence

AeroLeads found 1 current-domain work email signal for Michal Špaček. Compare company email patterns before reaching out.

Profile bio

About Michal Špaček

Hack the planet.Specialties: HTTP, HTML, XML, SSL, PHP, FPD, RFC, JPEG, URL, SMTP, WSDL, TCP, IMAP, SVN, F2F, XSLT, CIDR, QR, SQLIA, MVC, INI, CSP, UDP, RFI, BCP, POP, XSS, SSH, CVS, HSTS, XKCD, SQL, MC, PEAR, DNB, WAN, MIVEC, ASM, TLS, SFPD, MIC, CT, RFC, PGP, ATM, JSON, DNS, FTP, SJFC, CSRF, ICQ, MTA-STS, P2P, XMPP, TLSRPT, MIME, VISA, DMARC, API, PIC, GPG, LAN, UTF, PGSQL, BASH, SW, RPM, C, PNG, IIN, LFI, SOAP. OMG, WTF, BBQ.

Listed skills include Php, Web Development, Internet Security, Web Application Security, and 12 others.

Current workplace

Michal Špaček's current company

Company context helps verify the profile and gives searchers a useful next step.

Shoptet
Shoptet
Security engineer & hacker, web developer, speaker and consultant
hlavní město praha, praha, czechia
Website
Employees
71
AeroLeads page
11 roles

Michal Špaček work experience

A career timeline built from the work history available for this profile.

Head Of Security

Current

I'm the security team in Shoptet, the Central European Shopify alternative. It's a technical role, mostly. I've known Shoptet since at least 2012, I know many Shoptet people, present or past, and I love e-commerce, in my own way, so the decision wasn't that difficult.My Shoptet security team is the smallest and the largest at the same time - because everyone in the company is my team member, some just don't know it yet. It would be very boring without them, and I couldn't do it without them either.We run tens of thousands eshops so there's a chance to influcence and motivate quite a large part of the market, and to royally mess it up, too. I've always loved it, both ways.My mission is to do it like I've always done, be transparent and don't require passwords to be changed every 91.5 days. Yes, we've already rolled out 1Password company-wide, why are you asking?

Jan 2023 - Present

Hacker

Current
Web Security & Php Consultancy, Trainings, Speaking, Bug Hunting

Helping companies figure out web security, performance, and architecture in general.My goal is to teach web developers (and managers!) how to build secure and fast web applications, that's why I also do some speaking. I've done 100 talks and counting, including 4 times in a row at BSides/Passwords in Las Vegas. My talks are available at https://www.michalspacek.com/talks, though most of them are in Czech.I also run my own public and in-house trainings, using my experience gained during my professional career, be it thinking as a hacker or designing applications as an experienced developer. See https://www.michalspacek.com/trainings for details.I look for and report security bugs, from Atlassian to T-Mobile CZ, was introduced to their Hall of Fames, from Alza to T.S.Bohemia. If you live in the Czech Republic, then my reports prevented leaking your personal data, even more than once. You're welcome :-) I'm a fan and an advocate for security.txt because trying to figure out where to report things shouldn't take this long.

Dec 2011 - Present

Software Developer

I build report-uri.com, a real-time security reporting tool for both browser reports (CSP, NEL, ...) and email reports (DMARC, TLS-RPT), with Scott Helme and Troy Hunt, both award-winning security researchers and bloggers.We've processed 1.3T reports so far (in Dec 2022, up from 1.2T reports in June 2022 and 1T in Feb 2022, see report-uri.com and scroll down for the current number) currently doing 5k+ requests per second every day – that's some 100k requests before I've even managed to write this sentence. Subscriptions & payments powered by Stripe, report processing uses Cloudflare Workers & Digital Ocean Droplets, PHP 8 & Microsoft Azure Storage.I contribute regularly to the Microsoft Azure Storage SDK. We rely on testing and static analysis to prevent most bugs reaching the production environment. We automate all the things and update our dependencies regularly. We have our vendor directory versioned in Git and for a really good reason, ask me. I've built the initial Stripe payments integration and then switched to Stripe-hosted payment pages few years later. I generally do most of the development nowadays.I know how to build a secure web app, check out our penetration testing reports https://scotthelme.co.uk/tag/penetration-test/We deploy on Fridays, and if you ask I'll tell you how we've managed to do that. We've even upgraded to PHP 8.0 on Friday 13th 👻

Jun 2017 - Dec 2022

Security Engineer

Prague, The Capital, Czech Republic

I was in charge of all things security: handling our penetration testing response as well as doing testing on my own, handling security incident responses, helping with security measures and design of secure storages and procedures. Also, raising team security awareness and introducing best practices to keep Apiary people safe and secure.

Apr 2015 - Sep 2015

Lead Web Developer

Hlavní Město Praha, Česká Republika

Introduced up-to-date web security concepts and helped build payment and order pickup integrations. Discovered several security issues, introduced better protection for user passwords (no more SHA-1), initiated the move to HTTPS everywhere. Introduced Content Security Policy for resources loaded into our HTML.

Sep 2013 - Jun 2014

Lead Software Engineer & Scrum Master, Secure Web

Prague, The Capital, Czech Republic

Building web applications in PHP (mainly Account https://secure.skype.com/account, Skype Manager https://manager.skype.com and various PCI-DSS certified payment systems 💳, integrations and APIs) and writing backend PostgreSQL functions and scripts in Python.

Jul 2007 - Nov 2012

Developer/Analyst

It Systems A.S.

Infrastructure support, bugtracking software management, knowledge basemanagement, learning- and document management systems analysis & tweaking.

Jan 2007 - Jun 2007

Web Developer, System Operator

Webmade, Spol. S R.O.

Web sites and on-line applications development, co-founder of www.tojeono.cz webhosting service.

Sep 2005 - Dec 2006

Network Administration

Biology Centre Ascr, V.V.I., Institute Of Plant Molecular Biology

Network, server, workstation administration, user support.

Sep 2005 - Dec 2006

Freelancer

My Own One Man Show Company

Internet websites and applications, network and server administration(cooperation with WEBMADE, spol. s r.o. on www.tojeono.cz web hostingstart-up; cooperation with Institute of Plant Molecular Biology ASCR,administration of network, servers and workstations).

Nov 2002 - Sep 2005

Web Developer

Calvo, Spol. S R.O.

Internet presentations, websites, graphic designs.

Aug 2000 - Nov 2002
Team & coworkers

Colleagues at Shoptet

Other employees you can reach at shoptet.cz. View company contacts for 71 employees →

FAQ

Frequently asked questions about Michal Špaček

Quick answers generated from the profile data available on this page.

What company does Michal Špaček work for?

Michal Špaček works for Shoptet.

What is Michal Špaček's role at Shoptet?

Michal Špaček is listed as Security engineer & hacker, web developer, speaker and consultant at Shoptet.

What is Michal Špaček's email address?

AeroLeads has found 1 work email signal at @shoptet.cz for Michal Špaček at Shoptet.

Where is Michal Špaček based?

Michal Špaček is based in Prague, Czechia, Czech Republic while working with Shoptet.

What companies has Michal Špaček worked for?

Michal Špaček has worked for Shoptet, Web Security & Php Consultancy, Trainings, Speaking, Bug Hunting, Report Uri, Apiary, and Slevomat.

Who are Michal Špaček's colleagues at Shoptet?

Michal Špaček's colleagues at Shoptet include Martin Bruna, David Koller, Johana Kučerová, Kateřina Vaníčková, and Michal Jirkovsky.

How can I contact Michal Špaček?

You can use AeroLeads to view verified contact signals for Michal Špaček at Shoptet, including work email, phone, and LinkedIn data when available.

What skills is Michal Špaček known for?

Michal Špaček is listed with skills including Php, Web Development, Internet Security, Web Application Security, Postgresql, Sql, Mysql, and Scrum.

Find 750M verified contacts

Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.

People with similar names

Check these profiles if this is not the Michal Špaček you were looking for.

View similar profiles