About
Engineering, security and privacy R&D in high tech.
Work Experience
Security and privacy product R&D. Building and running the bot management product engineering team. Some carryover responsibilities from my previous roles.
Executed all-things-security for Fastly through IPO and developed technology behind Fastly’s core products.
Offensive security.
Penetration testing, vulnerability assessments, training development and delivery, business development. Ranked among top producing consultants. Privileged to work with some awesome hackers.
Bootstrapped vulnerability discovery fundamental research program, from pitch, funding, to execution.
Directed research as primary investigator. Created systems and tools, researched, and developed business on behalf of lab stakeholders.
Designed and implemented improvements to chip fabrication simulation and planning engine. Nominated by IBM for PSU Internship of the Year.
Education
Graduated with Distinction
Projects
Built and led the team that developed Fastly's Bot Management product.
C2PA is a way to tell where media came from. I actively collaborated with other members to develop and publish the first version of the C2PA technical specification, through 2022. I also co-chaired the threats and harms taskforce in 2021.
Worked with some legit geniuses to invent Fastly Compute's tech. Supported an amazing team that developed it into a product.
Acted as tech lead in developing and executing Fastly's security program. 2015 ish - 2019 ish.
I was a research lead at SEI CERT. I needed an above-board way to fund collaboration with CMU, so I bootstrapped CERT's DoD fundamental research program. Soup to nuts, including funding. The university research grew into a commercial spin-out.
Side Projects
Projects, demos, and PoCs. Some more popular than others. Mostly infosec and privacy related. All available on Github.
Speaking
Also presented at ArcticCon 2018 and as a less formal talk at Duo. I linked that version here since it is on YouTube.