• Built golang/pulumi based AWS account creation tooling to handle creation of dozens of accounts each quarter spanning commercial and govcloud environments. This tool expedited account provisioning from days to hours.

• Primary contributor and architect of terraform driven cloudformation templates in a delegated administration pattern to deploy global roles for our PAM tool across 4 different AWS Organizations deploying to 250+ accounts

• Owner and automator of AWS SCP deployment tooling across 4 AWS Organizations to help meet both standard commercial and FedRamp related guardrails

• Identity Squad lead, handling initiatives related to IAM components in AWS and Azure. Supporting teams with deployment, configuration, and consultation regarding identity security best practices in cloud native environments.

• Architected and implemented an Azure and AWS AuthN/Z framework for Github Actions automation of CI/CD workloads to migrate deployment of over 20 different repositories.

• Built automation infrastructure for provisioning Management Groups, Azure AD Security Groups, Enterprise Applications, and Service Principles. This automation helped to seamlessly integrate AD groups into Application Roles across 4 different internally facing applications.

• Lead implementation, testing and planning of leveraging Cloudflare for Teams Zero Trust Network Access patterns across 250 engineers

• Founded security branch of Dutchies Cloud Center of Excellence and developed 13 unique case studies for secure patterns in AWS

• Transformational change of migrating 13 AWS accounts from standalone AWS Organizations to AWS Control Tower environment

• Lead triaging and remediation of 3 critical, 2 high, and over a dozen medium/low bug bounty reports.

• Primary point of contact for product and application security vendor procurement

• Helping to ensure a nearly 2 Petabyte Data Lake migration for a Global 10 Company was accomplished securely and efficiently

• Architected and developed a custom serverless based Redshift Authorization Framework to administer data governance at scale for a 1000+ customer use case

• Expertise in navigating custom solutions implemented through Serverless, CDK, and Terrafrom as part of a large enterprise pipeline

• Security architecture for a large data lake migration with a large enterprise automotive customer ranging from IAM to IR

• Identity and Access Management and Data Protection specialization in multi-account environments

• Experience with Attribute based access control ABAC in a large multi-product SaaS environment

Dogfood the Signal Sciences product to provide actionable security data for our own products

Security vulnerability research and subsequent rules development to protect customers from exotic exploits

Internal security risk and compliance tooling and reporting

Develop quick python scripts to help understand where to focus product development roadmap with regards to the rules platform

Use golang to develop in product features related to template rules and virtual patches including CVE's and other indications of exploit outside of normal protections offered by our product

Work directly with customers to experiment, iterate and deploy features aligned with the goal of our product and the needs of customers

Worked with new customers to deliver implementation services and ensure maximized usage of the Signal Sciences Web Protection Platform product

Developed beginner and intermediate level Signal Sciences training programs including content and interactive lab modules based on OWASP Juice Shop deployed in containers for maximum portability

Developed internal python applications to integrate multiple performance metrics including Signal Sciences Product REST API, Mavenlink, Expensify, and Salesforce

Performed attack analysis and product tuning to react to attack driven responses to protecting unique and complex web applications both customer and internally facing

Developed mentor program for training all new professional services teams and contributed to mentor program for Sales Engineering

Worked to develop Advanced Rules in Golang template language to provide coverage for business logic attacks, CVE Virtual Patching and Other unique Web Protection Platform use cases.