Resume

Summary

I am a security engineering leader with 15+ years of experience building security functions, security teams, and technical controls across high-growth startups, global security platforms, and regulated fintech environments.

My work spans AI and LLM security, product security, cloud and Kubernetes security, DevSecOps, detection engineering, incident response, vulnerability management, Web3 security, crypto custody controls, and secure platform engineering.

Current Focus

• AI and LLM security for agentic systems, including prompt injection, tool abuse, data exfiltration, memory poisoning, and excessive agency.
• MCP and agent security control planes that make tool authority, provenance, evidence, and runtime behavior visible enough to govern.
• Cloud-native security for regulated platforms, including Kubernetes guardrails, workload identity, secrets management, and detection pipelines.
• Security program building: roadmaps, team leadership, secure SDLC, threat modeling, vulnerability management, audit readiness, and executive communication.

Selected Experience

Staff Security Engineer / Security Engineering Lead, Finoa

I lead security engineering across AppSec, InfraSec, SecOps, incident response, and secure engineering enablement for a regulated crypto custody and fintech platform.

Selected work includes AI/LLM red teaming, secure AI-assisted development workflows, MCP security context for AI assistants, EKS security baselines, workload identity, Kubernetes segmentation, HashiCorp Vault, HSM-backed key-management reviews, CTEM workflows, Elastic SIEM pipelines, and control implementation for ISO 27001, SOC 2, BaFin, DORA, MiCAR, and GDPR expectations.

Senior Engineering Manager, Security, Taxfix

I joined as the first security hire and built the security function end to end for a fast-scaling cloud-native SaaS company.

Selected work includes building and leading a five-person security team, establishing the security roadmap, secure SDLC, threat modeling, bug bounty, Security Champions, Auth0 rollout, API security controls, GitLab security scanning across 100+ microservices, image signing, deploy-time verification, Kubernetes admission controls, ISO 27001 readiness, Series D security due diligence, and incident response maturity.

Lead Security Engineer, Instart Logic

I built local R&D capabilities for WAF, bot management, DDoS protection, attack research, and customer-facing mitigation work.

Selected work includes leading a 10+ person team, improving WAF detection for SQL injection, XSS, RCE, and application-layer attacks, developing bot-defense improvements, building automated attack simulation and replay harnesses, and supporting enterprise customers during active security events.

Senior Security Researcher, Trend Micro

I worked in Deep Security Labs on IPS, malware defense, exploit validation, and enterprise detection capabilities.

Selected work includes ransomware research for WannaCry and NotPetya, ANN-based shellcode detection experiments, exploit replay and evasion testing, APT detection logic, honeypot infrastructure, and Microsoft MAPP collaboration for early vulnerability signatures.

Senior Cybersecurity Engineer, Akamai

I was a founding engineer in the Security BU, contributing to Kona WAF, bot management, Prolexic DDoS capabilities, and global edge-scale security operations.

Selected work includes botnet and abuse research, WAF rule tuning, Prolexic DDoS mitigation support, Edge DNS availability strategies, automated test harnesses for security controls, and mentoring 50+ engineers in detection, incident response, and customer escalation.

Certifications

• CISSP
• AWS Certified Security - Specialty
• Certified Ethical Hacker

Writing That Maps To This Work

• MCP security - The new supply chain risk for AI agents
• Epistemic security - The missing control plane for AI agents
• Threat Modeling Autonomous AI Agents in Production
• Why Transformer LLMs are better at finding code vulnerabilities than classical neural networks