Application Security Engineer
Developed tools, managed incident response and identified vulnerabilities for the product security team.
Designed and developed internal applications to automate away security related concerns.
Provided security reviews of applications in Golang, Python and Java and offered context specific recommendations to remedy potential threats.
Provided security reviews of new architecture and infrastructure in both AWS and GCP
Developed product security monitoring tools to automate the identification of critical components in a constantly evolving and large organization without blocking developers.
Facilitated product incidence response, quickly identifying solutions and delegating efforts.
Performed dozens of security assessments of a wide range of platforms of various size and complexity.
Identified critical vulnerabilities in Web Applications (Rails, Spring, Django, etc), iOS and Android applications, REST and SOAP APIs, internal and external networks, Linux Host Configurations and SSO deployments
Triaged Bug Bounty issues and acted as liason between companies and pentesters
Managed and mentored an intern through a summer research project
Tech lead complex projects solo and as part of a group
Wrote internal Python tools to simplify day to day testing
Provided programming support for a research project that attempted to optimize the optimization layer of SMT solvers using Program Synthesis and Machine Learning.
Internet Services Development Intern
Performed security assessments, improved automated phishing detection software and developed new APIs to interact with Namecheap.