San Francisco, California, United States
As an accomplished application security leader with over fifteen years of experience, I have a proven track record of driving security initiatives and building robust security programs that protect organizations from cyber threats. My expertise in secure software development, threat modeling, and vulnerability management, combined with my ability to collaborate cross-functionally and communicate effectively, has enabled me to lead teams successfully and implement security strategies that align with business objectives. I am passionate about staying up-to-date on the latest security trends and technologies, and I am committed to delivering measurable results that strengthen an organization's security posture.
Leading Okta's Product Security program and initiatives, unifying the security capabilities of WIC (Okta) and CIC(Auth0)
Leader for all Product, Offensive and Infrastructure Security initiatives at Okta
Network Penetration Testing Mobile Auditing and Penetration Testing Web Application Penetration Testing Exploit Development Code Review in several technologies Threat Modeling and Architecture Review
Lead the Exploit Writing Team at Core Security
Developed web and binary application exploits Led the Mobile Devices Exploit Team for Black Hat LV 2011 Researched and developed a Cross-site Scripting Fuzzer Module in Core Impact Pro Led internal training on exploiting and fuzzing web applications and binaries Performed code audits in a variety of languages Wrote exploits for well-known applications, such as Oracle VM Server, WordPress, phpMyAdmin, HP OpenView, Apache, Joomla, MS Office, Drupal, and Symantec IM Manager