Feb 2024 - Present
Penguin Random House
Senior Manager, Application Security

🚀 Lead a team in enhancing the security posture of 100+ apps with OWASP, MITRE ATT&CK, NIST CSF guidelines.

📚 Conduct STRIDE-based threat modeling sessions for 20+ development teams.

🌐 Designed and standardized a new application onboarding process, embedding security from inception.

🤝 Primary security liaison for global application development teams.

Mar 2023 - Feb 2024
Penguin Random House
Manager, Application Security

🔍 Established a pen-test framework focused on OWASP Top 10.

💻 Developed a custom ASPM tool to consolidate and standardize issues from multiple sources, integrated with OpenAI's GPT-4 model to prioritize and remediate vulnerabilities.

🛡 Championed PRH WAF to protect applications.

🎓 Led security training sessions for 135+ developers.

Feb 2022 - Mar 2023
Penguin Random House
Senior Application Security Engineer

🔎 Introduced SAST and SCA, reducing library vulnerabilities by 80%.

🐍 Developed a Python app to detect vulnerable WordPress plugins.

May 2020 - Feb 2022
Aaron's, Inc.
Application Security Engineer

☁ Defined Cloud Security standards for Docker and Kubernetes.

🚨 Developed Python program for SAST/DAST scan alerts via Slack.

🛠 Implemented RASP on 30+ applications.

May 2019 - May 2020
Aaron's, Inc.
Application Security Analyst

🌌 Led the deployment for Data Loss Prevention on Slack.

💻 Developed a C# program to uncover hidden web apps and APIs.

🕵️ Triaged 3,000+ SAST/DAST findings across multiple technologies.

May 2013 - May 2017
United States Navy
Senior Meteorologist

🌦 Senior Aviation Meteorologist providing aviation weather support worldwide.