Relevant Work Experience:
Twitch (Amazon)
Sr. Manager - Security Engineering: February 2021 - Present
Managed Twitch's exposure to public software vulnerabilities by coaching a team of 5 in building:
Repeatable and scalable response procedures
Automatic inventory collection across ~3,000 AWS accounts
Trust across the organization through well-crafted, data-driven requests for patching
Enabled data-driven incident response by aggregating 100TB/day of logs from ~3,000 AWS accounts in Splunk, scaling 50x in my time
Built a research and discovery team to collect data and build tools to reinforce and simplify Twitch executive's understanding of Twitch's threat model
Provided ~1,000 engineers with Tier 1 remote access to production
Sr. Security Engineer: June 2018 - February 2021
Designed a highly-scalable, multi-account vulnerability scanning system for AWS resources (1,000s of accounts, 100,000s of resources), and established data-driven security at Twitch
Developed tactical fixes for urgent, high-impact business needs and followed up with strategic long-term solutions, including a secure, multi-tenant system for allowing third-party workers access to highly sensitive data
Worked directly with Twitch executives to assess, manage, and accept security risk caused by proposed business decisions, including building a repeatable process for teammates to follow
Box
Sr. Site Reliability Engineer: May 2013 - June 2018
Built centralized secrets management infrastructure and managed the multi-year roadmap for comprehensive integration across the entire Box technical stack
Released and evangelized Secure ChatOps design and implementation through presentations at DevOpsDays and Velocity
Led a team of inexperienced developers in creating an extremely reliable, custom-routed, WebSocket load balancer/high-availability system with 100% availability since launch (4 years) - US 9,483,473
Advised teams working on fundamental redesigns of Box’s architecture to ensure new systems would be operationally sound, including the move from bare metal to Kubernetes
Led the response for many high-severity incidents, often coordinating across multiple development teams; responsible for the entire Box infrastructure
NetApp
Systems Architect: January 2012 - April 2013
Integral member of the team developing high-visibility converged infrastructure reference solutions (FlexPod) in response to customer needs, including personally building comprehensive deployment automation and support-focused validation tooling