Sr Security Architect

• Jul 2020 - Present

Principal Software Engineer

• Feb 2019 - May 2020

SIEM, SOAR, Threat Intelligence SIEM, SOAR, Threat Intelligence

Principal Security Engineer

• Apr 2018 - Feb 2019

Threat Modeling, HIPAA, AWS, Terraform, Kotlin, Python At Akiri, I wore multiple hats: that of a security architect, of a devops engineer, and of a security officer. I successfully lead the company efforts to transition Akiri product into a HIPAA-compliant AWS cloud service. I started from a threat modeling exercise (as it seemed like the fastest way to learn Akiri Switch architecture), which resulted in a security roadmap. I worked together with the CTO and the lead engineers on its planning, and with the whole devops team on its implementation. I helped to re-architect the product to use solely AWS HIPPA eligible services, and to satisfy data longevity and high availability requirements. I added AWS Inspector into Akiri CI/CD pipeline, restricted SSH access through bastion hosts, wrote Auth0 integration to extract the authentication and user management logs. I reviewed and helped to harden base Ubuntu EC2 images as well as HashiCorp Vault instances. I authored Incident Response plan, prepared HITRUST certification path, filled healthcare customers compliance questionnaires, etc. (If I told you I liked this part of my job, I'll not be telling you the truth) Show less

Principal Engineer -- Security

• May 2013 - Apr 2018

Threat Modeling, Security Engineering, Crypto, PKI, Kerberos, KMIP, Infrastructure Security, C, Python I animated "secure" in the context of a core company product - data appliance based on a highly scalable distributed file system. I started with creating a threat and trust models, then defined the requirements and features, designed, coded, released and maintained the product. I owned every security feature of the product: from storing user passwords to TOTP based two-factor authentication. I lead (rather successfully) project-based agile teams. And I coded every day -- and loved it. Show less

Hands-On Architect

• Jul 2008 - May 2013

I suggested and insisted on security being an integral part of Automatiks connected PEV platform, navigating variety of issues from user data confidentiality and privacy protection to web application security, CAN bus and Zigbee. This position had a focus on prototypes, data visualization and presentations; my colleagues told me I got rather good at these. I suggested and insisted on security being an integral part of Automatiks connected PEV platform, navigating variety of issues from user data confidentiality and privacy protection to web application security, CAN bus and Zigbee. This position had a focus on prototypes, data visualization and presentations; my colleagues told me I got rather good at these.

Founding Engineer, Software Development

• Mar 2007 - Mar 2008

I helped to build a team and turn a pet project into a product and a VC funded startup. I also assumed responsibility for application security engineering, including adding OpenID support. I helped to build a team and turn a pet project into a product and a VC funded startup. I also assumed responsibility for application security engineering, including adding OpenID support.

Director of Software Development

• May 2005 - Jan 2007

Does anyone remember Filmloop? We nearly nailed photo sharing back then. Also, we were the first, who utilized Memcached as our database and were serving 100M requests per day. I started by designing and coding Filmloop client authentication and REST protocol integrity; was later promoted to lead server development team. Does anyone remember Filmloop? We nearly nailed photo sharing back then. Also, we were the first, who utilized Memcached as our database and were serving 100M requests per day. I started by designing and coding Filmloop client authentication and REST protocol integrity; was later promoted to lead server development team.

Senior Software Engineer

• Jan 2001 - Dec 2004

The first commercial application of Spread Aloha® Multiple Access was a system that enabled high-speed, bi-directional Internet access using the existing geostationary satellite infrastructure. My secure OTA upgrade mechanism was instrumental in supporting the service for our customers under evolving use-case assumptions. The first commercial application of Spread Aloha® Multiple Access was a system that enabled high-speed, bi-directional Internet access using the existing geostationary satellite infrastructure. My secure OTA upgrade mechanism was instrumental in supporting the service for our customers under evolving use-case assumptions.

Project Leader

• Oct 1998 - Jun 2000

Mariposa sponsored my H1-B visa and moved me to California as an expert in ATM (asynchronous transfer mode) stack. By the time I joined, however, we needed IP routing and NAT, which I successfully delivered. Mariposa sponsored my H1-B visa and moved me to California as an expert in ATM (asynchronous transfer mode) stack. By the time I joined, however, we needed IP routing and NAT, which I successfully delivered.

Software Engineer; co-founder

• Jul 1994 - Mar 1999

Two of my colleagues and I won an industry award for best ATM signaling testing device and we later built a successful consulting business around ATM stack. It was acquired by Inverness Systems and in it's turn by Virata (http://www.eetimes.com/document.asp?doc_id=1183802) Two of my colleagues and I won an industry award for best ATM signaling testing device and we later built a successful consulting business around ATM stack. It was acquired by Inverness Systems and in it's turn by Virata (http://www.eetimes.com/document.asp?doc_id=1183802)

Computer Security Consultant, Antivirus Researcher

• Mar 1992 - Jul 1994

I pursued my passion and developed an antivirus product based on several novel ideas, while supporting myself by freelancing. I pursued my passion and developed an antivirus product based on several novel ideas, while supporting myself by freelancing.

Software Engineer

• Dec 1990 - Feb 1992

Antivirus Research Engineer

• May 1990 - Dec 1990