I was Google's Uber Tech Lead for Network Security where I worked to define the vision for and chart the future path of network security engineering programs at Google.

Documenting the deep and rich history of cybersecurity, one story at a time.

I was a member of the cybersecurity advisory council.

I was a founding member of the Qualys technical advisory board and provided expert advice over the years to help make and keep Qualys best of breed.

I was hired to build and lead the Innovation Team inside of the Threat Intelligence Team. My charge was to rapidly design and build tools and services to support the needs of incident responders, security analysts, and researchers across the Defensive Security Organization. In support of this role, I was the lead designer, developer, maintainer, evangelist, lobbyist, and paternal caretaker of our internal threat intelligence platform. Built from scratch, it is a microservices-based ecosystem of loosely coupled components built entirely in AWS featuring the following: * A SaaS/FaaS layer * A streaming layer * An automated bulk ingestion component * Dynamically loadable modules for ETL/services * Various client interfaces including purpose-built command-line tools, an API, and a Slack AppI regularly liaised with peers and leaders across the entire Defensive Security Organization in order to understand other teams' requirements for security tooling and services, evangelize and update current projects, and finally, seek and drive consensus on the solutions I designed and built.

Responsible for the sorts of things you'd expect a team lead to be responsible for at a company full of astonishingly brilliant people.Role highlights:* Led a small team of brilliant engineers to build really smart tools and services that support top-line revenue-based products* Performed bleeding edge research into IDN homograph abuse; wrote a white paper detailing the prevalence and presented findings and leading conferences * Acquired US Patent 9882933 (Tokenization of domain names for domain name impersonation detection using matching)* Acquired US Patent 9762612 (System and method for near real time detection of domain name impersonation)* Built and maintained C-based server and end-user library and tools for transiting real-time data and services directly from the Farsight Security Information Exchange (SIE) to the subscriber's network edge* Built and maintained C-based server for loadable module anomaly detection platform* Designed, built, and maintained Brand Sentry, a novel method for detection of real-time DNS-based brand infringement* Designed, built, and maintained private hub-and-spoke model SIE bitrate monitoring platform replete with Holt-Winters-based anomaly detection* Founded and provided/edited many articles for the Farsight blog

I programmed the Internet. And sometimes multiple intranets. And every now and then, I'd sniff a packet or two.

I built the first technology team and helped drive/advise marquee projects at TruFusion during its infancy.

I worked on the fabled Applied Security Intelligence team. Their ethos is simple: conduct industry- and product-related security research and development to protect Cisco's customers.Role Highlights:* Chaired the working group that designed and built CVSS* Chaired the working group that designed and built CVRF* Designed a "Malware Messaging Protocol", a purpose-built TLV network protocol designed to transit malware-related information* Wrote "Hummingbird" an asynchronous network transaction-oriented scanning platform that decoupled sending from receiving to enable blistering speed* Conducted Internet-wide DNS infrastructure security posture scans / assessments

I was a director in the consulting organization of @stake. I conducted and lead engagements in many different sectors including finance, manufacturing, energy, networking, and software.

At Guardent, I was the Director of Research and Development. I ran the day to day operations of the research team and oversaw numerous simultaneous research projects.

At ISS I led and contributed to security consulting engagements.

At CTP I led strategic security consulting engagements for large enterprise customers.