Omer Farooq Email & Phone Number

Cambridge, MA, US

I view ML/AI consulting engagements as a mathematical problem first and foremost. My key area is architecting business use cases into an AI/ML deployable, scalable workload. I have supported Fortune 500 companies in refining the AI/ML use-case to mathematical problem framing using algorithms, proof of concept development, data training, Cloud deployment.

Supported multiple CISO offices at Fortune 100 companies and Federal agencies with 100k employees. – Developed Five Year Vision plan for an org with 31.2K retail locations. The plan strategized and created initiatives for security, networking, AI/ML, SecOps, and Secure SDLC, resulting in a realignment of personnel and extended $20M in funding allocation.

I have built over twenty (20) DevSecOps Cybersecurity program leading to over 1 million plus finding including critical zero days in third party and custom codebase. Stood up DAST, SAST, Container, IaC and Cloud tools for continuous monitoring and policy based automated detection and remediation. SAST - Used Auxin AlphaScale SAST, Synk, SonarQube to scan.

• Kubernetes (K8) Architect, developer, and Security engineer. I have helped over 10+ organization architect k8 based solutions from the ground up, migrate from containerized and monolithic applications to K8, and secure.
• Architecture - Architected and Design solution for ephemeral computing for Vfx rendering, event-driven workloads and Clusters, and batch jobs using Kubernetes clusters, namespaces, and KubeCtl APIs, saving.
• Migration - Architected the migration from containerization application in AWS ECS and VM-based computing environment to EKS and GKE. The migrated solution increased the scalability and resiliency of the entire system.
• Security - Fixed over 10k vulnerabilities in k8 clusters by creating and managing continuous scans as part of the K8 DevSecOps operations. Remediate strategic and tactical issues, including Secrets, Ingress path, and.

I lead a global team of 25+ engineers, developers, and consulting professionals. We provide our client's security, software development, and cloud architect consulting services. Along with our consulting services, I am the chief technology officer for our industry-pioneering Workload Security Protection Platform, AlphaScale.Auxin Security is a customer.

As a Cloud Solutions, network and Data Architect I provide expert architecture and design for cloud native and hybrid cloud serverless, event-driven, batch data processing, and web applications workloads. – Architected and designed cloud solution that meets shared responsibility and pillars of well-architected solution (Security, Operations, Resiliency.

Supported a public trading retailer - Build and design data pipelines for processing data from over 10K stores. Designed data lakes, data shards, and data marts using Google Cloud Platform. Wrote pipelines using Apache Workflow for jobs in Google Bigquery, Apache Spark, and Cloud tooling.

Security (DevSecOps): Performed application and network security assessments, reported strategic (architecture and design) and tactical (implementation, integration) issues, and consulted clients on how to improve overall security posture. Application and system penetration testing (OWSAP xss, injection, crsf) and vulnerability analysis using open-source.

As an identity consultant I have worked on the following project: * Integrated three (3) applications with over 200 million consumers and tied the application to a white-label Microsoft AD B2C identity store backend. The identity-supported user signs up, sign in with MFA and management* Build out API Identity solution using AWS Lambda authorizer and AWS.

Security Governance, Risk, and Compliance (GRC) - Provided guidance on data security policies from design, implementation, and governance documentation, vulnerability management and patch management, cloud security and metrics preparation for executive. Supported over 15 organizations in building security programs with specialized DevSecOPs programs based.

Offensive Application security for cloud, mobile, embedded, web application. Discovered and reported over 100+ CVE to clients including 10+ Remote Code Execution. Wrote malware to test endpoint security for Linux, Mac OSX, and Windows kernel. Wrote Windows kernel silent malware data exfiltration agent that defeated 98% open source endpoint security.

As a software Supply Chain Consultant, I supported multiple clients internal Secure Software Development Processes. – Instituted internal software supply chain firewall using Nessus, and other tools. The internal software supply chain processes reduced over 10K vulnerabilities in over 10M SLOC code leading to saving of 10,000 hours software engineer hours..

Software Developer - BackendWeb application (Golang, Java, python, NodeJS MySQL/Postgress, MangoDB, Angular and typescript). Developed an encryption library in C/C++, ported the software to Linux user, Linux Kernel, Windows users, Windows Kernel using WinDDK, OSx, iOS (objective C), Android, and PowerPC based IBM AIX. Supported and developed software and.

1. AI Security – Conf42, September 20242. AI Security – December 2024 – Warsaw, Poland3. Cloud Native DevOps for LLM and Threat Modeling – December 2024 – Munich, Germany4. Cloud Native DevOps and Threat Modeling – September 2024 – Colorado Springs, Colorado5. Workshop - Cloud Native DevOps for LLM and Threat Modeling – December 2024 – Munich, Germany6..

Built the unified risk based DevSecOp platform that includes SIEM, SOAR, SAST, SCA, DAST, Kubernetes, Identity and Cloud Security. Used for over 100 plus projects.

Cost optimization and AI Security platform. Includes an AI Token Exchange for cost optimization, taking advantage of overhead and underutilization, model gateway, and AI DLP solution to prevent data leakage to models.

Mclean, VA, US

Full-Stack Software Development: Designed and implemented server side web services and applications using C# (ASP.NET MVC, Angular, ADO.NET Entity/.NET Framework), JAVA (Spring, JSF), Python (Django), and cshmtl/razor, AJAX and jQuery. Designed and implemented Restful and Open Data (ODATA) APIs. Designed and implemented server backend micro services using.

Cleveland, OH, US

Software Development: Designed, coded, debugged and tested a real-time platform code packages that provided deterministic time and space partitioning similar to ARINC-653 specification using C/C++ using commercial and GNU tool chains. Developed test scripts in Python. Modified and updated filtes, schedule and kernel software. The platform software provides.

Melbourne, Florida, US

Software Development: Designed and developed Board Support Package (BSP) with device drivers, inter-process communication, secure kernel interface, and real-time operating support for various real-time operating systems (RTOS) and hardware using C using GNU tool-chains. Designed and coded object-oriented application software, ported embedded software, and.

Doctor Of Philosophy (Ph.D.) - Coursework Completed//Candidate//Abd/Will Not Return, Electrical And Computer Engineering

Master, Electrical Engineering

Bs, Computer Engineering