Founder and CEO of Crimpd - the most-downloaded training app designed specifically for rock climbers.Highlights include:- The Crimpd app has been downloaded more than 500,000 times with an average rating of 4.7 stars with users in over 120 countries- Designed and developed the Crimpd app for iOS, Android, and web platforms.- Architected and developed Crimpd's server APIs with a 99.999% uptime record since 2018- Partnered with Lattice Training to deliver over 3,000 training plans to their clients- Over 5 million workouts logged- Over 300% growth in total active subscribers for Crimpd+ since launch

Chief evangelist and strategist for Imperva's Application Security business unit.Highlights include:- Interviews and thought pieces published in Fox News, Wall Street Journal, ThreatPost, SC Magazine, CPO Magazine, SDxCentral, VentureBeat, The New Stack, Application Security Weekly, Dark Reading, and more.- Recorded more than 2 dozen podcast interviews with leading Information Security & Developer-focused podcasts- Spoke at more than 3 dozen security & developer conferences from 2020 - 2024.- Responsible for 4 of the top 5 most-viewed Imperva webinars in both 2022 & 2023.- Led technical due diligence and integration strategy for Imperva's acquisition of CloudVector- Developed Imperva's go-to-market strategy for API Security, resulting in a more than 300% YoY growth- Issued 2 patents for threat detection technology designed to identify and mitigate the leakage of sensitive information via remote APIs- Conducted analyst briefings and interactive demos of Imperva's API Security offering resulting in Imperva being the highest-rated API Security vendor among Web Application and API Protection vendors in KuppingerCole's Leadership Compass report for API Security & Management- Advised product engineering and UX teams on cloud architecture best practices for a front and back-end re-design of Imperva's Cloud Application Security solution- Led integration planning for the Application Security business unit following Thales acquisition of Imperva

Responsible for pre-sales engineering and consulting for Global 2000 enterprise customers.Highlights include:- Performing executive quarterly business reviews with Imperva's top 100 largest global customers- Working with Imperva's global partners and sales team to expand Imperva's cloud security solution footprint- Establish technical partnerships with AWS and Microsoft to help organizations secure their applications during cloud migrations- Advise Imperva's product development teams on new solution offerings and go-to-market strategy, including Account Takeover Protection and Attack Analytics

Responsible for pre-sales engineering of Imperva's application and data security solutions for enterprise customers in the Pacific Northwest.- Named SE of the Year for 2016- Responsible for growing ARR for a top 3 US telco into one of Imperva's 5 largest enterprise accounts as measured by ARR- President's Club recipient for 2 consecutive years attaining >120% of quota each year- Lead SME for Imperva's Incapsula cloud security service

Provided strategic guidance to the top 50 global financial institutions on combating online and mobile fraud.Responsibilities included:- Delivering technical presentations to security, development, and business audiences of large financial institutions- The creation of custom mobile malware for Android and command & control infrastructure showcasing mobile account takeover attacks and their mitigation strategies - The creation of sales presentations, technical briefs, and white papers- Responding to RFI's and RFP's from prospective customers- Speaking at industry conferences on topics including mobile application security, mobile payments, online banking, and digital currencies- The creation of technical POC evaluation processes and test criteria for prospective customers

Safeguarded the data of over 500 million consumers worldwide in over 33 countries.- Designed and implemented a comprehensive application security program complying with sections 6.3, 6.5, and 6.6 of the PCI DSS 2.0 - Responsible for the creation of technical requirements, vendor analysis, proof of concept, selection, and implementation of a static code assessment tool- Conducted security code reviews with development teams, assisted in the remediation of application security vulnerabilities, and documented relevant mitigations for over 60 Java & .NET applications- Automated static code assessments as part of application build processes - Authored internal policies and control standards covering security in the SDLC, application security standards and best practices, and log management- Responsible for the architecture and deployment of Imperva Web Application Firewall (WAF) spanning four data centers in two countries- Created and tuned custom WAF security policies to protect sensitive applications from SQL Injection, XSS, CSRF, and Denial of Service attacks- Implemented custom WAF policies to detect instances of fraudulent account activity. Worked with the security incident response team to develop response procedures for managing compromised application accounts- Created WAF operational procedures and conducted application security training sessions with Security Operations team- Coordinated annual penetration testing exercises covering the external networks, internal networks, and web applications of business units located in eight countries. Responsible for coordinating remediation with IT operations teams, performing validation tests, and documenting evidence.- Represented Information Security in Enterprise Architecture and Application Architecture committees- Responsible for the creation and execution of a three year application security roadmap- Participated in customer and compliance audits as a subject matter expert in application security

Designed and built application hosting environments providing information management services to over 45,000 businesses and 500 million consumers worldwide.- Designed, built, and managed highly available middleware environments using IBM WebSphere ND 6.1/7.0, Apache Tomcat 6.x/7.x, and Apache HTTP Server.- Provided operational support for over 80 applications in a 24/7 on-call rotation- Conducted root-cause analysis of application issues, including analysis of thread and heap dumps- Coordinated with application development teams to implement fixes and additional monitoring- Implemented application performance monitoring and alerting using a combination of Wily Introscope and custom scripts written in Bash and Jython - Tuned application environments based on load test performance - Established and documented environment standards based on industry best-practice and operational feedback- Created scripts to perform environment installations and automate application deployments- Created environment run books, troubleshooting procedures, and training resources. Conducted operational hand-off meetings and training sessions.

Supported Firmware Engineering team in developing printer emulations for rival scripting languages in C++ and assembly language.- Analyzed bug reports, reproduced errors, debugged code and implemented fixes - Participated in sprint planning, code reviews, and peer coding sessions - Created unit and integration test cases