Over a decade of experience evangelizing secure software development β from code to cloud. Currently focused on AI-driven security initiatives and hardening cloud-native infrastructure at scale.
- Application Security β Web, mobile, and API security
- AI Security β Securing AI systems and using AI to enhance security workflows
- DevSecOps β Embedding security into CI/CD pipelines and developer workflows
- Cloud Security β AWS and GCP infrastructure hardening
- Infrastructure as Code β Terraform, Kubernetes, and policy-as-code
- Threat Modeling & Security Automation
Python CLI for sweeping GitHub organizations and user accounts with custom Semgrep rules. Like TruffleHog for secrets β but for any code pattern you define. Supports AI-powered triage via Claude, GPT, Gemini, and AWS Bedrock.
Companion repository for "Securing 4 C's of a Software Product β AWS Edition". A hands-on course covering Code, Container, Cluster, and Cloud security using GitHub Actions, Semgrep, OPA, Kyverno, Gitleaks, and more.
Terraform-based AWS playground for the S4CP curriculum. Covers IAM automation, multi-environment isolation, OIDC-based CI/CD, EKS with RBAC, Secrets Manager integration, and policy enforcement via OPA and Kyverno.
Spin up a fully configured Ubuntu security workstation on AWS EC2 in minutes. Comes pre-loaded with VSCode, Nmap, Nuclei, Semgrep, AWS CLI, and Terraform β with Route53 domain assignment and IP-restricted access.
Minimal Terraform configuration to provision AWS IAM resources for running GLM and other foundation models via AWS Bedrock β purpose-built for PentAGI, an autonomous AI penetration testing agent.
Security: Semgrep Β· Trivy Β· Gitleaks Β· Nuclei Β· Nmap Β· OPA Β· Kyverno
Cloud: AWS Β· GCP Β· Terraform Β· Kubernetes Β· EKS
DevSecOps: GitHub Actions Β· OIDC Β· Docker Β· Helm
Languages: Python Β· HCL Β· Shell Β· JavaScript
- AWS Certified DevOps Engineer β Professional (2024)
- AWS Certified Developer β Associate (2024)
- Certified Kubernetes Administrator (2023)
