Over a decade of experience evangelizing secure software development — from code to cloud. Currently focused on AI-driven security initiatives and hardening cloud-native infrastructure at scale.

• Application Security — Web, mobile, and API security
• AI Security — Securing AI systems and using AI to enhance security workflows
• DevSecOps — Embedding security into CI/CD pipelines and developer workflows
• Cloud Security — AWS and GCP infrastructure hardening
• Infrastructure as Code — Terraform, Kubernetes, and policy-as-code
• Threat Modeling & Security Automation

Python CLI for sweeping GitHub organizations and user accounts with custom Semgrep rules. Like TruffleHog for secrets — but for any code pattern you define. Supports AI-powered triage via Claude, GPT, Gemini, and AWS Bedrock.

Companion repository for "Securing 4 C's of a Software Product — AWS Edition". A hands-on course covering Code, Container, Cluster, and Cloud security using GitHub Actions, Semgrep, OPA, Kyverno, Gitleaks, and more.

Terraform-based AWS playground for the S4CP curriculum. Covers IAM automation, multi-environment isolation, OIDC-based CI/CD, EKS with RBAC, Secrets Manager integration, and policy enforcement via OPA and Kyverno.

Spin up a fully configured Ubuntu security workstation on AWS EC2 in minutes. Comes pre-loaded with VSCode, Nmap, Nuclei, Semgrep, AWS CLI, and Terraform — with Route53 domain assignment and IP-restricted access.

Minimal Terraform configuration to provision AWS IAM resources for running GLM and other foundation models via AWS Bedrock — purpose-built for PentAGI, an autonomous AI penetration testing agent.

Security: Semgrep · Trivy · Gitleaks · Nuclei · Nmap · OPA · Kyverno
Cloud: AWS · GCP · Terraform · Kubernetes · EKS
DevSecOps: GitHub Actions · OIDC · Docker · Helm
Languages: Python · HCL · Shell · JavaScript

• AWS Certified DevOps Engineer – Professional (2024)
• AWS Certified Developer – Associate (2024)
• Certified Kubernetes Administrator (2023)