About

Hey!

I’m a cyber security leader currently serving as a Principal Security Architect at Adobe. As a part-time creator I occasionally share technically deep, long-form content.

I believe in a pragmatic, software engineering-informed approach to security - one that balances risk with business velocity. I advocate for a dual-pronged strategy: tackling immediate threats and addressing root causes. Above all, I see security as a sociotechnical system - one that can only be optimized when practitioners actively listen to, and collaborate with, the teams they support.

My expertise spans a broad spectrum across product security: memory safety, supply chain security, static and software composition analysis, threat modeling at scale, systems architecture, security program design and a lot more.