About me
I'm a red team consultant with 3+ years pentesting Fortune 500 environments, with a focus on Building Automation (BACS) and Industrial Control Systems (ICS). My work focuses on finding and exploiting vulnerabilities that matter, then helping teams fix them.
Outside of work, I build and break secure, scalable systems across the stack, from cloud infrastructure to custom developer tools. I bring a deep technical range to everything I work on, with a focus on writing solid code grounded in how systems behave in the real world.
Current Focus
-
Red Team Operations
Penetration testing web apps, infrastructure, and APIs for Fortune 500 companies, with deep specialization in BACS and ICS environments.
-
Software Development
Building production-grade applications and developer tools. Full-stack development with TypeScript, Rust, and modern frameworks.
-
Security Research
Analyzing emerging threats and attack trends impacting enterprises. Publishing research on practical security challenges and developing frameworks that help organizations measure and reduce risk.
-
Threat Modeling
Systematically identifying and prioritizing potential threats before they become vulnerabilities. Analyzing attack surfaces, trust boundaries, and developing comprehensive mitigation strategies.