Application Security Engineer
About

Skills

Research

Experimentation to discover cutting edge vulnerabilities and security solutions.

Software Engineering

Develop tools to measure and enhance the security of computer systems and networks.

Security Consulting

Penetration testing to evaluate the security of infrastructure.

Research

Experiments I've Performed

Control-Flow Integrity

Address Space Layout Randomization

Electronic Voting Security

Security Evaluation of Scantegrity II

Measuring Network Retransmits

Performance Evaluation of Monitors

Resilient Multipath Routing

Recovery Delay Affected by QoS

Malicious Media Sanitization

Removing Steganographic Content

My Next Project

Something in the Future

Experience

Academic History and Work Experience

  • 2007-2011

    Computer Engineering

    Studied computer engineering at UC Davis, graduating in 2011. This major provided an excellent background in both hardware and software. Though I was interested in computer security even before beginning my degree, I became determined to focus on this field after taking an introductory computer security course.

  • 2011-2017

    Computer Science Doctorate

    In 2011 I began my doctoral studies in computer science. Through various research projects and internships, I explored many areas of computer and network security.

  • Summer 2012

    Internship at Sandia

    Between June and September 2012 I interned as a security researcher at Sandia National Labs. I worked on detecting malicious content hidden in media files and developed an interface that efficiently sanitizes data while preserving a high degree of fidelity.

  • Summer 2013

    Internship at Lawrence Livermore

    My next summer internship was at Lawrence Livermore. Here, I investigated the feasibility of a generic metric for network resilience. Though a unified metric ultimately was not developed, I was able to thoroughly detail the technical, computational, and theoretical challenges in producing such a metric. I then focused on exploring quantitative metrics for specific security properties.

  • Summer 2014

    Internship at Lawrence Livermore

    Continuing my work from last summer, I began researching multipath routing to fill the gaps in quantitative security metrics. Specifically I measured the recovery delay of data transfers over multipath networks with different quality of service levels.

  • Summer 2015

    Internship at Lawrence Berkeley

    At Lawrence Berkeley, I evaluated the performance of network monitors. The goal was to determine which tool scales the best with high-performance network traffic. This analysis can also be applied to other network tools, such as intrusion detection systems.

  • 2017-

    Application Security Engineer at Cloudflare

    I am currently working as an Application Security Engineer at Cloudflare. In my role, I get the opportunity to work with several different engineering teams, helping them to ensure that the products they launch are secure. Cloudflare is an amazing company with great people and we're making a fantastic impact on our customers' sites, as well as on the general internet community.

Contact Me