I am an application security specialist and DevSecOps engineer with over 6 years of experience integrating security into software development lifecycles without compromising agility. I provide security controls across the SDLC and CI/CD pipelines, reducing risk through automation, secure design, and proactive threat mitigation.
I work directly with development, architecture, infrastructure, and product teams to embed security directly into the SDLC and CI/CD through automation and protections aligned with business objectives. My approach focuses on risk-based decisions, creating controls that reduce exposure upfront and help teams deliver faster, enabling security to be an accelerator rather than a blocker.
I have led and implemented application security and DevSecOps strategies in the financial, aviation, telecommunications, and healthcare industries, translating security requirements into practical solutions that strengthen the delivery of resilient, scalable, and reliable products.
Two different destinations, same goal: showing my work with different levels of detail.
|
Live portfolio Published site — the full experience: narrative, featured projects, about, experience, stack, and contact. Best to read end-to-end. 
|
Portfolio on GitHub Repository companion — deeper in some spots, shorter in others vs. the site. Not a one-to-one copy; another angle on the same work. 
|
Where You Can Find Me
Built with focus on security, automation, and impact.