About

I’m a well-informed product and services leader based in San Francisco. I’m passionate about technology in general and information security in particular. I strive to understand clients’ information security challenges and deliver elegant solutions.

2018-Now I’m currently Head of Research at Kenna Security, digging into the future of vulnerability management. Kenna takes a data-first approach and is leading the market in vulnerability and technical risk management.

2013-2018 I took an early stage (~#7, first in the US) role with Bugcrowd, driving the future of modern application security in the Enterprise. We built and delivered the most effective security assessment solution for web and mobile applications on the market today.

2012-2013 I served as CTO and platform lead for Pwnie Express, an Information Security startup developing products and solutions for Security Service Providers, Government and F500 organizations. During my tenure we released 6 products, garnered thousands of customers, and raised seed and A funding of 5.1M to grow the organization.

2007-2012 Before I joined Pwnie Express, I was a integral part of Rapid7. I joined as a junior pentester in 2007 and threw myself into the work, learning everything I could about security assessment and penetration testing. I quickly moved into a team lead position, mentoring and building a world-class, world-wide security assessment team. Over the course of 3 years, we conducted assessments and penetration tests for Fortune 500 clients around the globe. When the opportunity arose in 2010, I joined the newly formed Rapid7 Metasploit team to spearhead the development of a dedicated quality assurance team. Metasploit is one of the largest open source Ruby projects in the world, and a critical tool to the pentesting and security communities. Along the way my team provided the bedrock for 75+ high-quality Metasploit releases in just 2 years.