My path into security started with a hand-me-down Apple IIe, late-night IRC, and the early web. I taught myself HTML, CSS, and JavaScript by tweaking profiles on Arcadium.
By high school, I was hand-coding websites for the dot-com startup Iprose Internet / Unique Focus, building early web presences for local businesses, and running LightOnline, a music e-zine. In college, I moved deeper into design work, creating advertisements, magazine layouts, and album art.
That indie-web background led naturally into security, from bug bounties to leadership across application security, vulnerability management, and security operations. I still bring the same hacker curiosity to the work, but now I apply it to risk, measurement, and decision-making.
Outside of my day job, I help build and support the communities I care about as a core maintainer of HackerTracker, a DEF CON Goon, and an adviser to the NumFOCUS Security Committee.
My security-focused projects live at TypeError, where I publish open-source tools and experiments around measurable, reproducible defense. I use Snally for data-driven side projects, prototypes, and web experiments.
Away from the keyboard, I’m usually logging miles on Maryland back roads or exploring with my wife and two daughters.