Senior Backend Engineer, GitLab - Authorization (Jan 2023 - Feb 2026)
- Unblocked Cells architecture by adding organization-scoped keys to authorization database tables, enabling the database sharding effort
- Extended the custom roles system in Ruby on Rails by adding fine-grained permissions for enterprise access control
- Conducted early research for a next-generation authorization architecture in Go, evaluating Cedar policies, SpiceDB, and Envoy proxy integration
Senior Software Developer, Command Zero (May 2022 - Dec 2022)
- Ensured secure API access by building an API gateway secured by JWTs, Casbin policies and OpenID Connect
- Enabled backend teams to prototype quickly by building REST API endpoints to manage user permissions and membership
Senior Software Engineer II, HashiCorp - Terraform Cloud (Feb 2022 - Apr 2022)
- Unblocked a large customer acquisition (Twilio) by working on a project to manage team authorization via an external identity provider
- Unify the HCP and Terraform Cloud authn and authz strategy by collaborating in a working group to identify possible solutions
Senior Software Engineer, GitHub - Dependabot (Feb 2021 - Feb 2022)
- Secured enterprise software supply chains by porting automated dependency updates (Dependabot) to GitHub Enterprise Server
Senior Software Engineer, Shopify - Subscriptions (Nov 2020 - Feb 2021)
- Built full-stack subscription platform features for merchants using Ruby on Rails
- Developed APIs for subscription management and billing workflows
- Collaborated with product teams to improve subscription onboarding experience
Senior Backend Engineer, GitLab - Composition Analysis (Jul 2019 - Nov 2020)
- Enabled license compliance for air-gapped environments by developing offline scanning support for high-sensitivity organizations
- Broadened language ecosystem coverage by adding license scanning support for Conan, Mono, Pipenv and more
- Sped up CI pipelines for license scanning users by shrinking Docker images and maintaining Debian packages
- Grew open-source community adoption by reviewing and shipping community contributions to the license analyzer
Software Engineer IV, Cisco - Advanced Malware Protection (AMP) (Sep 2013 - Jul 2019)
- Secured 14M enterprise devices for 100+ Fortune 500 companies and governments across the world
- Unified customer login experience across all Cisco Security products by building a single sign on system
- Mentored colleagues and resolved difficult technical issues through pair programming, presentations, and hands-on support
Data Shapers, MediaLogic, ThoughtWorks, eCompliance, ARC Resources, Uppercut (2004 - 2013)
- Created a marketplace for Makers by developing the original version of Fairgoods.com
- Equipped Health & Safety Auditors by building the initial version of eCompliance audit software
- Supported multiple departments of an energy producer by developing software for compensation and production planning
- Helped small businesses build customer loyalty by developing loyalty and gift card applications for POS terminals
- saml-kit: Ruby SAML 2.0 authentication toolkit for enterprise SSO integration (200K+ downloads)
- spandx: Ruby CLI for software license detection and compliance scanning across package ecosystems (90K+ downloads)
- scim-kit: Ruby RFC-7643 user provisioning toolkit for enterprise identity management (30K+ downloads)
- elelem: Interactive REPL for local LLM development with Ollama
- 2016 IT Security Certificate of Achievement, SAIT
- 2008 MCPD .NET Framework 2.0 Enterprise Application Developer
- 2007 C# Programming Certificate of Achievement, SAIT
- 2004 Computer Control Technology Diploma, SAIT