mo khan

Software Developer

mo@mokhan.ca | linkedin.com/in/xlgmokha | www.mokhan.ca

Experience

Senior Backend Engineer, GitLab - Authorization Team (Jan 2023 - Present)

  • Enabled GitLab's Cells architecture by implementing database sharding for authorization tables with organization-scoped keys
  • Built enterprise custom roles system enabling fine-grained permission management across GitLab.com and self-managed instances
  • Led Policy-as-Code language evaluation (Cedar, Rego) to modernize authorization beyond declarative-policy
  • Prototyped Envoy Proxy integration with OAuth2, JWT authentication, and external authorization filters
  • Collaborated with principal and distinguished engineers on authorization patterns, security architecture, and database reviews

Senior Software Developer, CMD0 (May 2022 - Dec 2022)

  • Ensure secure API access by building an API gateway secured by JWTs, Casbin policies and OpenID Connect
  • Enable backend teams to prototype quickly by building REST API endpoints to manage user permissions and membership
  • Collaborate with frontend developers by providing API endpoints to retrieve session/profile data

Senior Software Engineer II, HashiCorp - Terraform Cloud (Feb 2022 - Apr 2022)

  • Unblocked a large customer acquisition (Twilio) by working on a project to manage team authorization via an external identity provider
  • Unify the HCP and Terraform Cloud authn and authz strategy by collaborating in a working group to identify possible solutions

Senior Software Engineer, GitHub - Dependabot (Feb 2021 - Feb 2022)

  • Secured enterprise software supply chains by porting automated dependency updates (Dependabot) to GitHub Enterprise Server
  • Provided deeper insight into software supply chains by extending public API endpoints
  • Routinely resolved and improved product quality by triaging issues, fixing defects, and releasing new features

Senior Software Engineer, Shopify - Subscriptions (Nov 2020 - Feb 2021)

  • Built full-stack subscription platform features for merchants using Ruby on Rails
  • Developed APIs for subscription management and billing workflows
  • Collaborated with product teams to improve subscription onboarding experience

Senior Backend Engineer, GitLab - Composition Analysis (Jul 2019 - Nov 2020)

  • Provided software license detection by maintaining the GitLab license analyzer
  • Detected software licenses for high sensitivity organizations by developing support for limited network connectivity environments
  • Increased the number of supported package managers by adding support for Conan, Mono, Pipenv and more
  • Sped up CI pipelines for license scanning users by shrinking Docker images and maintaining Debian packages
  • Improved developer loyalty by reviewing and releasing community contributions

Software Engineer IV, Cisco - Advanced Malware Protection (AMP) (Sep 2013 - Jul 2019)

  • Secured 14M enterprise devices for 100+ Fortune 500 companies and governments across the world
  • Unified customer login experience across all Cisco Security products by building a single sign on system
  • Supported peers by routinely resolving difficult technical issues through hands-on support and pairing
  • Fostered a culture of continuous improvement by mentoring colleagues through pair programming and presentations

Previous Experience

Data Shapers, MediaLogic, ThoughtWorks, eCompliance, ARC Resources, Uppercut (2004 - 2013)

Open Source

Education