I build security programs from scratch and translate complex technical risk into language the business actually acts on. Currently at Shopify, figuring out how to safely adopt AI tools — MCP servers, agentic workflows, and the third-party sprawl that comes with them.
Six years across vulnerability management, threat intelligence, and audits. GIAC-certified pen tester.