I'm Head of Information Security and IT at Upwind, a cloud-native
application protection platform (CNAPP). I lead security strategy,
risk management, and compliance programs for high-growth technology
companies.

What I Focus On

My expertise spans AI security, cloud security architecture, and
enterprise security program development. I'm particularly focused
on emerging threats from:

• Model Context Protocol (MCP) vulnerabilities
• OAuth security in AI agent systems
• LLM security architectures
• Cloud-native security at scale

Background

I'm the author of "Cyber Security Kill Chain: Tactics and Strategies"
with a foreword by Rohit Ghai, CEO of RSA Security. The book provides
a comprehensive framework for understanding and defending against
modern cyber attacks.

Prior to Upwind, I held security leadership roles at:

• Uber - Information Security
• Apple - Information Security
• BILL Holdings - Security Leadership

Credentials

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• Active member: ISSA Los Angeles, ISACA, Cloud Security Alliance, ISC2

This Blog

I started this blog to share practical insights from securing AI and
cloud systems at scale. My focus is on actionable guidance for security
leaders, not theoretical frameworks.

Topics I cover:

• AI security implementation
• Cloud security architecture
• CISO leadership and career development
• Security program building
• Emerging threats and defenses

Let's Connect

Connect with me:

• LinkedIn