I provide security strategy and technical leadership to teams securing Google's AI model development and serving infrastructure.

Google's Secure AI framework - https://safety.google/cybersecurity-advancements/saif/

Engineered secure-by-default access to model weights for Google’s Gemini 2.5, maintaining low friction for researcher velocity; recognized as a technical contributor in the official Gemini 2.5 research report - https://storage.googleapis.com/deepmind-media/gemini/gemini_v2_5_report.pdf

My core work focuses on defining access control standards for Google that defend sensitive operations and user data against insider threats.

I also lead the development of a novel class of access control systems that have materially reduced insider risks at Google. These access controls are deployed widely across the company where they perform the critical function of protecting user data and Google's most sensitive internal systems. I design and build security products that not only work at Google scale but can also be easily adopted across Google's diverse businesses.

Post Apigee's acquisition, I was the security lead for Google's acquisition of Apigee. Today, Apigee is a successful part of Google Cloud and continues to be the safest place to run your APIs in the cloud.

Google acquired Apigee in 2016. I led Security, Privacy and Compliance for Apigee. I joined the company as it's first security engineering hire and had the privilege of providing security leadership through the company's journey from pre-IPO through IPO and it's eventual acquisition by Google.

Apigee is the market leading enterprise API Management Platform and part of the Google Cloud product portfolio. Hundreds of the world's largest companies including household brands like PayPal, Home Depot, Target, HSBC, Swisscom, Telstra and NTT. Apigee went public in Apr 2015 and was acquired by Google in Nov 2016.

We put together a data driven risk reduction strategy that allowed us to address security risks in a systematic manner. We made fundamental product changes, collaborated with other engineering teams to improve identity and access management, sandboxing and encryption and fixed scores of security vulnerabilities.

We streamlined Apigee's SDLC and deployed supply chain controls that in the long term delivered better security at lower cost with a significantly reduced compliance burden. Apigee was compliant with SOC2, HIPAA and ISO 27001.

Developed an open source identity management solution for CloudFoundry. CloudFoundry was an open source Platform-As-A-Service developed by VMware that is similar to what Kubernetes is today.

Developed numerous features for the service and replaced the entire authentication infrastructure of the running service without end-user disruption.

Evangelized standards based identity management to various product management and development teams.

Symantec acquired VeriSign in September 2010