# Yutong Wang

> Software Architect, Security, Identity, Big Data

Location: San Francisco Bay Area, United States
Profile: https://flows.cv/yutongwang1

Cloud Security, Infrastructure Security, Security Architecture, Authentication and Authorization, Containerization, AWS and Kubernetes

## Work Experience
### Founding Engineer @ Anetac
Jan 2023 – Present
Building identity monitoring platform based on big data and ML.

### Staff Software Engineer, TL @ Google
Jan 2022 – Jan 2023 | Sunnyvale, California, United States
Google Cloud SDK

### Software Architect @ Okta
Jan 2021 – Jan 2022 | San Francisco Bay Area
FastPass - passwordless authentication. Device Assurance. Desktop MFA

### Principal Security Software Engineer @ Salesforce
Jan 2019 – Jan 2021 | San Francisco Bay Area
Building security foundation for public cloud infrastructure: PKI, Cloud Native Authentication, Authorization, and Service Identity

- Responsible for PKI Service architecture, technology choice, and service quality.
- Lead the design, implementation, and delivery of PKI Service into public clouds including AWS
- Major contributor to security code repos, spinnaker service delivery pipelines, and IAC Terraform modules

### Sr Principal Software Engineer @ DigiCert, Inc.
Jan 2017 – Jan 2019 | Mountain View, California
DigiCert acquired Symantec’s Website Security unit in Oct. 2017

### Sr. Principal Software Engineer @ Symantec
Jan 2013 – Jan 2017 | Mountain View, CA
Symantec’s Website Security unit was acquired by DigiCert in Oct. 2017

Worked on architecture, design, and implementation of Certificate Transparency support and industrial
compliance initiatives. Wrote code implementing critical components. Improved and optimized existing code base. Mentored and coached team members.

### Principal Software Engineer @ Symantec
Jan 2010 – Jan 2013 | Mountain View, CA
Developed PKI certificate management system. Participated in design and
architecture decision. Lead security reviews. Involved in the full life cycle of development
from requirement, coding, to production release. Major responsibilities include: created
design document from requirement, customer feedbacks, and usability studies: chose
and validated new technology; implemented key components; created and executed
production release plan; resolved critical customer issues; conducted product training.

- Designed and built SSL certificate product line targeting enterprise customers. Implemented and continuously improved the enterprise authentication console and certificate management center. 

- Built new SSL products including Extended Validation (EV) certificate, DSA and ECDSA certificates. Developed new features like UTF-8 support, international domain names, and affiliate program.
Regularly followed up critical security and vulnerability issues raised in Internet security fields. 

- Constantly improved code quality by identifying and fixing these vulnerabilities. Enhanced existing code to prevent known vulnerabilities like cross-site scripting and SQL injection attack. Implemented security features like two factor authentication, sensitive data encryption, key rotation, phishing and black list checking.

### Software Engineer @ VERISIGN
Jan 2000 – Jan 2010
As a founding member of  Managed PKI for SSL team, I developed the first version of the PKI platform helping enterprise customers managing certificates. I also helped build the small and medium business PKI team from scratch.

- Redesigned/developed the SSL certificate processing platform for retail customers. Implemented ISP/reseller service center to help ISP/reseller customers manage their certificates. Migrated existing retail customers to the new platform.

- Designed and built the SSL certificate product targeting SMB customers from the ground up. I was involved in the process of bootstrapping the newly founded SMB team; responsible for setting up the initial development environment, building core functions in the early releases, interviewing and mentoring new team members.

- Rewrote major components in SSL certificate life cycle using Java. Streamlined certificate enrollment and vetting process. Wrote tools to automate certificate vetting process using independent data sources. Integrated third party malware and vulnerability scan services into our enterprise system.

- Planed and implemented Thawte (a major VeriSign acquisition) customer data and product integration into VeriSign product lines. Enhanced product features to accommodate Thawte customers. Reconciled conflicting data and business rules. Wrote migration scripts using Perl and PL/SQL to successfully migrate 10+ million  data records from Thawte database to VeriSign database.

- Wrote and maintained scripts to help Marketing department analyze valuable customer/product data.

- Served on the engineering vulnerability review committee overseeing VeriSign security services projects. It is a company wide initiative to improve system security. We reviewed project documents and security review questionnaires on design and implementation vulnerabilities; then assessed the risk level and proposed fix or enhancement.


## Education
### Master of Science (MS) in Computer Science and Telecommunications
University of Missouri-Kansas City

### Master of Science (MS) in Computer Science
Peking University

### Bachelor of Science (BS) in Computer Science
Peking University


## Contact & Social
- LinkedIn: https://linkedin.com/in/wang-yutong

---
Source: https://flows.cv/yutongwang1
JSON Resume: https://flows.cv/yutongwang1/resume.json
Last updated: 2026-04-05