Security Engineer & AI Security Researcher

Building secure systems and breaking insecure ones

View My Work Get In Touch

About Me

I'm a security engineer specializing in application security, DevSecOps, and AI security. With a strong foundation in Go and cloud infrastructure, I build tools that help developers ship secure code faster.

Currently focused on emerging AI security challenges including prompt injection, model extraction, and adversarial attacks on LLMs.

When I'm not breaking things, I'm writing about security best practices and contributing to open-source security tools.

Your profile picture

Skills & Expertise

Security

  • Application Security (SAST/DAST)
  • Penetration Testing
  • Threat Modeling
  • Security Architecture
  • Incident Response

AI Security

  • Prompt Injection
  • Model Extraction
  • Adversarial ML
  • LLM Red Teaming
  • Data Poisoning

DevSecOps

  • CI/CD Security
  • Container Security
  • Infrastructure as Code
  • Cloud Security (AWS/GCP)
  • Kubernetes Security

Tools & Languages

  • Go, Python, JavaScript
  • Burp Suite, OWASP ZAP
  • Trivy, Grype, Snyk
  • Docker, Kubernetes
  • GitHub Actions, GitLab CI

Featured Projects

Project 1

Secure CI/CD Pipeline

Multi-stage pipeline with SAST, dependency scanning, container scanning, and automated deployment with rollback capabilities.

GitHub Actions Go Kubernetes Trivy
GitHub → Live Demo →
Project 2

LLM Security Scanner

Automated tool for detecting prompt injection vulnerabilities and testing LLM applications for common security issues.

Python AI Security OWASP
GitHub → Blog Post →
Project 3

Go Security Toolkit

Collection of security utilities for Go applications including input validation, secure random generation, and crypto helpers.

Go Security Library
GitHub → Documentation →

Latest Blog Posts

February 2026

Understanding Prompt Injection Attacks

A deep dive into how prompt injection works, real-world examples, and mitigation strategies for LLM applications.

Read More →

January 2026

Building a Secure CI/CD Pipeline from Scratch

Step-by-step guide to implementing security scanning, testing, and deployment with automated rollbacks.

Read More →

December 2025

Container Security Best Practices

Learn how to secure your Docker containers with multi-stage builds, vulnerability scanning, and runtime protection.

Read More →

Get In Touch

I'm always interested in hearing about new security challenges and collaboration opportunities. Feel free to reach out!