Security Engineering Projects

A collection of projects demonstrating 5+ years of progressive experience in security engineering, privacy architecture, and security automation. Each project includes deployed production systems (Okta, DocuSign), design studies, and learning projects—clearly labeled to show scope and status.

OCTOPUS: Security Framework Design Study

Security framework design study built using AI-assisted development workflows (Cursor + Claude) to demonstrate modern security architecture patterns and modular threat detection design. This project showcases architectural thinking, rapid prototyping capabilities, and systematic approach to security tooling design—emphasizing learning and architectural exploration rather than production deployment.

Key Metrics

1,389 lines of verified security algorithms with comprehensive threat detection capabilities
393 tests with 99.2% pass rate validating all core functionality

Security AI/ML Python Threat Detection Detection Engineering Cloud Native Cloud Deployment

SOAR Migration Project

Coordinated the migration of DocuSign's security orchestration platform from a custom-built Houston (forked Huginn) solution to Tines, encompassing 100+ automation workflows across multiple security teams. As Senior Security Engineer, drove architecture design, vendor evaluation, cross-team coordination, and comprehensive threat modeling while maintaining zero downtime during the transition.

Key Metrics

Migrated 100+ workflows across 4+ security teams (60+ detection engineering workflows)
Automated 100+ security workflows with 90% reduction in manual processing time

Security Automation Python Cloud Deployment Threat Detection Detection Engineering Data Analysis API Integration Incident Response

Impossible Travel Risk Detection

Built sophisticated risk scoring system for detecting impossible travel patterns in authentication logs. Implemented weighted factor analysis with historical context validation, achieving 85% false positive reduction through intelligent threshold management.

Key Metrics

85% reduction in false positives
95% retention of true positive detections

Security Data Analysis Incident Response Threat Detection Detection Engineering

Azure SOC AI Enhancement (Design Study)

Designed AI-powered ticket prediction system for Azure Security Operations Center using Azure Machine Learning Studio and Log Analytics Workspace. Built data pipeline architecture for correlating security indicators with historical ticket closure patterns. NOTE: This was architecture and proof-of-concept work—not deployed to production due to career transition from DocuSign to Okta. Included here to demonstrate ML architecture and design capabilities.

Key Metrics

Implemented data pipeline architecture processing 10,000+ tickets per month
Achieved 85% prediction accuracy for ticket classification

AI/ML Security Data Analysis Automation Cloud Deployment

AWS Security Audit Framework

Developed Identity Governance and Administration (IGA) audit system for 200+ AWS accounts at Okta. Created data collection approach using MongoDB for partial data storage to overcome rate limiting and gatekeeper restrictions, demonstrating problem-solving under technical constraints.

Key Metrics

Audited 200+ AWS accounts
Identified and remediated 50+ critical vulnerabilities across all accounts

AWS Security Infrastructure Security MongoDB Data Analysis Compliance

Privacy Deletion Service

Led architecture design and coordination of Okta's cloud-native Privacy Deletion Service (PDS) for Layer0 infrastructure. As Senior Security Engineer with architecture focus, defined distributed state machine architecture, protobuf/gRPC communication protocols, and GDPR compliance patterns to orchestrate secure deletion across thousands of Auth0 customer spaces. This project demonstrates architect-level work delivered in a Senior Security Engineer role, showing readiness for Staff-level responsibilities.

Key Metrics

Deployed across thousands of Auth0 spaces
Processed 10,000+ deletion requests per month with 99.9% success rate

Security Cloud Native Infrastructure Security Compliance

Rails Security Assessment Framework (Personal Project)

Personal project: Security assessment framework for evaluating Ruby on Rails application security, combining static analysis (SAST), dynamic testing (DAST), and manual code review. Built using AI-assisted development workflows (Cursor + Claude) to demonstrate systematic security assessment methodologies and tool integration capabilities. This is a learning and demonstration project, not production-deployed, showcasing security assessment knowledge and modern development workflows.

Key Metrics

Multi-modal assessment framework (SAST, DAST, Manual Review)
Integration with 6+ industry-standard security tools

Security Web Development AI/ML Python Automation Compliance

Spotify API Processor

Personal project (2023): Cloud service for processing Spotify playlist data and genre analysis. Demonstrates API integration and cloud deployment skills. Note: This is a non-security project included for technical breadth; does not represent current security engineering focus or capabilities.

Key Metrics

Production-ready cloud service with AWS ECS deployment
RESTful API with genre analysis and data processing capabilities

Python Web Development MongoDB Cloud Deployment AWS API Integration Data Analysis Automation