I am a cybersecurity researcher, engineer, architect and dreamer.
Ai4 Cybersecurity
I gave a talk at Ai4 Cybersecurity in early 2019 in New York City. I discussed the potential for using AI/ML tools to perform code security reviews, which would allow developers to be more tightly integrated into the security review process.
Selected Projects
Controlled Item Inventory using Ethereum
While there are reasonable security concerns surrounding adoption of new methods for this type of inventory control, modern blockchain technologies have undoubtedly demonstrated their ability to mitigate chain-of-custody and tampering/forgery risks. This paper presents a proof-of-concept system for digitally maintaining controlled item inventory, and sets forth a direction for potential future research and development.
The Modern Wild West
Encryption is still in its “Wild West" stage. We are currently, as a community, more secure digitally than we have ever been before, but at the same time, we are being exposed to more security risks, with the potential for large economic or political impacts. Current encryption technology will likely keep us going for quite a while, and new types of cryptography on the horizon seem promising. We must simply remain vigilant in building our defenses against crypto-based attacks, and, more likely than not, everything will work out just fine.
Resume Highlights
Los Alamos National Laboratory
Hired to lead the lab’s Application Security team, I worked to develop a five-year plan to automate application security at every level of development from active coding to production deployment. This included educating software developers in security best practices, and building solid relationships with other core cybersecurity teams.
HackerUSA
While working as Lead Instructor, I delivered a world-class cybersecurity education to professional students who were looking to make a positive change in their career. After six months of hard work, students were able to become fully certified in CompTIA Security+, OSCP, Certified Ethical Hacker, and GIAC Certified Windows Security Administrator.
CommonBond, Inc.
As Director of IT & Security, I led an agile team of professionals to implement solutions to complex business problems. This team did it all! Email server migration, cloud security, DevSecOps, network architecture, SOC II and ISO 27001 compliance…you name it, we made it happen!
Citigroup
During my tenure as VP of Security Strategy, I achieved several critical milestones, which led to an overall risk reduction of more than 25% as calculated by the Information Risk team. This is thanks in large part to my ability to establish and lead cross-functional teams of skilled experts to tackle almost any security problem imaginable.
What People Are Saying
Manager, Coach Inc.
Justin is a true professional who is very inquisitive and detail oriented. He has the ability to turn his pointed questions into solutions and documentation very effectively. He has the innate ability to remain calm during trying technical difficulties. He is very courteous and personable. I enjoyed working with Justin and look forward to another opportunity to do the same in the future.
Client, Epoch Investment Partners
He was a reliable and enthusiastic employee, always willing to go the extra mile to get more involved. He worked very hard to develop relationships with the business units he supported and he never shied away from taking on new tasks that were outside of the job description, thinking and acting very proactively. Justin is a fearless and extremely analytical technologist.
Coworker, Citigroup
Justin was a sharp, enthusiastic, co-worker with a strong work ethic. He was quick to pick up pointers and highly technical. In my time working with Justin he consistently raise the bar on expectations and works through obstacles and problems with a high degree of success.