Senior security engineer at a rapidly growing startup focused on application and cloud security. Previous roles include building a security program from the ground up and working at a satellite telecommunications company. Previously worked in product management. Degrees from Texas A&M and (soon) Georgia Tech.
For a startup, hiring the first security engineer is a big deal. It's often an even bigger deal for the engineer themselves if they haven't done it before. You're essentially a team of one, serving as your own manager. Congrats on the promotion! Fast-forward a year or three… You've found and fixed some vulnerabilities and managed not to piss off the engineering team too much. But how do you grow the security team and program from 1 to... n?
You may have heard of JWTs. You definitely use a product that has them. In this talk, I go beyond "what are JWTs" and explore different use cases and pros and cons