I'm a staff security engineer at Google focused on developing and deploying modern web security features (e.g. CSP, Trusted Types, COOP, and more) at a massive scale across thousands of web services. As part of this I work closely with the Google Chrome team to develop new web platform features and APIs to enable more secure and privacy-respecting functionality on the web.
Outside of my current position, I've responsibly disclosed vulnerabilities to over 50 different companies including Google, Microsoft, Mozilla, and GitHub. In 2020Q3 I was Microsoft's top ranked security researcher for reporting over 20 different critical vulnerabilities.
In addition, I've contributed code to a wide variety of open source projects on Github and have also created a number of my own projects (e.g. hiSHtory and Cascara Security).