Nov 2025 – Present · 6 mos

• Creating the Obvious—Before It’s Obvious

Nov 2025 – Present · 6 mos

• 𝗦𝘁𝗿𝗮𝘁𝗲𝗴𝗶𝗰 𝗶𝗻𝘃𝗲𝘀𝘁𝗼𝗿 and 𝗮𝗱𝘃𝗶𝘀𝗼𝗿𝘆 𝗯𝗼𝗮𝗿𝗱 𝗺𝗲𝗺𝗯𝗲𝗿 in Risk Profiler, a cybersecurity company focused on risk assessment/threat intelligence/security analytics.
• Leveraging 𝗱𝗲𝗲𝗽 𝗲𝘅𝗽𝗲𝗿𝘁𝗶𝘀𝗲 in cybersecurity governance, application security, and AI security frameworks to guide strategic direction and market positioning. Provide advisory support on product development, go-to-market strategy, and enterprise customer engagement within the cybersecurity ecosystem.
• Active participant in building bridges between technical security solutions and enterprise risk management requirements, drawing on experience with OWASP leadership across AIBOM, AI Exchange, CRA, Serverless Top Ten, Author for LLM Top Ten/GenI, CISA SBOM initiatives, and global security standards development.

Aug 2025 – Present · 9 mos

• As the Project Lead for OWASP AIBOM, here's what we're building:
• The Vision
• OWASP AIBOM extends OWASP's long-standing mission of making security visible into the AI domain. Just as SBOMs brought transparency to software supply chains, we're establishing a comprehensive framework for AI model transparency, making AI systems auditable, traceable, and trustworthy.
• What We're Delivering
• The project provides transparency into three critical areas:
• Model lineage and provenance - understanding how models are built, trained datasets, and data sources
• Risk identification - documenting vulnerabilities, dependencies, and third-party components
• Compliance enablement - facilitating adherence to emerging AI regulations globally
• Strategic Approach
• We're taking a phased approach across five key areas:
• Foundation & Best Practices (Review Nov 2025, Publication Feb 2026) - Comprehensive operationalization guidance for regulators, CISOs, Chief AI Officers, and technical practitioners
• Standards & Format - Collaborating closely with OWASP CycloneDX to define AIBOM format and attributes, ensuring alignment with industry standards
• Tooling & Implementation (Publication March 2026) - Open-source tools, validation frameworks, and integration guides
• Sustainability - Building strategic partnerships and securing funding through industry collaboration
• Community & Awareness - Conference presentations and industry engagement to drive adoption
• Why This Matters Now
• As organizations increasingly rely on AI for critical decisions, they need visibility into data lineage, quality assurance, risk factors, and compliance requirements. AIBOM provides this transparency, helping mitigate risks like bias, data integrity issues, and unintended consequences.
• We're actively building our community and welcome security professionals, AI practitioners, governance leaders, regulators, and tool developers to join us in establishing industry-wide standards for AI transparency.

Nov 2024 – Present · 1 yr 6 mos · United States

• As the co-chair, acting in the capacity of chair for GCISO, responsibilities include overseeing the strategic direction and operational execution of the CISO certification program. This involves curriculum development, aligning the certification with industry standards, fostering partnerships, and ensuring the program addresses emerging cybersecurity challenges. Key duties include managing committees, facilitating stakeholder engagement, promoting certification adoption, and representing GCISO in public forums. Additionally, the role entails mentoring participants, evaluating program outcomes, and driving initiatives to enhance the value and recognition of the certification within the cybersecurity community.

Sep 2024 – Nov 2025 · 1 yr 2 mos

May 2021 – Aug 2024 · 3 yrs 3 mos

Oct 2019 – May 2021 · 1 yr 7 mos

Nov 2018 – Sep 2019 · 10 mos

Jul 2015 – Oct 2018 · 3 yrs 3 mos

Sep 2024 – Present · 1 yr 8 mos

Sep 2024 – Present · 1 yr 8 mos

• Co-Author for the Supply Chain under the OWASP Top 10 for Large Language Model AI Applications. The group is curated list of 400+ experts and driving the creation of the first comprehensive, open-source, industry-standard view of security vulnerabilities for applications built with Generative AI.

Jun 2024 – Sep 2025 · 1 yr 3 mos

May 2024 – Present · 2 yrs

• OWASP Serverless Top 10 aims at educating practitioners and organizations about the consequences of the most common serverless application security vulnerabilities, as well as providing basic techniques to identify and protect against them.

Jan 2024 – Present · 2 yrs 4 mos

• OWASP AI Exchange Co-Lead

Oct 2023 – Present · 2 yrs 7 mos

Aug 2023 – Present · 2 yrs 9 mos

May 2023 – Present · 3 yrs

• Educating and creating awareness in cyber security so nonprofits can make informed strategic business decisions.

Jan 2022 – Present · 4 yrs 4 mos · New York

• CyberEdBoard is the premier member’s only community of executives and thought leaders in the fields of security and IT. Members have access to a robust platform of resources that promote peer-to-peer knowledge-sharing, executive-level education, and professional growth.

Dec 2021 – Present · 4 yrs 5 mos

• At Strategio, we are building a community of technologists, dedicated to the purpose of increasing diversity, equity and inclusion for underrepresented and underserved groups, within enterprise IT.
• Women only make up 25% of all computer related jobs. African-American Women make up 3% of all software engineering jobs and Hispanic Women, only 1%. Bootcamps charge high fees and usually don't provide job placement services, all while there is an ongoing war on talent.

Dec 2021 – Present · 4 yrs 5 mos

• Where The World's Top Software Security Thought Leaders And Practitioners Come To Sharpen Their Saw

Jul 2021 – Present · 4 yrs 10 mos · New York, United States

Dec 2019 – Present · 6 yrs 5 mos · New York

• ICPS helps advance mathematics education, research and leadership in our community of students, teachers, and citizens. The Institute stimulates creative thinking in exceptionally talented students to strengthen their problem solving skills and nurture their enthusiasm and passion for mathematics.

Apr 2015 – Present · 11 yrs 1 mo · NYC

• AppSec, AI Security, AI Assessments, DevSecOps, Cloud Security, Data Privacy, Technical Program Management

Mar 2015 – Jul 2015 · 4 mos · New York City Metropolitan Area · On-site

Sep 2011 – Aug 2012 · 11 mos · Remote

• The company was an early-stage EdTech startup focused on connecting K-12 students with qualified educators for personalized, one-on-one instruction across subjects such as Math, Science, and English. Launched in 2010, the platform scaled rapidly to serve over 600 students across the tri-state area, delivering a high-impact, flexible learning experience through both in-person and online sessions. As co-founder, I led business development, technology integration, and operational growth, culminating in a successful acquisition in 2011.

Mar 2007 – Mar 2015 · 8 yrs · New York City Metropolitan Area · On-site

May 2005 – Mar 2007 · 1 yr 10 mos · NYC · On-site

Sep 2004 – May 2005 · 8 mos · Mineola, NY

Jan 2003 – Jan 2004 · 1 yr

• Design the core framework for the Network Configuration Management.

Jan 2002 – Jan 2004 · 2 yrs

• Development, Release Management and Technical Sales at Sony, GNP, Nexus

Jan 2001 – Dec 2002 · 1 yr 11 mos · Greater Boston · On-site

Jul 1999 – Jan 2001 · 1 yr 6 mos · New Delhi, Delhi, India · On-site

Jan 1999 – Jul 1999 · 6 mos · Greater Delhi Area · On-site