Jan 2021 – Feb 2026 · 5 yrs 1 mo · New York City Metropolitan Area

• Agentic & AI Security and Cloud Security Architecture
• Developed Firm-wide AI and agentic application guidelines, aligning security with industry best practices (OWASP Top 10 for LLMs, MITRE ATT&CK).
• Conducted in-depth analysis of 90+ AI applications, defining consistent security architecture patterns and guardrails across engineering teams.
• Performed security architecture reviews ensuring Zero Trust, IAM, and API security were embedded in agent design and integrated with firm systems.
• Integrated security requirements into product lifecycles (AISecOps) and vendor assessments, improving enterprise-wide LLM adoption.
• Identified security gaps in agentic AI applications and partnered with engineering leadership to develop a roadmap for mitigation
• Delivered AI security training sessions for developers and architects, covering input validation, output handling, authentication, authorization, and monitoring best practices.
• Designed end to end agent workload identity federation model based and full stack output validation framework
• . Experienced AI RMF, ISO42001, AI Safety planning and measurement, AI red teaming and AI incident response
• Contributed as a reviewer/contributor to the OWASP AI/Agent Top 10 Risk Project.
• Architecture Governance and Standards
• Designed and implemented enterprise Architecture Governance processes, integrating with product security risk assessments and procurement.
• Led governance reviews for 120+ solutions and changes, identifying 50+ security and compliance gaps and driving remediation planning.
• Managed relationships with 30+ stakeholders
• Directed architecture governance strategic planning and frameworks, defining OKRs and roadmaps to strengthen security and risk posture.
• Delivered data-driven insights and recommendations to executive leadership through monthly and quarterly reviews.
• Led a team of 7 architecture governance coaches, ensuring consistent review and compliance with enterprise standards

Jul 2007 – Jan 2021 · 13 yrs 6 mos · New York City Metropolitan Area

• Enterprise Identity & Privilege Access Management (2007-2021)
• Architected the Firm’s identity governance platform supporting 500K+ identities, 13+ lifecycle processes, and 10+ critical system integrations.
• Designed enterprise RBAC/ABAC/PABC authorization framework for human and non-human identities.
• Integrated Okta, AD, Entra, and IGA for unified lifecycle and entitlement management.
• Modernized IAM process in partnership with HR, Finance, Legal, Workstation, Support, Helpdesk, Audit, and Engineering.
• Led privileged access program managing 8,000+ admin accounts, integrating workflow, vault system, AD, Unix/Windows, databases, and network devices.
• Cut privileged access approval time from 4+ weeks to 5 minutes through workflow automation.
• Eliminated 800+ unnecessary privileged accounts and reduced orphan accounts and unused service accounts by 90%.
• Led platform architecture, strategic planning, roadmap, vendor selection, contract negotiation, and outcome-based delivery, ensuring alignment with enterprise security goals.
• Built strong cross-functional alignment with 20+ global teams, influencing senior stakeholders on identity modernization and privilege reduction
• Mentored and guided junior architects, engineers, and developers, supporting professional development and building a high-performing IAM team.
• Knowledge of OAuth2.0, OIDC, SAML, SCIM
• Application Security & Penetration Testing (2007-2014)
• Built McKinsey’s internal penetration testing capability and application security framework.
• Performed threat modeling for high-value systems and drove remediation efforts.
• Led major audit finding remediation, strengthening compliance posture.
• Recommended new security technologies to leadership to support long-term strategy.