Principal Threat Research Engineer exploring the intersection of threat intelligence, vulnerability research, and AI-augmented security.
I'm a security researcher with a career built across the threat intelligence and vulnerability research landscape. Currently a Principal Threat Research Engineer at Recorded Future, I focus on identifying and analyzing emerging threats at scale.
Previously, I spent years at Cisco Talos (originally joining through Sourcefire before the Cisco acquisition), where I developed expertise in malware analysis, threat hunting, and building detection capabilities that protect millions of endpoints.
I'm particularly interested in how AI and automation can augment security research — making defenders faster, more thorough, and better equipped to handle the scale of modern threats.
Exploring whether the rarity of an observed activity is itself a meaningful signal for threat detection — examining the relationship between statistical scarcity and malicious intent in network telemetry.
Deep-dive analysis into tracking Ursnif (Gozi/ISFB) banking trojan campaigns through Cisco's Advanced Malware Protection telemetry, revealing distribution patterns and evasion techniques.
Open to conversations about threat research, vulnerability disclosure, AI+security, and collaboration.