I build AI that survives contact with production.

What I work on

I work with teams building secure, enterprise-grade agent and LLM systems: agent security and orchestration, threat modeling for AI, guardrails and gateways, multi-tenant architecture, evaluation-first delivery, and AI governance / EU AI Act readiness.

The security philosophy is contain, not prevent. Prompt injection is unsolved at the model layer, acknowledged by the major labs, so the discipline is identity, isolation, least privilege, and human-in-the-loop, built so that a tricked agent has nothing to exfiltrate, no way to escalate, and no action it can take alone.

Book a 30-min call →

Career

2025-now

bunny.net · Head of AI Strategy, platform, and security-by-design for AI features on edge infrastructure serving a large share of the internet.

2024-25

IriusRisk · Head of AI Built the AI team and platform from zero, and shipped agent systems to production when that was still rare: Jeff (guided threat modeling, onboarding from hours to minutes), Bex (risk triage inside Jira), and ASH, a secure-by-design twin-simulation multi-agent platform. EU AI Act-compliant delivery.

2023

DTEK.ai · Head of AI Vision-based automation and generative AI for retail. Multi-modal ecosystem pairing vision models with a custom AI assistant.

2017-23

Mimecast · Big Data Specialist, Staff, then Principal ML Engineer Core ML infrastructure serving 2.5B+ predictions a day across ten services. Production computer vision, LLM-based phishing categorization, observability and cost governance.

2014-17

Zed · Lead ML / Big Data Architect Distributed graph engine processing billions of nodes (Spark/MapReduce). EU-funded R&D in graph machine learning.

2013-14

ELIMCO Sistemas · CEO Led 150+ professionals in defense and critical infrastructure. Combat-system work with Lockheed Martin on the AEGIS Combat System aboard the F-105 frigate (Cristóbal Colón).

2011-13

MightyGate · Founder & CEO 12+ mobile apps, 850K+ downloads. Raised seed capital, profitable exit.

2000-11

Earlier Software architecture and project management (Novasoft, Optimi, ICDOS): government, telecom, and industrial systems.

Press & talks

• AI Governance in the Age of Regulation · panelist, with Diana Kelley (CISO, Noma Security) and Sonja Bartels (SVP, Uniper) · AuditBoard/Optro
• Why ChatGPT Isn't a Death Sentence for Cyber Defenders · author · Dark Reading
• Cyber Insights 2023: Artificial Intelligence · quoted expert · SecurityWeek
• How ChatGPT Can Help and Hinder Data Center Cybersecurity · quoted expert · Data Center Knowledge
• It's Scary Easy to Use ChatGPT to Write Phishing Emails · featured expert · CNET

Writing

I write Disrupted AI, a newsletter on secure and auditable enterprise LLM systems: threat modeling, agent security, guardrails, gateways, multi-tenant architecture, and evals.

• How 13 AI Agents Collaborate on One Codebase (with Two Python Scripts)
• Can AI-native companies surpass the leaders in Threat Modeling?
• Mythos killed the "Zen and the Art of Hacking"