Communicating difficult changes (2022)
Shift left in 60 seconds (2022)
Security Conversations interview (2021)
Six buckets of product security (2019)
Designing security for billions (2019)
Fixing security bugs (2017)
Insecure 3rd party code (2017)
Some parts of being a great engineer (2017)
Outcomes > bugs (2017)
Manager lingo for engineers (2017)
Business risk for security engineers (2017)
Focuson.py (2017)
Product security primitives (2017)
Why product security is hard (2017)
Product Security at Uber (2017)
To the bounty hunters (2016)
Infosec underpinnings (2016)
5 years of bug bounty (2015)
Modern Application security (2015)
Disclaimer: I write to work through ideas.