About Me
I am a AI & Platform Security Engineer focused on building secure-by-default infrastructure and enabling the safe adoption of emerging technologies such as LLMs. My work spans securing the usage and deployment of AI Agents, MCPs, cloud platforms, software supply chains, and Kubernetes environments, as well as designing security controls that integrate seamlessly into developer workflows.
Professional Experience
2024 - Present
Mercari, Inc. — Security Engineer (Full-time)
- Launched LLM Key Server that issues short-lived API keys via OIDC for local environments, GitHub Actions, Apps Script, and service account workloads, enabling secure and centrally managed internal LLM API access.
- Designed the security architecture of inhouse MCP gateway to ensure organization wide secure usage of AI Agents.
- As an engineering lead of Mercari's AI Security Team, established AI security best practices and guidelines, developed MCP management processes, reviewed and hardened guardrails on multiple AI Agent services and platforms, and created an AI integration matrix to facilitate safe and efficient AI adoption across the organization.
- Developed tools to reduce the need for long-lived credentials on GitHub, reducing the risk of credential leakage and simplifying credential management.
- Applied organization-wide security controls using GCP Organization Policy and AWS SCP.
- Authored Kubernetes hardening guidelines and reduced critical findings on Gatekeeper.
2022 - 2022
Mercari, Inc. — Security Engineer (Intern)
- Re-structured Microsoft Kubernetes Threat Matrix and created Falco rules to fill detection gaps, and contributed to upstream official falco ruleset.
2021 - 2021
Recruit Co., Ltd. — Security Engineer (Part-time)
- Performed application vulnerability assessments and built static-analysis parsers for proprietary codebases.