About Me
I am a Platform & AI Security Engineer focused on building secure-by-default infrastructure and enabling the safe adoption of emerging technologies such as large language models (LLMs). My work spans securing the usage and deployment of AI tools, cloud platforms, software supply chains, and Kubernetes environments, as well as designing security controls that integrate seamlessly into developer workflows.
Professional Experience
2024 - Present
Mercari, Inc. — Security Engineer (Full-time)
- Designed and implemented platform-wide security controls for the operational use of AI tools.
- Designed the security architecture of inhouse MCP (Model Context Protocol) servers to ensure organization wide secure usage of AI tools. [MCP's authentication and authorization]
- Developed tools to reduce the need for long-lived credentials on GitHub, reducing the risk of credential leakage and simplifying credential management. [Removing GitHub PATs and Private Keys From Google Cloud: Extending Token Server to Google Cloud]
- Applied organization-wide security controls on Google Cloud Platform and AWS.
- Authored Kubernetes hardening guidelines and reduced critical findings.
2022 - 2022
Mercari, Inc. — Security Engineer (Intern)
- Re-structured Microsoft Kubernetes Threat Matrix and created Falco rules to fill detection gaps, and contributed to upstream official falco ruleset. [Restructuring the Kubernetes Threat Matrix and Evaluating Attack Detection by Falco]
2021 - 2021
Recruit Co., Ltd. — Security Engineer (Part-time)
- Performed application vulnerability assessments and built static-analysis parsers for proprietary codebases.