My research seeks ways to make software systems more secure and resilient against cyber threats, with a focus on leveraging language-based techniques to engineer applications with proactive and deceptive capabilities that degrade attackers’ methods and disrupt their reconnaissance efforts. Currently, I'm working on SysFlow, a new system-level telemetry pipeline and security behavioral analytics for comprehensive visibility into container cloud workloads.
I completed my Ph.D. degree at The University of Texas at Dallas, working under the supervision of Dr. Kevin Hamlen. My doctoral dissertation introduced and formulated a new science of language-based software cyber deception, featuring a suite of new technologies that arm live, commodity server software with deceptive attack-response and disinformation capabilities.
I'm a software engineer with over ten years of work experience, four of which in the development of industrial software systems. I have excellent knowledge of modern/agile software engineering practices and processes, having technically led large-scale projects. I also have thorough technical knowledge of programming languages semantics, compilers, and program analysis techniques.
I organize the Security & Privacy Seminars at the IBM T.J. Watson Research Center, where we host internal and external talks about cutting-edge cybersecurity research topics. I also serve as a conference champion at the Security & Privacy Professional Interest Community (PIC) at IBM Research. Finally, I'm honored to serve (or have served) on the following program committees:
- ACM CCS Program Committee 2021
- IEEE BigData Program Committee 2019, 2020
- NYU CSAW Applied Research Program Committee 2017, 2018, 2019, 2020
- IEEE TDSC Journal 2018, 2019
- HICSS external reviewer 2019, 2020
- WWW external reviewer 2018