Application Security Engineer – Facebook
I joined Facebook as an Application Security Engineer in early 2019. I was hired onto the Product Security team, a central team that handles the security of all of Facebook’s products including Instagram and Oculus.
Upon joining the team, I immediately focused on Pysa, our Open Source Python Static Analysis tool. I built out rules covering known vulnerabilities, ensuring that we could catch them in code as soon as it was put up for review. I also expanded our documentation and created a tutorial, to enable open source users. I applied Pysa to open source projects to catch vulnerabilities such as remote code execution and open redirects (CVE-2019-19775)