Product Leader in Enterprise Identity & Platform Security
I build secure-by-default identity and authorization systems for enterprise B2B SaaS. Former Product Engineer with 8+ years shipping IAM platforms, RBAC/ABAC systems, and enterprise integrations.
Led Zuora's platform security suite (OneID + Zuora Protect) • ~$1M annual cost savings • 30% adoption increase through SSO integrations • Former engineer with deep system design fluency
How I Build Products
My product approach is shaped by years building identity and authorization systems—domains where poor abstractions create long-term technical debt and migration nightmares. I focus on system boundaries, migration paths, and treating internal platforms as products with real users.
Start with system boundaries, not features
Before defining what to build, I map where the system starts and ends. Identity lives at the edge of every service—poor boundaries compound across every integration. Define contracts first, features second.
Design for migration paths
Enterprises don't "switch"—they migrate. I build coexistence layers, backward-compatible APIs, and gradual rollout mechanisms. Migration-first architecture is the difference between 6-month adoption and 3-year stalls.
Treat permissions as products
Authorization isn't infrastructure—it's a product with users (developers), interfaces (policy languages), and UX (debugging tools). I apply product thinking to RBAC/ABAC: usability, debuggability, and clear mental models matter as much as technical correctness.
Balance enterprise needs with developer experience
Enterprise customers demand SAML, SCIM, and fine-grained RBAC. Developers want simple APIs and fast iteration. I bridge this gap by building abstractions that hide enterprise complexity without limiting power users.
Measure outcomes, not output
I don't track "features shipped." I measure adoption rates, time-to-onboard, support ticket reduction, and cost savings. Security and platform products succeed when they're invisible—metrics must reflect that.
Build through cross-functional ownership
As a former engineer, I work directly in system diagrams, API specs, and database schemas. I don't "throw specs over the wall"—I pair with engineers on architecture, write ADRs, and stay close to implementation tradeoffs.
Case Studies
Deep dives into enterprise identity and authorization systems I've built—from problem definition through architecture to measurable outcomes.
Enterprise Identity Platform (OneID)
Built Zuora's unified identity platform, replacing fragmented authentication with centralized IAM, driving ~$1M cost savings and 30% adoption increase.
Authorization at Scale (RBAC → ABAC)
Evolved Zuora's authorization from rigid RBAC to hybrid RBAC+ABAC, reducing over-privileged accounts by 65% and policy deployment from weeks to hours.
Impact by the Numbers
Measuring outcomes that matter—cost reduction, adoption, security posture, and developer velocity.
Get in Touch
Open to discussing application security, product strategy, or potential opportunities.