Summary
Overview
Work History
Education
Skills
Affiliations
Websites
Timeline
Generic

Ruby Alexis Rose

SAN FRANCISCO,United States

Summary

Customer-centric and goal-oriented Security Software engineer with 9+ years experience and a focus on developing and delivering cost-effective, low-latency, high-performance, distributed security systems that drives safety, customer growth, trust and adoption. Focused owner and driven collaborator skilled in hiring, talent retention, growth and mentoring employees. Technical hands-on expert in Cloud Security, Compliance, Cybersecurity, AppSec, InfraSec

Overview

11
11
years of professional experience

Work History

Sr. Security Engineer

Robinhood
Menlo Park, CA
11.2023 - Current
  • Developed and deployed Data Perimeter guardrails over 90+ AWS accounts, 35+ web services that protects Robinhood from untrusted sources, IPs, networks and identities; detected 8 security issues proactively since Dec'23.
  • Implemented network-egress-proxy that filters all egress traffic going out from Robinhood using AWS NetworkFirewall, WAF, Sheild, DNS Firewall; rolled out egress-proxy to 60% of services
  • Reduced the MTTR of security incidents (DDoS) from 6hrs to 2.5hrs by designing a firewall & egress killSwitch
  • Built a cloud compliance program using Wiz & Splunk that provides visibility into FINRA, NYDFS & PCI compliance posture of cloud resources to CISO and regulators; reduced compliance efforts from 25 days to 3 days
  • Manage Enterprise Identity & Access management (IAM) stratgey for Robinhood employees, customers and partners through Distributed IAM architectures.
  • Build cloud infrastructure and security abstractions in Terraform for application owners to easily incorporate safety first and shift left principles into their services.

Software Development Manager

Amazon Web Services Inc.
San Francisco, CA
02.2023 - 11.2023
  • Currently leading 5 compliance automation programs, with a team of 6 engineers, 1 intern and 1 TPM, within Amazon Web Services (AWS) building a large scale enterprise compliance automation product (highly confidential), potentially disrupting a multi-billion dollar cybersecurity industry.
  • Designed, developed and delivered cost-effective, highly available (99.999%) audit evidence generation services automating SoC, FedRAMP, HIPPA and GDPR, reduced customer (other AWS builders) burden saving 98,000 audit hours, reduced average e2e audit completion time from 16weeks/audit to 7.5weeks, scaled the number of audits developed per year from 181 in 2021 to 233 in 2022.
  • Actively involved and lead product (1/week), technical architecture (daily), strategic and executive leadership planning decisions (2/week) for the group, including customer and partner engagements that fuel product adoption from scratch to 13 compliance programs, 110 customer businesses, 24 geographic regions and help build long term strategy for the service.

Software Development Engineer

Amazon Web Services Inc
San Francisco, CA
04.2017 - 02.2023
  • Deisgned and implemented a pluggable network-firewall control library using Go, CFN & CDK that helped 7 AWS services detect firewall misconfigurations prior to launch
  • Designed, developed and deployed Security Controls Orchestration (SCO) framework that supports 13 security programs and 400+ controls and caught security issues (10K+ pre-prod & 2K+ prod)
  • End-to-end ownership of Cloud Security Training Monitoring Program for 768K+ Amazon employees from 2018-2023+ resulting in 90.8% training completion and 100% audit score every year
  • Developed a low-latency (2.5ms), cost-effective, pluggable security control system that supported 60+ different security engineers to author de-duplicated custom controls saving 12-14hrs/month/eng.
  • Designed and delivered AWS Amplify, a pluggable web and mobile app development framework for Android and React Native platforms, launched in 2019, increased adoption from 20+ beta customers to 6K+ customers in
  • Worked as a Security Bar Raiser, Oncall lead, Deployment Bar Raiser, AppSec Guardian and enforced engineering best practices across the Mobile and Cloud Security organizations (230+ engineers)

SDE Intern

Amazon
Seattle, WA
06.2016 - 09.2016
  • Designed, developed and delivered an internal Amazon Order Failure Debugging Tool for Amazon Retail Delivery Experience team (30+ eng), successfully debugged 65/67 order failures in 2016-17 with 3-7s/order

Member of Technical Staff

Netapp Inc.
Bengaluru, India
01.2013 - 08.2015
  • Created TestCenter, a shift-left integration testing framework designed to catch systemic issues, kernel faults, device driver failures for SnapMirror, SnapVault products of NetApp, successfully detecting 43 bugs in 6months from launch.
  • Owned 7toC transition tool that helped cloud customers of NetApp to migrate their workloads and data efficiently (zero manual intervention) from old to new versions of NetApp hardware/software/OS.
  • Owned SMF framework to support C++ user layer in Data ONTAP Kernel for writing simple, complete and pluggable modules for storage administration, failover and multi-tenancy.

Diversity, Inclusion & Equity Advocate

Amazon Web Services
05.2018 - Current
  • Expanded New Hire Orientation (NHO) to include mandatory trainings on LGBQTIA2S+ community and awareness through micro-educational modules (3mins per module)
  • Drove 6 key programs as part of Employee Experience and Engagement committee to educate, empower and enforce inclusion across AWS Security organization of 520+ employees.
  • Led mentoring circles quarterly across the organization to match 12 mentors per quarter with 6:1 mentee:mentor assignments and helped people learn new security skills and education on creating safe and inclusive workplaces.

Lead Advisor, Trans Joy Committee

Amazon Web Services Inc.
04.2023 - Current
  • Created a mental health and wellness resource guide to track and share health and well-being resources to the transgender community (400+ employees) in Amazon.

Education

Master of Science - Computer Science

University of California, San Diego
San Diego, CA
03.2017

Skills

  • Cloud security: AWS, GitOps, CrowdStrike, Shield
  • DevSecOps Tooling: Kubernetes, CloudWatch, CloudTrail, EKS, Wiz, Splunk, Humio
  • IaC: Terraform, CDK, CFN
  • Compliance: SOC2, ISO, PCI, GDPR, HIPAA
  • Programming Languages: Java, Python, Typescript, C/C
  • Enterprise IAM integration
  • SIEM, SecOps and Incident Response
  • SDKs in iOS/MacOS/TvOS
  • Distributed Systems & Microservices
  • Event Streaming: Redis, Kafka, WebSockets
  • AppSec Review
  • Firewall & Data Perimeter Management

Affiliations

  • Public Speaker - Speaker in security and compliance domains at AWS re:Invent and re:Inforce conferences every year since 2019
  • DEI/Security Panelist at Universities, Colleges, Local and National level conferences including BSidesSF, RSA, DevCon, Day of Shecurity, TransTech Social, LWT, etc.
  • Board Council Member, Transgender District SF
  • Advisory Council Member, Parivar, South Asian Transgender Board, SF
  • Lead Advisor, Trans Joy Committee, Amazon
  • Yoga/Meditation Teacher

Timeline

Sr. Security Engineer

Robinhood
11.2023 - Current

Lead Advisor, Trans Joy Committee

Amazon Web Services Inc.
04.2023 - Current

Software Development Manager

Amazon Web Services Inc.
02.2023 - 11.2023

Diversity, Inclusion & Equity Advocate

Amazon Web Services
05.2018 - Current

Software Development Engineer

Amazon Web Services Inc
04.2017 - 02.2023

SDE Intern

Amazon
06.2016 - 09.2016

Member of Technical Staff

Netapp Inc.
01.2013 - 08.2015

Master of Science - Computer Science

University of California, San Diego

Similar Profiles

  • Nikki I.

    Nikki I.Nikki I.

    Senior Data Privacy Analyst at RobinhoodSenior Data Privacy Analyst at Robinhood

    View Profile
  • Kevin Pulluquinga

    Kevin PulluquingaKevin Pulluquinga

    Self-Directed Investor at RobinhoodSelf-Directed Investor at Robinhood

    View Profile
  • Ashton Smith

    Ashton SmithAshton Smith

    Option Trader at RobinhoodOption Trader at Robinhood

    View Profile
Ruby Alexis Rose