Jamie Finnigan's Email & Phone Number

💼 Past Experience

Jamie Finnigan is currently a Director,Product Security atHashiCorp in Greater Seattle Area. and System Administrator at Paradise Net from 1999 to 2002 (3 years). Early employee at startup ISP which was acquired by a larger telecommunications provider. Performed operational and security-related system administration duties for UNIX-based (Linux, BSD, and Solaris) platforms. Managed web, mail, DNS, and database services with minimal downtime and high customer service / satisfaction levels.Director, Security at Arivale from July 2016 to May 2019 (2 years 11 months) in Greater Seattle Area. Built out the security program at Arivale, a scientific wellness startup.Worked closely with Product Development teams using agile/devops methodologies to build secure web & mobile apps and supporting services. Worked with the IT team to deploy & operate secure business applications and supporting infrastructure.Create custom security tools to gather/aggregate information, track change/variance, identify outliers, and address weaknesses.Managed externally-sourced penetration tests, investigated vulnerability reports, and remediated security issues.Defined & extended security architecture, drove security engineering requirements, wrote security policy & procedures, executed vendor security reviews, and contributed significantly to HIPAA compliance efforts.Directed and participated in activities across security disciplines with an emphasis on the product / service security lifecycle.Worked with product management and engineering teams across the business unit to ensure that security was adequately addressed through requirements definition, architecture design & review, threat analysis, security testing, and compliance assessment / remediation.Presented to and engaged with customers as security SME in support of HPE Helion sales teams.Lead and contributed to efforts to integrate security-specific automation and tooling into the Helion CI/CD pipeline.Wrote initial version of Bandit, a Python code security analysis tool, which we released as an open source OpenStack project. continued to contribute as core team member. Senior Application Security Engineer & Team Lead at Zynga from May 2011 to November 2012 (1 year 7 months). Responsibilities included web and mobile application security testing, source code review (PHP, HTML / Javascript, ActionScript, Java, Python, Objective-C, others), architecture review, and tool development (Python, Javascript).Communicated security issues to management and developers, provided remediation guidance, and validated fixes.Built and open-sourced Hiccup, a Python framework that allows the Burp Suite web application security testing tool to be extended and customized.Manager, Information Security Risk at T-Mobile from October 2010 to May 2011 (8 months). Lead and executed technical (penetration testing / vulnerability assessment) and non-technical (capability / maturity) risk assessments across corporate & mobile networks and product elements, teaming with business & IT counterparts.Worked consultatively across functions to investigate emerging security risks, define mitigation strategy and guidance, and develop / deliver risk- focused executive reporting. Engagement Manager at IOActive, Inc. from March 2010 to October 2010 (8 months). Held a client-facing

🎓 Education

Jamie Finnigan's Educational Background:Jamie Finnigan holds a BSc / BCA, Computer Science / Information Systems degree from Victoria University of Wellington, where she was a student of the Business and Economics department.Finnigan has been working as a software engineer since 2001, having co-founded her own software development company in 2001.Upon completing her degree, Finnigan worked as a software engineer in the software industry for 2 years. After that she worked as a software engineer at a software development company for 1 year. Finnigan then worked as a software engineer at a software development company for 3 years.

💡 Technical & Interpersonal Skills

Jamie Finnigan has many years of experience working in the technical and interpersonal sphere, specifically in the areas of product security, security engineering, and risk management. In his previous roles, Jamie has excelled in working with swift and agile software development methodologies, managing and participating in activities across security disciplines with an emphasis on the product / service security lifecycle, and creating custom security tools to gather/aggregate information, track change/variance, identify outliers, and address weaknesses. In Jamie's current role as Cloud Security at Hewlett Packard Enterprise, he alsoWritten initial version of Bandit, a Python code security analysis tool, which we released as an open source OpenStack project. In his previous roles, Jamie also worked consultatively across functions to investigate emerging security risks, define mitigation strategy and guidance, and develop / deliver risk-focused executive reporting. In addition, Jamie is also the founder and managing consultant at Abridge | Cloud Visibility.