I’ve been developing, securing, hacking and architecture since, well, let’s just say a long time. I’ve even hacked mainframes. I’ve been part of and run programming, architecture, rand multi-colored security teams. I’ve presented and written on security, architecture, privacy, and programming. My day job is to secure systems that are broken into by people who have incentive, time, and money but are owned by people who don’t have money, managed by people who would rather security didn’t exist, written by developers who have impossible deadlines, and run by teams who are juggling many other programs.