CV lilyanne.me
Github github.com/tacticalchihuahua
I'm a security researcher with an extensive background in distributed systems, digital privacy and applied cryptography. I have worked with Zcash, MetaMask, Ethereum Foundation, Blockstack and others.
Developed security tools, code reviews, audits, pen tests and system design reviews while consulting for private clientele.
Acted as a technical advisor and engineering manager to a team of six engineers responsible for Sign-in-with-Ethereum (SIWE). Established testing practices and security best practices.
Managed the consumer engineering department which included the web, mobile, and payments teams. Developed hiring rubrics, progression criteria and operational practices. Led the security working group -- a cross-functional team responsible for organizational and application security practices.
Conducted dozens of research and auditing projects for an ensemble of privacy focused technology projects. Authored reports and blog posts. Worked directly with clients to remediate vulnerabilities.
Implemented the Storj protocol per its initial prototype specification. Co-authored the protocol specification for its first major stable release. Acted as the open-source project's core developer and community liaison.
Co-authored the second major release of the Merchant API and the first major release of the Payroll API -- both designed with a capabilities-based security model. Led the research and development team to build internal tools and contribute to open source projects Bitcore, Bitauth and Copay
lilyanne.me/research/Zcash/LeastAuthority-Zcash-Sapling-Implementation-RPC-Interface-Updated-Audit-Report.pdf
lilyanne.me/research/Zcash/LeastAuthority-Zcash-Implementation-Analysis-and-Overwinter-Specification.pdf
Co-founded a hackerspace in Atlanta, GA. Managed operational logistics, curriculum, and hosted a weekly counter-surveillance and threat modeling workshop.
Consulted during the early design phase to identify potential attack vectors related to the overlay network structure, incentive model and scalability concerns.
Awarded a research grant to fund a third party security audit of my open source privacy software project, Onion Routed Cloud (ORC).
Awarded first place in Ai's National High School Scholarship competition for two short films that I wrote, directed, and edited.
Participated in a panel interview with representatives from Sia and Tahoe-LAFS about the state and future of decentralized scloud storage.
Spoke about the ecological impact of proof-of-work systems and made an appeal for various alternatives.
Spoke at NodeSummit about Storj and gave a live demonstration of one of the first decentralized cloud systems using distributed ledger technology.
Spoke at a conference for JS developers about using server-side JavaScript to implement a peer-to-peer consensus algorithm.
software Asynchronous Programming, Distributed Systems Design, API Design, Security Best Practices, Reverse Engineering
Available upon request