🚀 Major contributions in my work

• Lead development and operation of authentication / authorization platform for https://ubie.app (2022)
  • Increase developers productivity by flexible architecture
  • Reduce infrastructure cost by about 80% by stopping IDaaS
• Lead development and operation of security monitoring system (log search and alert detection) for Cookpad (2020)
  • Various security events (not only infrastructure but also corporate system) can be handled by scalable and extendable design
  • About 90% lower cost than similar common products (e.g. SIEM, Security Information & Event Manager)
• Lead to automate customer security analytics report provided by IBM SOC (Security Operation Center) (2016)
  • Automatically calculating, summarizing and building a report of security events for a customer
  • Reduce workload of security analysts by about 15 man day per a month

Career

Assistant Director to the Counselor in Japan Digital Agency (2024.8~present)

• As part time employee
• non-disclosure under NDA

Security Engineer in Ubie Inc. (2021.9-present)

• Product security engineering
  • Managing vulnerabilities of all company products
  • Lead penetration testing
  • Deploy Policy as Code based system
• Design & implementation of authentication platform in Ubie

Security Engineer in Cookpad Inc. (2017.11 - 2021.8)

• Design & Implementation of Security Monitoring System on AWS
  • Security log collection
    • gsuite-log-exporter: Export G Suite audit logs and save them to AWS S3
    • guardduty-log-forwarder: Serverless Application of AWS GuardDuty Log Uploader to S3
    • flowlogconf: Enable AWS flow logs for your all vpc
    • aws-vpcflowlogs-parquet: AWS Lambda based VPC Flow Logs converter to Parquet format
  • Security log search engine with Amazon Athena ( detail )
    • minerva: Security Log Search Engine
    • strix: Web UI of minerva
  • Security alert detection
    • rlogs: A framework to load remote log files in Go
• Deploy monitoring software and integration (e.g. Endpoint Detection & Response tool)
  • falconstream: Event forwarder for CrowdStrike Falcon via API
  • gofalcon: CrowdStrike Falcon API client in Go
  • aws-falcon-data-forwarder: CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket

Research Staff / Security Analyst in IBM Japan (2011.4 - 2017.10)

• Research Tokyo (2011.4-2015.3, 2016.10-2017.10)
  • Design and implementation of audit log management system
  • Develop extention and solution of integration for Security Information & Event Manager (QRadar)
  • Deploy Security Information & Event Manager into cloud environment
  • Develop system to collect security information of container system
• Security Operation Centor (2015.4-2016.9)
  • Detect and analyze security alerts and report to customer
  • Write biannual SOC trend analysis reports
  • Security operation improvement by automation and tool development

Engineer (Internship) in Internet Systems Consortium (2010.12-2011.3)

• Develop monitoring dashboard for Security Information Exchange

Education