Amazon / Kuiper — SDE II (L5)
Seattle, WA · Oct 2024 – Current- Designed and implemented cryptographic provisioning and attestation systems for Kuiper ground infrastructure, including trust-chain validation and secure communication workflows between customer ground stations and satellites.
- Developed idempotent cryptographic APIs for distributed edge systems handling signing, encryption, and device provisioning workflows in customer-impacting environments.
- Integrated Kuiper telemetry and infrastructure systems with AWS identity and authorization platforms, onboarding services into secure authentication and trust frameworks at Amazon scale.
- Owned Operational Readiness Reviews, threat modeling, and security reviews for CloudHSM-backed production PKI infrastructure.
- Led incident response, root cause analysis, and long-term remediation efforts for customer-impacting PKI and manufacturing incidents.
- Designed and scaled distributed satellite simulation infrastructure on Kubernetes and EKS supporting hundreds of concurrent simulation workloads across hardware, software, payload, and IPv6 networking layers.
- Improved launch performance of Kuiper’s Holodeck simulation platform by 20% during a critical pre-launch phase.
- Led AI governance and secure AI adoption for Kuiper Trust Services, authoring team standards and compliance guidance for AI-assisted development.
- Owned the team’s X.509 library and contributed to Amazon’s internal Rust cryptography libraries.
- Served as primary reviewer for Post-Quantum Cryptography development, improving secure code review standards.