Rocky Warren

A Certified Information Systems Security Professional (CISSP) and AWS Certified Solutions Architect and Security Specialty with over ten years of experience shipping and maintaining tested, distributed, secure systems from thousand-line microservices moving billions of dollars each year to multi-million line GPS guidance systems. I deliver customer value utilizing object-oriented, functional, statically-typed, dynamic, and database languages. I lead teams as a Founding Principal Engineer, Architect, Product Manager, and Startup Co-founder.

Skills

  • JavaScript
  • TypeScript
  • Python
  • Scala
  • React
  • NextJS
  • Java
  • C#
  • Bash
  • Shell
  • Kafka
  • PostgreSQL
  • AWS ECS
  • AWS RDS
  • DevOps
  • DynamoDB
  • Svelte
  • Pricing Strategy
  • Dynamic Pricing
  • Cybersecurity
  • Docker
  • Cloud Security
  • Cloud SIEM
  • Continuous Integration
  • Redis
  • DevSecOps
  • Continuous Delivery
  • REST APIs
  • Distributed Systems

Recommendations

  • CEO describing a Fortune 100 company's reaction to a demo I created: "Slam dunk with [Company]! Thank you for all your efforts on this! [Company VP] was visibly and vocally excited. I think his voice cracked a little when he exclaimed, 'how did you do that!'."
  • CTO: "Rocky embodies a Principal Software Engineer. He can identify the most important problems, work out different solutions, and choose the most appropriate way of moving forward. He'll then own that solution and see it through to the end. He's also never content with his current skill set and always wants to continue growing. Whether it's books, classes, or certifications, he's willing to put in the work to better himself and the team."
  • VP of Product: "If no one is telling you, it's appreciated how intentional you are with growing our collective knowledge and being a champion for training. Thanks for doing this stuff, Rocky. I've also been hearing great things about your contributions and speed-of-delivery. The leadership team is impressed."
  • Technical Lead and Manager: "He's a one-man wrecking crew, one of the most productive engineers I've worked with."

Certifications

Experience

Clipboard Health logo

Clipboard Health

Senior Staff Software Engineer

Remote
Mar 2024Present

Staff Software and Security Engineer

Remote
Mar 2023Mar 2024
Brale logo

Brale

Principal Software and Security Engineer

Remote
Aug 2022Mar 2023
  • Foster security culture by encouraging and, if possible, enforcing secure best practices such as AWS access via only temporary credentials, password managers for employee secrets, AWS Secrets Manager for software secrets, and hardware security keys for Git SSH access.
  • Encrypt sensitive data using 256-bit AES-GCM envelope encryption backed by AWS KMS, random initialization vectors, and tagged ciphertexts to ease quarterly rotation. Searchable fields leverage HMAC SHA-512 hashes.
  • Set up ingestion of application, CloudTrail, GuardDuty, VPC flow, Route53, and load balancer access logs into Datadog. Over 95% of cloud security posture management (CSPM) rule findings passing for PCI, SOC 2, and GDPR with plans to reach 100%. Use security information and event management (SIEM) to alert on both new findings and anomalous activity.
  • Use Nessus and Burp Suite to scan for vulnerabilities and penetration test applications. Use Slither and Echidna to statically analyze and fuzz smart contracts, reporting on and addressing findings.
  • Coordinate company-wide security training and engineering team OWASP Top 10 and SANS Top 25 vulnerability demonstrations.
  • Deploy Kandji to company endpoints to gather telemetry, manage software patches, and enforce security rules such as disk encryption and malware protection.

Founding Principal Engineer

Remote
Jan 2022Aug 2022
  • Proposed and implemented multi-party computation (MPC) asset custody solution enabling multi-blockchain custodial wallets.
  • Drive DevOps culture with automated identity and access management (IAM) and resource provisioning across multiple AWS accounts using AWS Organizations and AWS's Infrastructure as Code (IaC) tool, CDK.
  • Architect and build cost-efficient, secure, and performant cloud infrastructure utilizing managed and serverless services running in multi-account, multi-region,multi-subnet VPCs protected by WAFs.
  • Author ERC-20 compatible Solidity smart contracts, coordinate external code audits, and build automated multi-blockchain deployment infrastructure.
  • Rolled out SAML single sign-on company-wide with phishing-resistant FIDO hardware security key multi-factor authentication (MFA) and automatic identity provider (IdP) user provisioning.
  • Build continuous integration and delivery (CI/CD) pipelines to ship customer features on each two-person controlled software merge.
  • Protect against supply chain attacks with Renovate dependency updates and automated Dependabot and Docker container security alerts.
  • Maintain employee onboarding and offboarding through scripted application install, SSH configuration, and IAM provisioning/deprovisioning.
  • Built secure by default CDK constructs (e.g., least-privilege policies, private S3 buckets, encryption at rest) to ease development.
Vertex Software logo

Vertex Software

Principal Technical Lead and Product Manager, APIs & SDKs

Remote
Aug 2020Jan 2022
  • Managed and mentored developers. Team strongly focused on customer satisfaction and ease of on-boarding with regular customer interviews, step-by-step guides, interactive demos, command-line interface (CLI), and automated, always up-to-date API code samples.
  • Performed product discovery and regularly prioritized to ensure team quickly delivered the right products at the right time. Furthered this by implementing "No Meeting Wednesday" and asynchronous stand-ups to increase focus time.
  • Created uptime and availability tests with automatic rollback and alerting, confidently enabling continuous delivery of services.

Principal Software Architect

Remote
Sep 2019Aug 2020
  • Hired as Principal Engineer responsible for leading public REST APIs. Built it from scratch to OpenAPI, JSON:API, and CloudEvents specifications. Inter-service communication via Kafka and gRPC. Code coverage >90%.
  • Created and owned core libraries and build plugins to reduce duplication, improve security, and multiply engineering team's productivity.
  • Architected and implemented distributed, streaming, event-driven systems capable of sub-second bill of materials (BOM) and scene updates on CAD models with hundreds of thousands of BOM lines.
  • Search over hundreds of millions of pieces of CAD metadata using combination of Elasticsearch and Postgres full-text search.
Dwolla logo

Dwolla

Principal Software Engineer

San Francisco, CA
Jun 2016Sep 2019
  • Transitioned most business-critical database table from mutable to immutable, enabling point-in-time user balance queries, robust statements, and snapshots. Snapshots led to 200x faster database queries and 75% reduction in overall database deadlocks.
  • Migrated webhooks to serverless Lambda functions, scaled to millions of daily messages, reduced peak delays from hours to minutes, cut costs by 50%, and launched with zero downtime.

Lead Developer

San Francisco, CA
Jul 2014Jun 2016
  • Led development of API responsible for moving billions of dollars per year while decreasing partner "time to first API call" from hours to minutes with step-by-step guides and SDKs.
  • Led Instant Bank Verification, cutting account verification times from three days to a few seconds via 3rd party integration. Built as containerized, auto-scaling microservice.

Senior Software Engineer

Des Moines, IA
Jul 2012Jul 2014
  • Led company's foray into microservices with Dwolla Credit, integrating credit provider to inject millions in buying power into network. Mitigated partner downtime with caching and fault-tolerant background processes.
  • Won internal hackathons by reducing ACH clearing times and allowing account creation via API. Each influenced what are now best-selling products.
Crucible Commodities logo

Crucible Commodities

Co-founder

San Francisco, CA
Jul 2014Dec 2016
John Deere logo

John Deere

Technical Lead

Des Moines, IA
Jan 2008Jul 2012
  • Led CommandCenter project development, an in-cab self-driving GPS guidance display. Now factory installed in all large-scale John Deere vehicles worldwide. Two million+ lines of code, released on schedule, with all known defects closed.
  • Led fortnightly meeting of 25 tech leads across all guidance displays comprising over 150 developers.
  • Organized company's first Hackathons. After votes from 200+ employees, won both with customer analytics, predictive keyboard, touch screen gestures, and Tetris! Demoed results to CEO and staff.

Software Engineer Intern

Des Moines, IA
May 2006Jan 2008
University of Iowa logo

University of Iowa

Software Developer

Iowa City, IA
Aug 2006Dec 2007
Collins Aerospace/Raytheon logo

Collins Aerospace/Raytheon

Software Engineer Intern

Cedar Rapids, IA
May 2005Aug 2005

Education

University of Iowa logo

University of Iowa

Bachelor of Science, Computer Engineering

Iowa City, IA
Aug 2003Dec 2007
  • Minors in Computer Science and Business