Rijul Raju

Amplitude (NASDAQ: AMPL) built an analytics platform that enables tracking and analysis of user interactions within digital products.

Joined as the first hire on a new security team focused on building out an AppSec program with additional contributions to sprint planning, roadmaps, capacity planning, and hiring and mentoring.

• Implemented static analysis (SAST), dynamic analysis (DAST), and software composition analysis (SCA) tools on 100% of repos and integrated them into CI/CD pipelines to detect security issues before reaching production.
• Developed and maintained automation (in Python, Typescript, Java) to support various initiatives and facilitate a culture of “paved roads” for developers to simplify incorporating security into designs and implementations.
• Used threat modeling frameworks (e.g. STRIDE, ATT&CK) to articulate ways that attackers may compromise systems, and advised developers and product managers on defenses needed for new services and features.
• Implemented a tiered triage process for handling incoming reports from the bug bounty program that decreased Mean Time To Repair (MTTR) by 30%.
• Debugged findings from the web application firewall and tuned rules in coordination with developers and support.
• Led incident response across initial detection, triage, containment, recovery, root cause analysis, retrospective, etc.
• Partnered with infrastructure security on various projects to secure cloud instances and employee workstations.
• Assisted in delivering SOC 2 Type II, ISO 27001 and ISO 27018 audits.
• Configured a SIEM to ingest log data from a variety of sources, and set up alerting and dashboards for key indicators of compromise (IOCs). Created and maintained runbooks for a variety of common use cases.

Skills: Python, Typescript, Java, CodeQL, GitHub Actions, Splunk, Lacework, Rapid7, PortSwigger Burp Suite Pro/Enterprise, OWASP ZAP, AWS, Terraform

Welcome AI Travel was a seed stage startup that provided personalized city guides powered by real-time AI features.

Joined as employee #4 to build out multiple web apps and a web-based version of their iOS app.

• Wrote and maintained AWS infrastructure using Terraform.
• Contributed to various API (PHP) endpoints, and debugged issues throughout the codebase.
• Built various product feature views in React with Redux Saga to maintain client side state.
• Leveraged Lambda@Edge to serve relevant meta tags (e.g. OpenGraph) to enable crawlers and bots to fetch rich previews and unfurl that content within their respective clients. Integrated with Mapbox SDK to provide rich geographic context.
• Independently built an internal CMS that served as the central hub for coordinating various business processes and moderating user generated content throughout the system.
• Wrote front-end for a data acquisition tool used by a Street Team that enabled them to upload 4K videos (using the TusD framework) and validate attributes of global points of interest for travelers.
• Built front-end for a human-in-the-loop content curation tool that enabled crowdsourced workers to label relevant information within published articles in an effort to train an ML model.

Skills: React, Redux Saga, Webpack, JavaScript, Typescript, PHP, Postgres, MySQL, Hashicorp Nomad, Terraform, Docker, AWS: S3, CloudFront, EC2, Lambda, RDS, SSM, SNS, IAM, Elastic Transcoder

Moonfish is a subscription service that alerts travelers to flight discounts worldwide.

Joined as employee #4 at seed stage to build out integrations with various flight and hotel reservation systems (“Global Distribution Systems”) including Amadeus, Sabre, and Travelport to enable Moonfish’s MVP to become a profitable product.

• Designed and implemented a SOAP client for Amadeus (GDS system for flight and hotel reservations) that matched cached results for flight and hotel reservation queries against a rules-based engine to identify lucrative and opportunistic flight and hotel deals.
• Developed the core feed UI using React components with a robust filtration mechanism that enabled users to quickly glean relevant flight deals.
• Maintained and implemented improvements to a unique feature flagging system that guarantees a true A/B split.
• Introduced product intelligence metrics using Amplitude to improve user experience and accelerate product growth.

Skills: Python, Flask, React, Javascript (ES6), Webpack, Postgres, Redis, RQ (Redis Queue), Docker, Amplitude, Redash, Algolia, Rollbar, Humio, CircleCI, Jupyter Notebook, Heroku, Cloudflare Workers, Datadog, AWS: S3, CloudFront, Kinesis, ECS, SQS, SNS, SES, RDS, SSM, IAM

FlightAware is a platform that offers real-time flight tracking and aviation data.

Hired during startup stage to lead high-impact projects that included new product development and rewrites.

• Led a cross-functional team that delivered and maintained GlobalBeacon, a service that allows airlines to monitor their fleet for varying degrees of distress and automates distress alerts.
• Guided a development team in design and implementation of a system used to manage a network of 24,000+ terrestrial ADS-B receivers.
• Selected and implemented the Foundation UI framework to FlightAware.com and championed efforts to convert the site to responsive to accommodate mobile users.
• Designed and implemented frontend and backend logic for the site-wide search control to improve usability and ease-of-access by leveraging full text search concepts, diverse aviation data, and contextual information. The solutions enable users to quickly search and navigate to an airport, a flight, or a specific aircraft registration.

Skills: React, jQuery, ES6 Javascript, Sass, Node.js, Foundation 6, Tcl, Kafka, Postgres, SQLite, Apache, Nginx, Varnish, Bash, FreeBSD, Debian, Docker, Jenkins, Agile, Scrum, Kanban

Compagnie Générale de Géophysique (Euronext: CGG) is a global geoscience company that provides seismic data to oil and gas clients.

Hired to a global development team with a presence on three continents.

• Improved and supported >40 PHP applications utilized by company staff in >70 locations globally.
• Designed and implemented an internal SPA used by managers to document 1:1s, performance plans, etc.
• Configured and maintained a full stack of services including multi-master replication on dedicated Linux servers distributed around the world, including onboard marine vessels.
• Established and enforced software best practices across disparate code bases and mentored developers through routine code reviews and lunch-and-learns.
• Liaised directly with business stakeholders to translate organizational needs into Scrum epics and stories.

Skills: AngularJS v1 & v2, jQuery, PHP, MySQL, Percona Toolkit, Nginx, Redis, Bash, CentOS, RHEL, Agile, Scrum, Jenkins, Git

BS, Computer Information Systems (Magna Cum Laude), University of Houston - Houston, TX (2010)

Edward Tufte's course on Presenting Data and Information

Effective Manager Conference by Manager Tools