AI Security Engineer — Solidigm
I build automation for the manual, error-prone parts of security so teams can trust it instead of babysitting it. My work sits between software engineering and security operations.
01 / About
I'm a security engineer, and lately my focus is identity: who and what can access something, why they're allowed to, and how that access gets managed over time. At Solidigm I work on enterprise IAM across cloud and on-prem systems. I came up through vulnerability remediation, and I've been carrying that into access governance and the question of how AI agents fit into all of it.
Most of my job lands in the overlap between writing software and running security operations. Some days that means finding and fixing vulnerabilities, other days it means deciding who should have access to what. Whatever I build, I want it to be dependable and genuinely easy to use.
Away from work, I'm usually out at a national park, tinkering with home automation, or starting a project that makes me learn something new.
02 / Experience
Secure enterprise identity across hybrid cloud and on-prem environments — IAM platform operations (Active Directory, Entra ID, Okta, SailPoint), access-lifecycle automation, and SSO/MFA/RBAC with privileged access. Extends a vulnerability-remediation background into governing who, and what, has access: human users, machine identities, and emerging access patterns for AI agents.
IAM · Okta · SailPoint · Microsoft Entra ID · Active Directory · PowerShell · Python · AI Agent Identity
Led automated vulnerability remediation through scripting, API development, and workflow automation. Helped pioneer a modern security culture across the UC system — identifying, coding solutions for, and proactively mitigating critical vulnerabilities organization-wide.
Vulnerability Automation · Scripting & APIs · SecOps · macOS · Windows
Built PowerShell and Python automation for Azure management, user auditing, and endpoint security (Carbon Black, BitLocker, Citrix). Engineered Microsoft Graph and Active Directory tooling for streamlined user and DL management, ran company-wide KnowBe4 phishing campaigns, and wrote custom Rapid7 InsightVM queries for threat detection.
PowerShell · Azure · MS Graph · Rapid7 · Python · KnowBe4 · Carbon Black · Active Directory
Built responsive, SEO-optimized websites with Duda CMS and modern front-end tooling. Partnered with project managers and clients to resolve technical issues and sharpen the user experience.
Duda CMS · SEO · HTML · CSS · JavaScript
03 / Selected Work
2026
Shifts secret + SAST scanning left into the developer's pre-push hook.
A developer-first CLI that wires Gitleaks (secrets) and Semgrep (SAST) into a Git pre-push hook, aggregates findings, and optionally uses an LLM to prioritize risks and suggest fixes. One canonical Ruby gem, mirrored by npm and pip wrapper packages.
Ruby · Semgrep · Gitleaks · LLM triage · npm · pip
2025
Tailors LaTeX resumes and cover letters in a single multi-provider LLM call.
A full-stack app that uses configurable LLM providers to customize LaTeX documents. Decomposes a document into semantic chunks to process 8+ sections in one pass, pairs a live editor with an instant PDF preview, and ships a CLI for automation.
Next.js · Node · MongoDB · Ollama · Gemini · OpenAI · JWT
2024
Real-time phishing analysis that won the CSUMB Capstone Innovation Award.
A security-focused web app that helps users identify and report phishing attempts, with real-time URL analysis and educational resources on prevention. Built with React and Node.
React · Node · URL analysis
04 / Contact
Have a role, a project, or a question? Reach me directly at connercharlesjordan@gmail.com, or send a note below.