Hi, I'm Ricky 👋
Technical Leader & Digital Transformation
About
I'm a technical leader and engineer with over a decade of experience driving digital transformation across complex, large-scale enterprises. I specialize in Identity and Access Management (IAM), Zero Trust architecture, and cloud security — leading cross-functional teams that ship secure, scalable solutions to real problems.
Currently, I lead engineering efforts for an enterprise identity, credential, and access management (ICAM) platform, overseeing technical strategy, cloud migrations, DevSecOps pipelines, and privileged access management. I manage diverse teams of engineers and contractors, and I've built a leadership style rooted in clarity, empathy, and accountability — shaped by an earlier career in healthcare. Working in high-acuity clinical environments taught me how to perform under pressure, reprioritize in real time, and maintain the attention to detail that keeps complex systems — and the people who depend on them — running safely.
I'm a former editor of the W3C Solid-OIDC specification and have contributed to open-source IAM and DevSecOps tooling. I've authored tutorials for Real Python and continue to write about security and engineering leadership as time allows.
I'm always interested in conversations about engineering leadership, identity security, and building teams that deliver.
Experience
FIDO2 / WebAuthn Passkey Deployment
Led the design and rollout of a FIDO2/WebAuthn passkey authentication system across a large enterprise — reducing credential-based attack surface and modernizing authentication at scale.
AWS Cloud Migration
Directed the migration of legacy identity infrastructure to AWS, establishing cloud-native architecture, improving system resilience, and enabling faster iteration across engineering teams.
Privileged Access Management
Led PAM strategy and implementation across multiple platforms — including CyberArk, Delinea Secret Server, Keeper Security, and BeyondTrust. Standardized privileged credential management across enterprise environments and aligned PAM programs with Zero Trust security principles.
Zero Trust Architecture
Shaped and executed Zero Trust strategy across identity and access systems, translating policy frameworks into technical implementation and measurable security improvements.
IAM Product & Team Leadership
Led engineering and operations for a portfolio of 18 open-source IAM and DevSecOps products at an identity-focused consultancy. Managed hiring, performance reviews, and separation decisions — building and sustaining high-performing teams from the ground up.
DevSecOps & CI/CD Pipelines
Designed and implemented CI/CD pipelines integrating security tooling into development workflows, accelerating delivery while maintaining compliance and code quality.
Publications & Standards
W3C Solid-OIDC Specification
Former Editor
A decentralized authentication protocol built on OpenID Connect for the Solid ecosystem.
View the spec →Build a Content Aggregator in Python
Author · Real Python
A project-based tutorial covering RSS feed parsing, Django custom management commands, and automated task scheduling to build a fully functioning content aggregator.
Read the article →Ruff: A Modern Python Linter for Error-Free and Maintainable Code
Author · Real Python
An introduction to Ruff, an extremely fast Python linter and formatter, covering installation, error checking, auto-fixing, and configuration.
Read the article →Continuous Integration and Deployment for Python With GitHub Actions
Author · Real Python
A comprehensive guide to building CI/CD pipelines for Python projects using GitHub Actions, covering linting, testing, PyPI deployment, and automated dependency updates.
Read the article →Let’s talk.
I enjoy connecting with others who are working on interesting problems in engineering leadership, identity security, and digital transformation. Whether you’d like to exchange ideas or explore opportunities, I’d welcome hearing from you.
Get in Touch →