Feroz Salam is a Security Architect with 14 years of experience designing and hardening cloud-native and networking systems, currently driving security architecture at Isovalent in the UK. He combines hands-on engineering and technical writing—contributing threat models and security improvements to high-profile open-source projects like Cilium—and has a strong background in backend tooling and incident-aware alerting from work on ElastAlert2. His career spans security engineering and leadership roles at Sourcegraph, Thought Machine and Zopa, where he moved between hands-on vulnerability work and leading teams to production-ready designs. An Imperial College MEng graduate, Feroz blends formal academic training with practical experience in eBPF-based observability and threat modeling, often improving security posture through documentation and dependency hygiene. Notably, he has a track record of turning deep technical analysis into clear, usable guidance for both engineers and operators.
14 years of coding experience
11 years of employment as a software developer
MEng, Computing, 1, MEng, Computing, 1 at Imperial College London
ElastAlert 2 is a continuation of the original yelp/elastalert project. Pull requests are appreciated!
Role in this project:
Backend Developer
Contributions:15 reviews, 96 commits, 39 PRs in 1 year 1 month
Contributions summary:Feroz contributed to the ElastAlert2 project by implementing bug fixes and making enhancements to existing features. They modified code related to the TheHive alerter, refactored it, and added tests. They also improved error handling and fixed issues related to search syntax on aggregations. Furthermore, the user made documentation updates, including migrating the FAQ to Read the Docs and updating rule types.
eBPF-based Networking, Security, and Observability
Role in this project:
Security Engineer & Technical Writer
Contributions:35 reviews, 61 PRs, 64 pushes in 2 years 1 month
Contributions summary:Feroz primarily contributed to the security aspects of the Cilium project by creating and updating the threat model documentation. They added a threat model document, enhanced it with contact information, and integrated information about potential spoofing attacks. In addition, the user fixed typos, updated links, and improved the codebase by updating dependencies and bumping versions for improved security posture. They also contributed to code improvements by modularizing the chart push workflow.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.