Izar Tarandach

Sr. Principal Security Architect at SiriusXM

New York, New York, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Izar Tarandach is a Sr. Principal Security Architect with over 25 years of hands-on experience building secure development lifecycles and product security programs for enterprises like SiriusXM, Datadog, Squarespace, and Autodesk. He blends deep technical craftsmanship—from early UNIX system programming to modern cloud and product security—with leadership roles that include interim head of security and long-term architect positions. An active contributor to OWASP's PyTM threat-modeling framework, he brings practical threat-modeling expertise alongside architecture and tooling experience. Based in New York, he is pragmatic about vendor outreach and focused on measurable, auditable security outcomes rather than noise.
code15 years of coding experience
job33 years of employment as a software developer
bookBSc Computer Science, BSc Computer Science at The Hebrew University of Jerusalem
bookMSc Computer Scienceconcentration in Security, MSc Computer Scienceconcentration in Security at Boston University
languagesHebrew, Portuguese, English
stackoverflow-logo

Stackoverflow

Stats
31reputation
0reached
2answers
0questions
github-logo-circle

Github Skills (13)

threat-model10
object-oriented-programming10
python10
threat-modeling10
web-framework9
unit-test7
verisign6
windows6
file-descriptor6
signtool6
linux6
authenticode6
sha6

Programming languages (9)

DockerfileCSSC++ShellOCamlHTMLJupyter NotebookRuby

Github contributions (5)

github-logo-circle
OWASP/PyTM

Nov 2019 - Nov 2019

Role in this project:
userBack-end Developer
Contributions:1 commit, 1 push in 1 day
Contributions summary:Izar appears to be involved in the initial development and expansion of the `pytm` framework. Their contributions include setting up the fundamental classes, data structures, and functionalities for threat modeling, which is evident in the creation of core classes like `TM`, `TMElement`, and `TMDataflow`. They further extended the framework with basic dataflow capabilities, threat definitions, and findings reporting. The user also made refactoring moves to adjust to an updated design.
OWASP/pytm

May 2018 - Jan 2023

A Pythonic framework for threat modeling
Contributions:5 releases, 114 reviews, 195 commits in 4 years 9 months
threat-modelingsequence-diagramdata-flow-diagrampythondfd
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Izar Tarandach - Sr. Principal Security Architect at SiriusXM