Izar Tarandach is a Sr. Principal Security Architect with over 25 years of hands-on experience building secure development lifecycles and product security programs for enterprises like SiriusXM, Datadog, Squarespace, and Autodesk. He blends deep technical craftsmanship—from early UNIX system programming to modern cloud and product security—with leadership roles that include interim head of security and long-term architect positions. An active contributor to OWASP's PyTM threat-modeling framework, he brings practical threat-modeling expertise alongside architecture and tooling experience. Based in New York, he is pragmatic about vendor outreach and focused on measurable, auditable security outcomes rather than noise.
15 years of coding experience
33 years of employment as a software developer
BSc Computer Science, BSc Computer Science at The Hebrew University of Jerusalem
MSc Computer Scienceconcentration in Security, MSc Computer Scienceconcentration in Security at Boston University
Contributions summary:Izar appears to be involved in the initial development and expansion of the `pytm` framework. Their contributions include setting up the fundamental classes, data structures, and functionalities for threat modeling, which is evident in the creation of core classes like `TM`, `TMElement`, and `TMDataflow`. They further extended the framework with basic dataflow capabilities, threat definitions, and findings reporting. The user also made refactoring moves to adjust to an updated design.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Izar Tarandach - Sr. Principal Security Architect at SiriusXM