Mark Adams is a staff software engineer specializing in cloud and product security with 13+ years of hands-on experience securing large-scale SaaS and infrastructure platforms. He has led org-wide security programs at Atlassian and Cruise and recently strengthened infrastructure security at Calendly and Airbnb, focusing on GCP, AWS, and Kubernetes. Technically fluent in Go and Python, he builds production automation, secret/PKI systems (HashiCorp Vault), and tooling to eliminate static credentials and reduce privileged access. A pragmatic leader who pairs vulnerability management and threat modeling with developer workflows, he has also contributed to notable open-source cryptography and web-server projects, adding OpenSSH key parsing to pyca/cryptography and improving Gunicorn’s reloader. Based in Round Rock, TX, he combines deep implementation experience with cross-org collaboration to drive security changes that scale.
13 years of coding experience
17 years of employment as a software developer
Master of Science (M.S.) Computer Science, Master of Science (M.S.) Computer Science at The University of Texas at Dallas
Bachelor of Science (B.S.) Computer Science, Bachelor of Science (B.S.) Computer Science at University of Illinois Springfield
Docker image for running browser tests against headless Chromium
Role in this project:
DevOps Engineer
Contributions:52 commits, 15 PRs, 47 pushes in 4 years 5 months
Contributions summary:Mark primarily focused on improving the project's build and testing infrastructure. They added a script (`run_tests.sh`) to streamline the image building and testing process, enabling automated testing of the various Docker images. The user also updated the Node.js versions supported by the project and refactored the existing build configuration to support multiple Node.js versions across different image builds, including support for Node.js versions 6, 8 and 9, and removed 7.
Contributions:4 releases, 169 commits, 110 PRs in 3 years 8 months
Contributions summary:Mark primarily focused on improving the security and functionality of the `pyjwt` library. They removed dependencies on PyCrypto by migrating to `hashlib` functions, making the ECDSA code more maintainable. The user also fixed tests to ensure they run correctly even when dependencies were missing, and refactored the HMAC, RSA, and EC code into separate classes within an algorithms module, and incorporated JWK support. They also updated the documentation and added tests to cover several areas within the library.
pythontokenjson-web-tokenweb-tokenjwt
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Mark Adams - Staff Software Engineer, Security at Airbnb