Marshall Humble is a CISSP-certified Senior Application Security Engineer with 17+ years in tech and over eight years focused on AppSec across military, government, and private sectors. He embeds security into SDLCs through automation, threat modeling, and developer enablement, pairing hands-on coding in Go, Python, and C# with infrastructure-as-code expertise in Terraform. Marshall has driven measurable outcomes—raising test coverage from 0% to 78% at a prior employer, eliminating hundreds of container vulnerabilities with curated base images, and shepherding multiple regulatory audits to clean results. Comfortable in CI/CD pipelines and tools like Veracode, Semgrep, and Snyk, he blends pen-test insight with risk-based program design (OWASP SAMM) to reduce noise and prioritize what really matters. Based in Austin, he excels at making security approachable for engineers while negotiating technical and compliance requirements across teams and clients.
11 years of coding experience
15 years of employment as a software developer
BSBA, Business/Commerce, General, BSBA, Business/Commerce, General at Hawaii Pacific University
Graduate Certificate in Penetration Testing & Ethical Hacking, Graduate Certificate in Penetration Testing & Ethical Hacking at SANS Technology Institute
Master of Business Administration (MBA), Master Of Business Administration, Master of Business Administration (MBA), Master Of Business Administration at The University of Texas at Austin - Red McCombs School of Business
Contributions:13 reviews, 103 PRs, 76 pushes in 5 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.