Ross Wolf

Software Engineer at Sublime Security

Denver, Colorado, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Ross Wolf is a software engineer with eight years of experience specializing in security-focused backend systems, compiler design, and query languages. He led design and implementation of Event Query Language (EQL) and its interpreter across endpoint and server stacks at Endgame and Elastic, and contributed to high-profile open-source projects like Elasticsearch by enhancing EQL parsing, optimization, and planning. At Sublime Security he moved prototype systems into production, authored a Message Query Language and a dual-backend compiler supporting Go and SQL, and continues to build detection pipelines that stop email threats. Ross combines deep systems and threat-detection expertise with practical architecture work—refactoring large codebases (including Python 3 migrations) and aligning schemas with MITRE ATT&CK—making him effective at turning research-grade ideas into reliable, auditable production features.
code8 years of coding experience
job8 years of employment as a software developer
bookBachelor of Science (B.S.) Computer Engineering, Bachelor of Science (B.S.) Computer Engineering at University of Illinois Urbana-Champaign
stackoverflow-logo

Stackoverflow

Stats
1reputation
0reached
0answers
0questions
github-logo-circle

Github Skills (28)

parser10
python10
back-end-development10
architecture10
amazon-elasticsearch10
data-modeling10
java10
javas10
system10
elasticsearchquery10
go10
parsing10
aws-elasticsearch10
parse10
elasticsearch10

Programming languages (10)

TypeScriptPowerShellJavaShellCHandlebarsJavaScriptGo

Github contributions (5)

github-logo-circle
elastic/detection-rules

Jun 2020 - Oct 2021

Role in this project:
userBack-end Developer
Contributions:764 reviews, 209 commits, 167 PRs in 1 year 4 months
Contributions summary:Ross contributed significantly to the development of the KQL (Kibana Query Language) module within the `detection-rules` repository. Their primary contribution was implementing a KQL parser, suggesting a focus on building and enhancing the core functionality related to threat detection and hunting. The user's work involved significant code changes in Python, specifically related to parsing and processing of KQL queries. The user also added Kibana connectors and updated fleet integrations.
security-toolselasticsecurityengine-detectionrules
elastic/ecs

Dec 2019 - Jul 2021

Elastic Common Schema
Role in this project:
userBack-end Developer & System Architect
Contributions:35 reviews, 10 commits, 12 PRs in 1 year 7 months
Contributions summary:Ross primarily contributed to enhancing the Elastic Common Schema (ECS) project. Their work focused on adding new field sets, specifically related to Windows Registry operations, DLLs, PE files, and digital code signatures, which suggests a focus on system event and security data. Furthermore, the user converted the project to Python 3 and refactored multiple project files. They also improved and updated the project's threat modeling aspects by incorporating MITRE ATT&CK framework references and updated documentation, showing significant architectural contributions.
elasticelastic-common-schemacommon-schemaelasticsearch
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Ross Wolf - Software Engineer at Sublime Security