Home About Resume Blog

Brooks McMillin

Technical Skills

Programming Languages

Python, JavaScript, C/C++, PHP, SQL, Bash

Cloud & Infrastructure

AWS (Lambda, EC2, RDS, API Gateway, SQS), Terraform, Jenkins

Security Technologies

LLM Security Testing, WAF, Intrusion Detection, Data Exfiltration Prevention

Data Engineering

Log Processing, Query Optimization, Hive, Presto, Databricks

Development Practices

Infrastructure as Code, CI/CD, Incident Response, Security Automation

Professional Experience

Infrastructure Security Engineer

Dropbox – San Francisco, CA January 2021 – Present

Led the design and implementation of critical security infrastructure and detection systems, focusing on machine learning security and network security:

AI/ML Security Platform Development:
  • Architected, deployed, and maintain self-hosted LLM security tooling as an internal service, including integrations into central LLM libraries with customization capabilities for different ML teams, getting to 100% security coverage of LLM calls from Dropbox.
  • Modified and enhanced LLM security test suite (garak) to validate both internal models and security tooling, implementing additional ML-based checks to automate the detection of false positives.
  • Developed and implemented security requirements (and the supporting infrastructure) for a custom ML development environment to speed up ML development.
  • Stood up and maintained security focused LLMs including LlamaGuard and PromptGuard
Network Security & Detection Engineering:
  • Built a data exfiltration detection system that establishes behavioral baselines and identifies anomalous outbound traffic patterns across the organization.
  • Led implementation of outbound network ACL migration tooling based on historic traffic analysis and assisted product teams with migration.
Security Infrastructure:
  • Managed AWS accounts and their security using custom internal tooling and Terraform.
  • Developed data aggregation tools to index large tables and optimize query performance.
  • Created scalable log collection pipelines and used them to create detections for our response team.
  • Ran security audits on various infrastructure (Kubernetes, JupyterHub, etc) and wrote PRs against these teams code base to ensure infrastructure hardening takes place in a timely manner.
Incident Response:
  • Developed rapid incident response scripts to assess attack scope and apply mitigations across AWS and on-premises environments.
  • Participated in on-call rotation, handling security incidents with minimal escalation.

Security Engineer Investigator

Facebook – Menlo Park, CA November 2020 – January 2021
  • Led cross-functional effort to define and mitigate threats from browser extensions, developing Python tools for extension discovery, analysis, and threat prioritization.
  • Created automated vulnerability validation framework using AWS services and YAML, improving visibility and metrics for the security team.
  • Collaborated with development teams to remediate privacy vulnerabilities identified through red team exercises, bug bounty programs, and fuzzing tools.

Sr Engineer, IT Platform Security

American Airlines – Fort Worth, TX February 2019 – October 2020
  • Implemented and managed enterprise-wide Web Application Firewall (WAF) and bot mitigation systems protecting critical airline infrastructure.
  • Led automation initiative for security onboarding, maintenance, and reporting processes using Python, JavaScript, Terraform, and Jenkins.
  • Designed and implemented SQL databases to track security configurations and maintain compliance requirements.
  • Provided incident response for web application attacks, including log analysis and creating and implementing further security controls.

Head of Security Operations & Cofounder

NOVAM – Dallas, TX May 2018 – March 2019
  • Architected a secure IoT client for hardware integrity validation, implementing secure boot functionality and data integrity verification.
  • Developed C/C++ client and Python/Django server backend with SQL database, integrating with an Ethereum-based blockchain for transaction verification.
  • Deployed and managed AWS cloud infrastructure utilizing EC2 and Lambda.

CTO & Cofounder

Signal Aware – Dallas, TX February 2017 – May 2018
  • Designed and built an anonymized population and traffic analysis platform.
  • Built complete AWS data pipeline (Lambda, EC2, RDS, API Gateway, SQS) for WiFi/Bluetooth telemetry collection and analysis.
  • Architected NoSQL database solution in AWS Redshift for efficient querying of large datasets.
  • Led development team building AngularJS web portal for client access.

Security Solutions Lead & Cofounder

Inteligus Solutions – Chicago, IL October 2016 – May 2018
  • Designed and developed custom security solutions for enterprise clients, including 2FA/MFA integration with Windows Access Control.
  • Created security assessment automation tools and implemented vulnerability scanning using Nessus and nmap.
  • Built mobile applications for secure enterprise environments using Java (Android) and Objective C (iOS).

Education

Master of Science in Computer Science

University of Texas at Dallas – Richardson, TX December 2014

Bachelor of Science in Computer Science

University of Texas at Dallas – Richardson, TX December 2013