Projects
Things I've built
A selection of projects spanning identity engineering, IT automation, and security tooling.
IdentityMCP — Natural Language Identity Management
Built a Model Context Protocol (MCP) server with 59 tools that lets security teams query Okta directly through Claude Desktop using natural language. Covers users, groups, apps, devices, policies, org hierarchy, and audit logs. Features OAuth2 Device Flow authentication with macOS Keychain integration, Touch ID support, and per-user credential isolation — no shared API keys, no token caching, fully auditable.
Okta Tenant Management via Terraform
Complete Infrastructure-as-Code system for managing an Okta tenant with Terraform. Modular resource definitions for apps (SAML, OIDC, SWA, OAuth, Bookmark), groups, and authentication policies. Includes Claude-powered slash-command skills for app provisioning, group assignment, and drift detection — turning identity operations into repeatable, auditable code.
Security Automation Lab
A personal AI automation lab for eliminating recurring friction in identity security work. Includes reusable Python modules, Claude Code skills for API research and git workflows, session tracking, and a systematic approach to turning institutional knowledge into persistent, codified workflows. Built on the principle: if it's done more than once, it should be automated.
Reusable Okta OAuth2 Auth Library
Production-grade Python package for Okta OAuth2 authentication supporting Private Key JWT, client secrets, and API tokens. Features multi-source credential resolution (1Password, macOS Keychain, file, env), automatic token refresh with pre-expiry buffer, and built-in retry logic for rate-limited endpoints. Foundation for all internal Okta API security tooling.
Malicious Package Monitoring with FleetDM
Security monitoring system using FleetDM and Datadog's malicious package dataset to detect compromised npm and Python packages across the device fleet. Automated GitHub Actions pipeline fetches daily manifest updates, generates osquery policies batched at 300 packages each, and opens PRs for review — real-time threat detection without manual intervention.
Automated Offboarding & Access Revocation
Comprehensive offboarding automation that handles the full security-critical departure process: access deprovisioning across all integrated systems, license revocation, group removal, and device wipe scheduling. Supports both scheduled departures and immediate terminations with full audit logging for compliance.