Maria Mora is a Staff Application Security Engineer based out of San Francisco, California

About
Maria

Headshot of a femme nonbinary person with red and black hair, smiling directly at the camera. They are wearing a black and red punk cat ears.

Maria (they/them) is a Staff Application Security Engineer at SiriusXM, where they play a key role in establishing the Application Security program, generally on the technical implementation side. An avid fan of building, they are a self-proclaimed "Script Kitty", coming up with all sorts of scripts and automations to make work easier for everyone involved.They started out as a software engineer, but has since found themself very interested in information security, privacy, and data compliance. In previous roles, they have built websites, back-end systems, APIs, and their repertoire includes application security and data compliance tools.Aside from their day job, they love to sing karaoke as well as help make the world a better place.In another timeline, they are probably a psychologist, behavioral scientist, or astrophysicist.

Skills And
Interests

  • Security Awareness and Culture program development

  • Research and Development

  • Information Security, Application Security, Security Architecture

  • Language of Choice: Python

  • Previous Languages: Java, Groovy, PHP, Javascript, NodeJS, Golang

  • Compliance: PCI-DSS, GDPR, CCPA

  • Secure Software Development Lifecycle

  • Security Tool Integration and Adoption: SAST, SCA, Secrets Detection, Container Scanning, IaC Scanning, CSPM, ASPM

  • Systems design drafting and presentation

  • Third party vendor canvassing, proofs of concept, and assessments

  • Facilitating internal communications

  • Microservices, REST APIs, Web Applications, Serverless

  • AWS Technologies: Secrets Manager, Lambda, EC2, Step Functions, Cloudformation, Fargate, IAM, etc.

  • Psychology, Behavioral Economics

  • Herding Cats, Kindness

I am

  • Interested in speaking gigs

  • Currently at capacity for volunteer work (advisory-capacity calls available upon request)

Currently At

SiriusXM logo

Staff Application Security Engineer

Previously At

Orange logo and text. The picture on the left is a circular icon shaped like an anime eye, and the name Crunchyroll in lowercase

Staff Security and Compliance Engineer
Senior Secure Application Engineer
Software Engineer

A Part Of

  • The Diana Initiative (Board Member)

  • OWASP (Events Committee Secretary)

Talk to Me

I would love to hear about speaking gigs and volunteer opportunities. I'm also down to share knowledge.