Hi, I’m Cedric, a Software & Security Engineer. I hold a Master’s in Computer Science from ETH Zurich. I currently work at Pinterest and maintain the Ghostunnel open-source project. I’m based in the San Francisco Bay Area.
About
Experience
Director, Information Security
Pinterest, San Francisco · 2025 – Present
Leading the Infrastructure Security organization, which consists of three teams responsible for Platform Security, Internal Identity & Access, and Security Operations with 20+ engineers and managers in total.
Engineering Manager, Information Security
Pinterest, San Francisco · 2019 – 2025
Technical and people manager for the Infrastructure Security team. Broad purview including the security of cloud infrastructure, operating systems, and network security. Grew the team from 5 people to an organization of 3 teams with 20+ people while expanding our area of responsibility.
Software Engineer, Information Security
Square, San Francisco · 2013 – 2019
Built core security services for tokenization and encryption of payment information, HSM management, and related cryptographic software in Java, Ruby, and Go. Subject-matter expert for security standards including NIST and PCI-DSS/PIN.
Master of Science in Computer Science
ETH Zurich, Zürich · 2008 – 2013
Five-year combined Bachelor’s and Master’s program in Computer Science, with a focus area in Information Security (Master’s Thesis).
Open Source
Ghostunnel — A simple TLS proxy with mutual authentication and access control for securing non-TLS services. Supports short-lived certificates, runs anywhere as a single static binary, and is compatible with SPIFFE. Original author and current maintainer.
Maintained since 2015 · 2.1k+ stars on GitHub.
Go JOSE — An implementation of the Javascript Object Signing and Encryption (JOSE) standard in Go. Used by Boulder, the ACME CA implementation powering Let’s Encrypt. Original author; now maintained by the Let’s Encrypt team.
Maintained 2014–2023 · 470+ stars on GitHub.
Skills
Security Domains — Cloud Security, TLS/mTLS, X.509 PKI, Cryptographic Key Management, HSM Management, Operating System & Network Security, Identity & Access Management, Threat Modeling, Security Operations
Compliance & Standards — NIST, BSI, PCI-DSS/PIN
Leadership — People Management, Hiring & Interviewing, Mentoring, Technical Strategy, Technical Writing
Programming Languages — Go, Java, Ruby, Python
Languages
German (C2 / Native) · English (C2 / Native) · French (B1 / Working)