Building Reliable Systems.
Driving Scalable Growth.
Empowering Teams.

Fragmented identity systems across acquisitions created technical debt, blocked cross-sell opportunities and introduced compliance and security risks.

Led enterprise-level architecture due diligence: evaluated vendor solutions, defined the unified target architecture and established phased migration strategies.

Standardized authentication flows, synchronized identity metadata across products and embedded compliance-by-design into identity governance.

Worked directly with product leadership to align identity architecture with cross-sell, upsell and monetization objectives.

New bundling and upsell pathways opened through seamless cross-product access.

Mobile app launch fast-tracked by introducing modern authentication capabilities.

Security posture reinforced while advancing SOC 2 Type I & II readiness.

Future post-acquisition identity merges streamlined by codifying a reusable playbook.

Sales teams struggled to close enterprise deals due to limited ability to adapt to diverse customer processes and data integration needs.

Architected and led development of TimeTac Connect, a modular, event-driven framework that became core to the enterprise product offering. Designed a set of 15+ interoperable and highly configurable components based on extract-transform-load (ETL) concept, async message queues and transparent API integrations.

Established and managed a new cross-functional integration team, funded by revenue generated through early integration successes. Interviewed 30+ candidates, hired and mentored 3 engineers and developed one into a promoted successor team lead.

Delivering 20+ enterprise-grade integrations including technologies and providers such as Active Directory, ADFS, Azure, GSuite, Okta, SAP, Zoho CRM, Zoho Subscription, via data synchronization, async events and webhooks.

Reusing the framework internally to automate payment processing and public API documentation generation.

Fueled revenue growth by selling thousands of new enterprise licenses through 20+ delivered integrations.

Operational overhead reduced by hundreds of hours per month via automation of payments and API documentation.

Integration capacity scaled sustainably with the creation of a dedicated cross-functional team.

Leadership pipeline strengthened by mentoring a successor who advanced to team lead.

Hiring pipeline optimized by formalizing candidate evaluation and onboarding practices.

Legacy email delivery pipelines created deliverability risks and threatened core revenue streams, requiring a large-scale migration to a new vendor without service disruption.

Evaluated AWS SES, Mandrill, SendGrid, SparkPost and Mailgun, then architected a vendor-agnostic pipeline with dual sending and smart application-level switching for seamless cutover and rollback.

Implemented custom monitoring dashboards combining provider stats with internal metrics, with automated alerts routed to team channels for proactive issue detection.

Codified deliverability safeguards including DKIM/SPF/DMARC alignment, dedicated IP warming, unified suppression lists and custom bounce/complaint handling.

Integrated message queues with retry policies and dead-letter queues to ensure resilience and fault isolation during migration and steady-state operation.

Revenue streams safeguarded and customer trust preserved through zero-downtime delivery of millions of transactional emails.

Email deliverability elevated to industry-leading levels, achieving bounce rates below 0.2% and complaint rates below 0.02%.

Operational resilience increased with a future-proof, vendor-agnostic email pipeline.

As a rapidly growing startup we needed to outpace competitors with new features but lacked the engineering capacity and structure to deliver enterprise-grade capabilities at speed.

Architected and delivered enterprise-critical features including Bulk Sending, Document Signer MFA, Device Verification and Fraud Prevention Service (FPS).

Evaluated SMS vendors such as Plivo, Twilio and Vonage to secure the best mix of performance, cost and required capabilities.

Implemented automated fraud protection mechanisms leveraging behavioral analytics and email reputation data, maintaining false positive rates under 2%.

Enhanced Bulk Sending with robust error handling, financial safeguards, overage charging and consumption tracking feeding directly into invoicing streams.

Aligned C-level, sales, marketing and support through async RFCs, PoCs, feature-specific channels and streamlined architecture reviews using minimalistic ADMs and ADRs.

Overall product adoption accelerated with new signups and premium upgrades fueled by secure and differentiated features.

Revenue expansion supported through new workflows such as Bulk Sending and automation features.

SaaS growth sustained over multiple years, culminating in eversign’s successful acquisition by Apryse.

As a fast-scaling startup, we lacked formalized engineering processes and financial visibility, increasing operational risk and slowing executive decision-making.

Kickstarted a cross-team 'Processes & Procedures' initiative, introducing 10+ technical support playbooks across varying complexity levels.

Contributed to continuous improvement of deployment pipelines with linting, extended test suites, automated migrations and dry-run validation for safer releases.

Created and evolved a risk repository. Initially in shared docs, later formalized with filters, labels and linked tasks/epics to assess and mitigate risks systematically.

Partnered with the CFO through weekly syncs and knowledge-sharing sessions to define KPIs and deliver real-time BI dashboards covering MRR, churn, signup sources and growth rates.

Safeguarding against operational risk through formalized playbooks, structured risk repository and systematic postmortems.

Engineering efficiency improved via standardized pipelines, automated validations and safer release practices.

Faster, data-driven decisions enabled across C-level and finance through shared metrics and consistent reporting.

Government ministries lacked a qualified electronic signature authority, limiting the rollout of eGovernment services and reducing public trust in digital infrastructure.

Deployed a PKI infrastructure including Root CA, Issuing CA and ministry-facing Registration Authority (RA), backed by Entrust software, SafeNet HSMs, Microsoft AD and IIS-based services.

Implemented certificate lifecycle processes with CRL-based revocation procedures, aligned with local legislation and European eIDAS/ETSI requirements.

Authored Certificate Policy (CP) and Certification Practice Statement (CPS) in collaboration with legal and compliance teams, establishing a foundation for audit and long-term governance.

Trained and upskilled the existing engineering team to maintain CA operations, while building institutional knowledge of PKI and auditing practices.

First national certificate authority launched and passed external audit on the first attempt.

Qualified digital certificates issued within one year to three ministries and the national tax authority, unlocking secure electronic services initiatives.

Adoption of qualified electronic signatures pioneered across government, increasing public trust in digital services.