Work With Me

Fractional IAM expertise for engineering and security teams without the six-month engagement. I work on specific identity problems, in focused scopes, and tell you plainly what I think.

You're in the right place if:

  • • Your team is building LLM agents and you're not sure how to handle M2M trust, token delegation, or scoped credentials between services
  • • You're redesigning IAM and need architecture input that goes deeper than what an IDP vendor will tell you
  • • You're implementing FIDO2 or passkeys and hitting the gaps between the spec and what actually works in production
  • • You need a second opinion on a Zero Trust or federation design before you commit engineering resources
  • • You have a senior identity problem but can't justify a full-time IAM hire

If you already know exactly what to build and just need extra hands, this probably isn't a good fit.

How I work

Scoped

Every engagement has defined deliverables and a clear scope ceiling. You know what you're going to get before we start.

Independent

No reseller agreements, no preferred vendors, no incentives to push a specific product. The recommendation is the recommendation.

Opinionated

You're paying for judgment. If something is a bad idea, I'll say so with the reasoning to back it up.

Engagements

IAM Architecture Audit

from $2,000

An async review of your current identity architecture. Federation model, token flows, access patterns, secrets handling. You share documentation, I return a written findings report prioritized by risk and impact, followed by a 60-minute readout call.

Good starting point if you want an outside opinion before committing to a direction. Typical turnaround: 5-7 business days.

Fractional IAM Advisory

from $6,000 / month

Ongoing advisory for teams that need a senior identity resource without the full-time hire. Includes a weekly 60-minute architecture sync, async availability for time-sensitive questions, architecture documentation review, and vendor evaluation support.

Scoped by deliverable, not open-ended hours. Month-to-month after an initial 60-day term. Limited availability.

Implementation Sprint

custom scope

A defined-scope project for teams with a specific build in front of them. For example: FIDO2 RP architecture and rollout, Vault deployment design, AI agent identity model, or Zero Trust network access design. Fixed price, fixed timeline, clear deliverables.

Typical scope: 4-8 weeks. Starts with a paid scoping session ($500, credited toward the project).

Not sure which fits? The audit is designed as a low-commitment entry point in that it often clarifies exactly what the follow-on work should be.

Get in touch

Describe your situation briefly: What you're working on, where you're stuck, and what kind of help would be useful. I'll respond within two business days.