joel h. w. weinberger

jww (at) joelweinberger (dot) us

Photo of Joel Weinberger
I am a Member of Technical Staff at Anthropic, focusing on developer security.

Formerly, I was head of security engineering at Lightspark, a fintech company aiming to make financial transactions as fastand cheap as possible. Before that, I was a security engineering manager and tech lead at Snap, where I led supply chain security infrastructure. My team focused on hardening dependency management, CI/CD infrastructure, secrets management, and the sandboxing of untrusted code. Earlier at Snap, I was also worked on application security.

Even earlier, I was a software engineer at Google working on the Chrome browser security team. I primarily worked on Web Platform Security, but I also was strongly interested in usable security. Check out my Chromium contributions and the bugs I own.

I am a University of California, Berkeley Ph.D. graduate from the Computer Science Department, where I focused in security, programming languages, software engineering, and the intersection thereof. I was advised by Dawn Song. My graduate research mainly focused on making the Web a safer place. Check out WebBlaze for more like-minded folk.

During the summer of 2012, I interned at Coverity to work on static analysis tool research for web security. In the prior summer, 2011, I was a research intern at Microsoft Research. While at Microsoft, I worked in the Research in Software Engineering (RiSE) group with Juan Chen, Ben Livshits, and Nikhil Swamy.

Previously, I earned a B.S. and a M.S. from Brown University. From 2007 to 2008, I worked in the Fishworks group at Sun Microsystems. For posterity's sake, you can view my old Brown University undergraduate home page.

In the past, I was a teaching assistant for cs161, the undergraduate computer security course, under my adviser, Professor Dawn Song. In the spring of 2010, I was also a teaching assistant for the same course, but as taught by professors Vern Paxson and David Wagner.

I used to love using Arch Linux for its minimalist approach and awesome package management system (and related tools). However, I've since switched to FreeBSD Ubuntu with ZFS on Linux encrypted LVM on RAID1. I love ZFS, and the ZFS on Linux project is wonderful, but I ran into enough issues over 4 years that I finally gave up using it on my home machine. However, I did work on the zfs toolbox.

You can view a retrospective on my nuptials. When I'm not doing research, I run, rock climb, ski, take photos, roast coffee, and tap dance. I am also working on my Hebrew, but it currently leaves much to be desired.

publications blog

[résumé] | [@metromoxie] | [github] | [calendar]
Greetings from Newark, NJ!
View and download the source for this site on GitHub.