Vivin Paliath

Vivin Paliath

About

Detail

Co-Founder and CTO
Chandler, Arizona, United States

Timeline

work
Job
school
Education
folder
Project
flag
Award
auto_stories
Publication

Résumé

Jobs verified_user 0% verified
  • Basata
    Co-Founder and CTO
    Basata
    Sep 2024 - Current (1 year 10 months)
    As Co-Founder, CTO, and Chief Architect at Basata.ai, I lead the company's technology vision, strategy, and execution. I guide a small team of engineers in developing our AI solutions from concept to production-ready products. • Technical Strategy & Direction: I define the long-term technical roadmap, selecting the technology stack (e.g., Java/Spring Boot, Node/React, Python), tools, and best practices. I make high-level technical decisions to align with business objectives. • Architectural Leadership: I've evolved our platform from an MVP to a "microlith" architecture. I serve as the lead architect, making critical decisions on system design, scalability, and maintainability. • Product Development: I collaborate with our CPO to define the
  • Basata
    CTO and Co-Founder
    Basata
    Sep 2024 - Current (1 year 10 months)
    Talking to customers, building MVP, forming team, and building capital.
  • Kroger Technology Digital
    Senior Software Engineer
    Kroger Technology Digital
    Sep 2020 - Apr 2024 (3 years 8 months)
    • Implemented platform on Microsoft Azure to help Kroger provide accurate inventory counts for online customers using balance on-hand and demand data. • Designed and implemented a test-executor service, which allowed the team to quickly write end-to- end functional tests on deployed services using Cucumber and JUnit. Service has been instrumental in ensuring quality of our codebase. • Enhanced Azure build pipeline to allow running of functional tests. • Migrated entire build pipeline from Azure DevOps to GitHub Actions and also implemented actions that run functional tests and code-quality checks for pull requests. • Implemented metrics and alerts using Azure Metrics Manager and DynaTrace in order to detect and quickly respond to service ou
  • TD SYNNEX North America
    Senior Software Engineer
    TD SYNNEX North America
    Mar 2019 - Sep 2020 (1 year 7 months)
    • Implemented integrations with AWS and Azure to support TechData’s custom cloud-solutions plat- form, using Spring, Spring Boot, GigaSpaces, and Mendix. • Implemented RESTful APIs to aid management of customer solution-deployment data. • Implemented a role-based access system to control access to entire APIs and individual endpoints. • Investigated concurrency/data-consistency issues and implemented fixes/refactors to ensure data consistency and recovery in case of failures, and improved overall platform reliability. • Implemented an end-to-end solution across the platform to log and track all deployment-related activity, which improved visibility into deployment processes and decreased debugging and root-cause analysis times. • Implemente
  • C
    Chief Software Architect
    CYRCON
    Jul 2018 - Feb 2019 (8 months)
    CYR3CON is an innovative cybersecurity startup that employs machine-learning and artificial-intelligence techniques to solve challenging cybersecurity problems. My role as Chief Architect is two-fold: lead efforts to establish best practices, update, design, and maintain CYR3CON's software infrastructure and to research and implement new AI and ML-based algorithms to provide useful cyberthreat intelligence for our customers. • Led CYR3CON’s machine-learning efforts to identify upcoming security-threats based on dark-web and clear-web intelligence. • Led the Machine Learning team in researching new machine-learning approaches and algorithms that could be used to enhance CYR3CON’s offerings. • Helped and guided junior developers in the Machin
  • Arizona State University
    PHD Researcher
    Arizona State University
    Jan 2015 - Dec 2023 (9 years)
    • Architected Defensive Frameworks: Developed a comprehensive "state-modeling" approach to identify vulnerabilities and predict attacker behavior within complex network environments. • AI/ML Integration: Leveraged Machine Learning and Artificial Intelligence to automate the identification of cyber threats, reducing response times and improving the accuracy of defensive maneuvers. • Strategic Threat Modeling: Defined new strategies for defensive cyber operations by modeling the progression of attacks, enabling more resilient system architectures. • Developed the "SandPuppy" Framework: Engineered a research prototype that automated the detection of state-representative variables, allowing fuzzers to explore deep program states without the nee
  • Infusionsoft
    Senior Software Engineer (Platform)
    Infusionsoft
    Nov 2014 - May 2018 (3 years 7 months)
    Towards the end of 2014 we started working on building a small-business platform based on a microservices architecture, to expose automation and follow-up as a development platform for third-parties. My accomplishments: - Currently Team Lead for the Platform Extensions Team. - Charted out long-term plans and strategies for the development platform; includes the definition of API and SDK conventions for extensions, and the design of the API and associated SDKs themselves. There is a major focus on creating a cohesive, usable, unsurprising, and easy API/SDK for third-party developers. - Created a Nashorn-based custom JavaScript runtime with a well-defined, custom, standard runtime-library and a Node-like module-loading system, that runs J
  • Infusionsoft
    Senior Software Engineer (Continuous Delivery)
    Infusionsoft
    Jan 2014 - Nov 2014 (11 months)
    In 2014 we started focusing more on continuous delivery and on platform architecture. The architecture team was reorganized to pivot around this strategy. My major accomplishments with my team in continuous delivery were: - Educated and providing documentation and training for our move from Subversion to Git. - Researched and learned about various continuous-delivery best-practices. - Documented API best practices. - Documented REST best practices, including proper REST API development with regard to design and versioning and promoting the use of semantic media-types (HATEOAS). - Designed and implemented an end-to-end development and deployment solution to help developers to stand up services easily (with a prescribed stack) and depl
  • Infusionsoft
    Software Architect
    Infusionsoft
    Jul 2012 - Jan 2014 (1 year 7 months)
    I moved to the Architecture team in the middle of 2012 because I was interested in taking on a role with more challenges and that allowed me to focus on problems with the entire app instead of a single functional-area. I was interested in scalability and performance issues, and I was also looking for ways to refactor and improve legacy frameworks within our flagship application. My major accomplishments in this role were: - Standardizing our binary data-storage framework by developing a uniform interface for the entire flagship application. Using this data-storage it was possible to write to S3 and the database at the same time. - Augmented the new framework I had create to write data out to a NAS instead of the database. Due to my modu
  • Infusionsoft
    Senior Software Engineer
    Infusionsoft
    Jul 2012 - Jan 2014 (1 year 7 months)
    I moved to the Architecture team in the middle of 2012 because I was interested in taking on a role with more challenges and that allowed me to focus on problems with the entire app instead of a single functional-area. I was interested in scalability and performance issues, and I was also looking for ways to refactor and improve legacy frameworks within our flagship application. My major accomplishments in this role were: - Standardizing our binary data-storage framework by developing a uniform interface for the entire flagship application. Using this data-storage it was possible to write to S3 and the database at the same time. - Augmented the new framework I had create to write data out to a NAS instead of the database. Due to my modu
  • Infusionsoft
    Software Engineer
    Infusionsoft
    Jan 2008 - Jul 2012 (4 years 7 months)
    I started off by working on Internal Features and then gradually moved to more customer-facing work. Eventually I became part of the eCommerce team where I continued more feature work and also performed successful integrations with merchant accounts and a shipping integrations with UPS. After a brief stint with the Architecture team (while eCommerce was on hiatus) where I worked with senior developers on framework-related code that have a bearing on the architecture of our codebase as a whole, I moved back to the eCommerce team. This time, I worked on refactoring our existing codebase for the sake of improving maintainability and quality. I also worked on implementing new features like improved payment processing, better order forms, and a
  • intel
    Systems Validation Engineer
    intel
    Sep 2004 - Oct 2007 (3 years 2 months)
    At Intel I was a Systems Validation Engineer. I developed and wrote test-plans that would help Intel validate new chipsets (specifically, Broadwater and Ironlake). I also wrote Linux drivers for new chipsets. I also looked for opportunities to increase the efficiency of existing tools. Intel had an existing application (in MS Access) that would download register specifications. This tool was not very performant, as it took around an hour or two for the query to complete. I wrote a Perl script that performed the same task in a few seconds. I also wrote scripts that autogenerated header-files and assembly programs using register specifications.
  • Motorola Mobility a Lenovo Company
    Engineering Intern
    Motorola Mobility a Lenovo Company
    May 2003 - May 2004 (1 year 1 month)
    I worked at the Motorola Computer Group for about a year. Initially I was brought on to develop a project using ColdFusion, but I successfully convinced them to let me use PHP. I created a web-based application that helped developers at Motorola manage PTF's (Program Temporary Fix) that were used on AIX. The web application allowed developers to examine PTF dependencies and also to upload and modify existing PTF's. I also wrote a number of Perl scripts that enabled developers to do the same from the command-line. I wasn't given too many specifics when I started; just a general set of requirements. I took the initiative and made my own design choices when developing both the web interface and the commandline tools. I was extremely happy when
  • Arizona State University
    Programmer, Web Developer, Networks and Systems Administrator
    Arizona State University
    Feb 2003 - May 2003 (4 months)
    At ASU's International Programs Office, I had a whole host of duties. I was the Networks and Systems Administrator, Web Developer, and Programmer. Here, I mainly worked with PHP, Perl, HTML/CSS/Javascript, and Bash Shell scripts. I set up their network for them, with a FreeBSD Primary Domain Controller that had Windows Clients. I set up an automated backup system for them, and also set up their website.
  • Arizona State University
    Programmer, Web Developer, Networks and Systems Administrator, ASU
    Arizona State University
    Feb 2003 - May 2003 (4 months)
    At ASU's International Programs Office, I had a whole host of duties. I was the Networks and Systems Administrator, Web Developer, and Programmer. Here, I mainly worked with PHP, Perl, HTML/CSS/Javascript, and Bash Shell scripts. I set up their network for them, with a FreeBSD Primary Domain Controller that had Windows Clients. I set up an automated backup system for them, and also set up their website.
  • Army National Guard
    Sergeant (Automated Logistics and Supplies Specialist)
    Army National Guard
    Dec 2000 - Dec 2009 (9 years 1 month)
    I joined the Arizona Army National Guard in December of '00. I finished basic training during the summer of '01 and AIT during the summer of '02. My responsibilities as a 92A involved managing motor-pool supplies using the Army's ULLS-G software. I was also responsible for other tasks such as returning serviceable parts, and managing HAZMAT. In August of '05, I was deployed as part of Operation Iraqi Freedom for a year-long tour in Baghdad, Iraq. I was stationed at Camp Liberty. I was promoted while in country and managed one soldier who was under me. My tasks in country were similar; I managed inventory and supplies that helped our mechanics service our vehicles. I also kept track of serviceable parts, HAZMAT, and reporting. I was able to
  • Arizona State University
    Programmer
    Arizona State University
    Aug 2000 - May 2002 (1 year 10 months)
    This was my first job, and my responsibilities initially consisted of providing tech support to MBA students and developing a ticketing system for ASU's College of Business (now known as the W. P. Carey School of Business). About 6 months later, they changed my role to where I was solely focused on development. I mainly worked with ColdFusion, SQL, HTML, CSS, and Javascript. I was one of the original members of the "Helpdesk Team", where I was involved in the creation of the "Helpdesk Ticketing Application" for the ASU College of Business.
Education verified_user 0% verified
  • Arizona State University
    Doctor of Philosophy (PhD, Computer Science
    Arizona State University
    Jan 2015 - Dec 2023 (9 years)
    Dissertation Title: Modeling State to Improve Defensive Cyberattack Strategies
  • Arizona State University
    MCst, Computing Studies
    Arizona State University
    Jan 2010 - Dec 2012 (3 years)
  • Arizona State University
    BSE, Computer Systems Engineering
    Arizona State University
    Jan 1999 - Dec 2004 (6 years)
Projects (professional or personal) verified_user 0% verified
  • G
    Gradle Semantic Build Versioning Plugin
    Feb 2016 - Current (10 years 5 months)
    Unsatisfied with currently-available Gradle plugins for semantic build-versioning, I decided to write my own.
  • e
    enumjs
    Sep 2015
    Implementation of type-safe enums in JavaScript. This is the only truly type-safe implementation that I know of, since each enum constant is an instance of the enum itself, and not a primitive JavaScript type. This makes strict equality-checks semantically valid, and allows for instanceof checks as well.
  • B
    Bhumi
    Aug 2012
    An agent-based modeling-framework in Objective-C
  • C
    CherryBlossom
    Mar 2012
    A programming language (technically, a Brainf*ck analog) based on Haikus.
  • S
    Syma S107 Arduino Driver and Python GUI Controller
    Mar 2012
    Syma S107 Arduino Driver and Python GUI Controller
  • D
    Digit-recognizing Neural Network
    Nov 2011
    A neural-network that recognizes handwritten digits. Written in Java.
  • G
    GenericTree
    Mar 2010
    An implementation of an n-ary tree in Java.
  • R
    Regula
    Mar 2010
    Regula is a powerful, annotation-based form-validator for client-side validation that is written in JavaScript. It is based on conveying the semantics of validation via annotated constraints on HTML5 data- attributes. This is similar to the semantics conveyed by native HTML5 validation.
  • T
    Torqueo
    Jun 2009
    A load-testing framework for use with Grinder.
Awards verified_user 0% verified
  • P
    Tillman Scholar
    Pat Tillman Foundation
    Jun 2018
    "Every year, Pat Tillman Foundation receives thousands of applications from military veterans and their spouses nationwide. Up to 60 of the best-poised leaders, who show strength in character, academic excellence and incredible potential, are chosen as Tillman Scholars. They are individuals who will apply the best lessons they’ve learned in life and the military to impact our country for years to come in medicine, business, law, science, education and the arts." https://pattillmanfoundation.org/meet-our-scholars/vivin-paliath/
Publications verified_user 0% verified
  • D
    SandPuppy: Deep-State Fuzzing Guided by Automatic Detection of State-Representative Variables
    Detection of Intrusions and Malware and Vulnerability Assessment
    Jul 2024
    Current state-of-the-art automated fuzzing approaches cannot explore deep program-states without human assistance. Recently, IJON allowed humans to provide code-annotations on the target to expose program state to the fuzzer. However, this requires a human to read, understand, and annotate the program source, which limits scalability and applicability. In this paper we introduce SandPuppy, a technique that automatically identifies potential state-representative variables and applies IJON-style instrumentation to expose corresponding state to the fuzzer. To identify these variables and their semantics, SandPuppy collects runtime variable-value traces from an initial fuzzing run and analyzes them along with the program source to instrument th
  • G
    Defending Against Chained Cyber-Attacks by Adversarial Agents.
    Guide to Vulnerability Analysis for Computer Networks and Systems
    Sep 2018
    Cyber adversaries employ a variety of malware and exploit to attack computer systems. Despite the prevalence of markets for malware and exploit kits, existing paradigms that model such cyber-adversarial behaviour do not account for sequential application or “chaining” of attacks, that take advantage of the complex and interdependent nature of exploits and vulnerabilities. As a result, it is challenging for security professionals to develop defensive-strategies against threats of this nature. This chapter takes the first steps toward addressing this need, based on a framework that allows for the modelling of sequential cyber-attacks on computer systems, taking into account complex interdependencies between vulnerabilities and exploits. The f
  • Cambridge University Press
    Darkweb Cyber Threat Intelligence Mining
    Cambridge University Press
    Apr 2017
    This book examines cyber threat intelligence obtained from the center of the malicious hacking underworld - the dark web. It studies these communities both qualitatively and quantitatively, leveraging techniques from data mining, machine learning and AI, and offering insights to both cyber security practitioners and researchers.
  • A
    Reasoning about Sequential Cyberattacks
    ASONAM ACM
    Cyber adversaries employ a variety of malware and exploits to attack computer systems, usually via sequential or “chained” attacks, that take advantage of vulnerability dependencies. In this paper, we introduce a formalism to model such attacks. We show that the determination of the set of capabilities gained by an attacker, which also translates to extent to which the system is compromised, corresponds with the convergence of a simple fixed-point operator. We then address the problem of determining the optimal/most-dangerous strategy for a cyberadversary with respect to this model and find it to be an NP-Complete problem. To address this complexity we utilize an A*-based approach with an admissible heuristic, that incorporates the result o
This is a community-created genome.