Gaithersburg, Maryland, Stati Uniti d'America
445 follower
383 collegamenti
445 follower
383 collegamenti
Informazioni
I'm a technology leader who bridges deep engineering expertise with strategic leadership,…
Attività
445 follower
-
David Waltermire ha condiviso questo elementoI'm hiring a Senior Software Engineer, Integrations to join my team at RegScale. Here's the context: enterprise security and compliance teams rely on dozens of tools that weren't designed to work together. Vulnerability scanners, cloud security platforms, SIEM/SOAR, ticketing systems, identity providers, all generating critical data that ends up siloed. The result? Manual evidence collection, fragmented audit trails, and compliance processes that take months instead of days. This role sits at the center of solving that problem. You'll own the integration layer that connects RegScale's continuous controls monitoring platform with the security and DevOps ecosystem. But this isn't one-off connector work. You'll build the frameworks, SDKs, and reusable patterns that make every subsequent integration faster and more reliable. Think event-driven architectures, intelligent data pipelines that normalize data across wildly different vendor APIs, and resilient systems that handle millions of security findings with integrity. What I'm looking for: → 8+ years in software engineering with a track record of building production integration systems at scale → Deep API design and integration architecture experience → Strong distributed systems fundamentals: event-driven, async processing, message queues, orchestration → A frameworks-and-patterns mindset, not point solutions → Bonus: experience with security/DevOps tools or compliance data standards like OSCAL, SARIF, or OCSF We're a small, high-ownership team helping organizations achieve compliance across 60+ frameworks including FedRAMP, SOC 2, CMMC, and SOX. If building the connective tissue between enterprise security tools and automated compliance sounds like your kind of challenge, I'd love to talk. US Citizens only. https://lnkd.in/ezrmxP7N #hiring #softwareengineering #integrations #compliance #DevSecOps #RegScale
-
David Waltermire ha condiviso questo elementoI'm hiring a Senior AI Engineer to join my team at RegScale. Here's the context: compliance is one of the most data-rich, pattern-dense domains in enterprise software, and most of it is still handled manually. We're changing that. AI is central to how RegScale automates compliance programs across 60+ frameworks like FedRAMP, NIST 800-53, CMMC, and SOC 2. This role isn't about prototyping models in a notebook. You'll own production AI systems end to end: RAG pipelines, agent orchestration, model fine-tuning and evaluation, MCP server development, data pipelines, and the safeguards that keep it all reliable in a regulated environment. Compliance data is deeply relational, and our retrieval strategies reflect that. If you have experience with graph-based retrieval and knowledge graphs alongside more traditional approaches, you'll find interesting problems here. What I'm looking for: → 8+ years in software engineering, 4+ building AI/ML systems in production → Experience with retrieval systems including graph-based and hybrid approaches → Real experience with agent design and orchestration → Strong data engineering fundamentals: pipelines, quality, traceability → Production mindset: reliability, observability, cost management, not just accuracy metrics → Bonus: experience in regulated industries or familiarity with GRC frameworks We're a small team at an inflection point, transitioning from startup execution to disciplined, enterprise-grade AI engineering. If you want to build AI systems where the bar is production rigor, not demo magic, I'd love to talk. US Citizens only. https://lnkd.in/ewuk5iQQ #hiring #AI #MLEngineering #compliance #DevSecOps #RegScale
-
David Waltermire ha condiviso questo elementoBringing Domain Expertise to AI: Claude Plugins for OSCAL and Metaschema I am excited to share a personal project that bridges the gap between AI assistants and specialized domain knowledge: open-source Claude Code plugins for OSCAL (Open Security Controls Assessment Language) and Metaschema. 💡 Why this matters: OSCAL is NIST's standardized framework for expressing security controls, assessments, and authorization packages in machine-readable formats. It is transforming how organizations approach FedRAMP, FISMA, and security compliance, though the learning curve is steep. Metaschema is the modeling language that defines OSCAL and can define other information models. It enables precise, format-agnostic data definitions with built-in validation constraints. What these plugins enable: 📚 Knowledge plugins that provide Claude with a deep comprehension of OSCAL's eight model layers (catalog, profile, component-definition, SSP, SAP, SAR, POA&M, and mapping) and Metaschema's module composition and constraint system. ⚙️ Tool plugins that integrate the metaschema-java and oscal-cli command-line tools directly into Claude's workflow, enabling validation, schema generation, profile resolution, and format conversion. 🎯 The result: Claude can now assist with authoring OSCAL content, designing Metaschema modules, validating documents against schemas, and navigating the complex relationships between security controls and system implementations. This is a step toward AI that does not just generate generic code but understands the specific standards and patterns that matter in your domain. 🔗 The plugins are open source under Creative Commons Zero (CC0) 1.0 Universal: https://lnkd.in/e6qcuM2V 🚀 In my role at RegScale, I work on compliance-as-code solutions every day. This open-source project reflects my passion for making OSCAL more accessible, and I'm grateful to work for a company that values open-source contributions to the OSCAL ecosystem. #OSCAL #Cybersecurity #FedRAMP #AI #ClaudeAI #OpenSource #SecurityCompliance #NIST
-
David Waltermire ha condiviso questo elementoAlways glad to see more open source tooling supporting the OSCAL community!David Waltermire ha condiviso questo elementoSlow authorization timelines and manual compliance are costing organizations months of delays and millions of dollars. RegScale built a solution to fix it. 🌟 Introducing OSCAL Hub: the industry’s first comprehensive, open-source platform for automated security authorization. Developed by RegScale and donated to the OSCAL Foundation, the hub transforms how Authorizing Officials review packages and how organizations submit security documentation. → 6 weeks to 3 days for ATO reviews → 1,000+ hours reduced to 2 hours for SSP creation → Automated NIST 800-53 validation → Free, open-source, deployable anywhere Ready to accelerate your path to authorization? ☸️ https://hubs.li/Q03Yc68Q0NIST OSCAL Hub for Compliance Automation | RegScaleNIST OSCAL Hub for Compliance Automation | RegScale
-
David Waltermire ha pubblicato questo contenutoBuilding a game UI with AI: lessons from the trenches 🎮 I've spent the past week building a 2D user interface for my card battler game, working primarily with Claude Code and Sonnet 4.5. Here's what I learned about AI-assisted game development: What worked: Started with Unity best practices for responsive layouts supporting phones, tablets, and PCs. The initial multi-zone design rendered successfully after some refinement: a solid foundation to build on. What needed rethinking: The real work was architectural. I spent days refactoring to address patterns that LRMs commonly struggle with: 🔧 Prefabs → Configuration-as-code: Prefabs require manual Unity editor work. Code-based configs keep everything in the AI feedback loop and enable proper CI-based unit testing. 🎯 Model-view separation: The initial code duplicated state across UI components. Required deep refactoring to properly integrate with existing game state classes. ⚠️ Anti-patterns galore: God Objects, encapsulation violations, imperative vs reactive mismatches, duplicate default values. The fix? Asking why specific design decisions were made, then letting Claude iteratively address its own architectural issues. The takeaway: AI can accelerate development, but you need to understand good architecture to guide it. I didn't write much code, but I asked a lot of questions. The result: clean, testable UI code that follows Unity conventions. Next up: a playable battle demo with unskinned UI. Should have something working in a week or so. Anyone else working on AI-assisted development? What architectural challenges have you hit? #GameDev #Unity #AI #SoftwareEngineering #IndieGame
-
David Waltermire ha condiviso questo elementoBuilding a Game with an AI Agent Teams: Lessons from the Trenches I've been experimenting with Claude Code's sub-agent features, using mobile game development as my test case. After creating 17 specialized agents spanning planning through release, I've completed the core gameplay loop and state machine in a few days. The experience has been remarkably positive and surprisingly familiar. The Team Structure My agent cohort mirrors a real development organization: - Planning: Game Designer, Technical Architect, Product Manager - Development: Gameplay Programmer, Systems Programmer, UI/UX Developer, Graphics Programmer, Lua Scripting, Asset Integration - Testing: Code Review, QA Engineer, Performance Engineer, Platform Specialist - Release: Build Engineer, DevOps Specialist, Documentation Specialist - Meta: Quality Assurance, Retrospective Analyst Key Learnings - Specialized Agents are More Effective - Specialized prompts focus the agent on different meaningful aspects. Creating tension between roles produces better results than a single agent doing everything. - Clarification-First Architecture Works - High-risk items require clarification before proceeding. Questions must include examples, assumptions documented with risk levels. This creates checkpoints preventing costly mistakes. - Agent Orchestration Requires Iteration - Initially, my Product Manager wasn't effectively leveraging specialists. The breakthrough: explicitly documenting handoff workflows between roles, just as with human teams. - Periodic Team Reviews Are Essential - A comprehensive review with Game Designer, Technical Architect, Code Review, and QA Engineer agents identified code discrepancies, specification gaps, and performance issues I'd missed. - Process QA Changes Everything - Creating a dedicated QA agent to validate that others follow established processes was transformative, virtually eliminating micromanagement. What Still Requires Human Leadership? - Risk management and judgment calls - Design, architecture, and risk documentation review - Engineering direction through code review The Familiar Feel Working with this cohort feels surprisingly like managing human engineers. What's missing? The human connection—spontaneous conversations, creative brainstorming energy, mentorship relationships. Looking Ahead I'm continuing this experiment and will share more insights. If you're exploring AI-assisted development, think about team structure and process, not just individual agent capabilities. What's your experience working with AI agent teams?
David Waltermire ha commentato un post
3 settimane
Congratulations Dave! 🎉
-
David Waltermire ha aggiunto una reazioneDavid Waltermire ha aggiunto una reazione👏 We're honored to announce that our own Co-Founder and CEO Travis Howerton has been recognized as a finalist in the EY Entrepreneur Of TheYear® 2026 Mid-Atlantic program. We cannot wait to cheer Travis on during the awards celebration on June 18 when winners will be announced! #EOYUS #EOYMidAtl https://hubs.li/Q04dbkZ50
-
David Waltermire ha consigliato questo elementoDavid Waltermire ha consigliato questo elementoI deeply admire people who excel in more than one field. This week, two of my long-time friends, both world-class experts in their respective domains (cybersecurity and mathematics), published their first novels. I was an early reader of both books and the editor of one, and I'm blown away at how good both books are. If you enjoy sci-fi or technology fiction, check out the links in the comments. And congratulations to Matthew Smith and Anthony Bonato!
-
David Waltermire ha consigliato questo elementoDavid Waltermire ha consigliato questo elementoI'm thrilled to share that I just started a new subcontract at NIST doing cybersecurity research and writing! This was a big win for Trusted Cyber Annex, and I'm so glad to be working with such amazing NISTers again.
-
David Waltermire ha consigliato questo elementoDavid Waltermire ha consigliato questo elemento🚨Last chance! Don’t miss Dale Hoak and Dave Waltermire for their live session today, Why AI Governance Is Failing—and How to Fix It Without Slowing Innovation. They'll cover: ⚙️ What’s going wrong with AI governance programs, and what it takes to get them working ⚙️ How to integrate AI oversight into existing security and compliance ops ⚙️ How to use automation to surface risk ⚙️ What kind of guardrails can enable responsible AI use There’s still time to register – don't miss out: https://hubs.li/Q047YQv_0
-
David Waltermire ha consigliato questo elementoDavid Waltermire ha consigliato questo elemento🚀 Excited to announce the release of v0.2.0 of OSCAL Content for AWS Services — an open-source project providing machine-readable security artifacts in Open Security Controls Assessment Language. Here's what's new: 📦 224 new AWS service components added (450 total) 📋 AWS Security Hub catalog with 452 controls 🔗 Service components now include Security Hub control references and AWS Config Rules 📝 Enriched metadata: descriptions, documentation links, IAM service prefixes, event sources, SDK names, lifecycle stages, and more. ⬆️ Upgraded to OSCAL v1.2.1 If you work in GRC, cloud security, or compliance automation, this project is for you. The content consolidates AWS service information from many sources into a format designed for programmatic assessment: NIST's OSCAL. The content is JSON-formatted, open source (Apache 2.0), and ready for experimentation. There's also a companion OSCAL MCP Server to help you explore and work with the content. Check it out 👉 https://lnkd.in/gXzNKtsV We'd love your feedback — open an issue on the repo to let us know how you're using it or what you'd like to see next. #AWS #OSCAL #ComplianceAsCode #CloudSecurity #GRCEngineering #ComplianceAutomation OSCAL Foundation Michaela Iorga, PhD Hart Rossman Pete Waterman Stephen Banghart Pirooz Javan Chad Woolf Dan Chandler David Waltermire Anca Sailer Nandini Ramani Sherry Fairbank Jake Marcinko Brian Ruf, CISSP, CCSP, PMP Sara Duffer Jesus Luna Jessie Franks Skibbe Jennifer Power Travis HowertonGitHub - awslabs/oscal-content-for-aws-services: OSCAL content for AWS servicesGitHub - awslabs/oscal-content-for-aws-services: OSCAL content for AWS services
-
David Waltermire ha consigliato questo elementoDavid Waltermire ha consigliato questo elementohttps://lnkd.in/gDfb4Vtf A new exciting partnership beteeen GSA and NIST to provide agencies the tools and insights they need to adopt AI.GSA and NIST Partner to Boost AI Evaluation Science in Federal ProcurementGSA and NIST Partner to Boost AI Evaluation Science in Federal Procurement
Esperienza e formazione
-
RegScale
Vedi l’esperienza completa di David
Cliccando su “Continua” per iscriverti o accedere, accetti il Contratto di licenza, l’Informativa sulla privacy e l’Informativa sui cookie di LinkedIn.
Referenze ricevute
8 persone hanno scritto una referenza per David
Iscriviti ora per vedereEsplora altri post
Altre persone che si chiamano David Waltermire
Su LinkedIn ci sono altre 4 persone che si chiamano David Waltermire
Vedi altre persone che si chiamano David Waltermire