DoControl / ITDR • Identities / 2025
From noisy identity signals to clear, safe actions
An ITDR-focused Identities experience that helps security teams spot risky users fast, understand why, and take safe action across apps, permissions, and sessions.
-
Defined the Idententities experience scope + IA: posture → identity list → details → actions.
-
Designed the risk model UX: scores, severity labels, and “why this is risky” explanations.
-
Built the key views: identity overview, risk drivers, trends, and suspicious signals breakdown.
-
Created investigation + action paths: drill-downs, context panels, and next-step remediation entry points.
-
Owned the ship-ready layer: microcopy, empty/error states, and dev handoff specs.
DoControl / Dot AI Assistance / 2026
Dot AI assistance that turns security questions into safe actions
Dot thinks like an elite security analyst, She understanding real SaaS usage to continuously identify insider risk across workflows and data interactions, at massive scale.
-
Owned Dot end-to-end: named and positioned the AI assistant, defined scope + success metrics, and shipped the v1 experience inside DoControl.
-
Designed trust-first AI UX: human-aware risk insights with evidence cues, clear limitations/disclaimer, and safe paths from “answer” to “action.”
-
Made it usable in real workflows: integrated entry points (nav / Help / ⌘+/), structured responses + prompt suggestions, and partnered with PM/eng through specs, QA, and iteration.
DoControl / Shadow apps / 2025
Discover and control risky OAuth apps, before they become incidents
A Shadow Apps experience that surfaces unsanctioned app connections, explains permission risk, and guides safe remediation across users, scopes, and sessions.
-
Defined the Shadow Apps problem + success metrics
-
Mapped end-to-end flow: discover → assess → decide → remediate
-
Designed IA + key screens (list, details, risk, actions)
-
Wrote UX copy + states for safe decisions
-
Shipped with PM/eng: specs, handoff, iteration
WORK HIGHLIGHTS
LET'S TALK
