Matthew Keith Carter, Product Manager in Newton, MA, United States
Matthew is available for hire
Hire Matthew

Matthew Keith Carter

Verified Expert  in Product Management

Product Manager

Location
Newton, MA, United States
Toptal Member Since
April 21, 2021

Matthew is a product manager with over 20 years of experience focusing primarily on information security and identity & access management (IAM). The best aspect of Matthew's product methodology is his willingness to address compromises, his focus, and his application of a scarce resource mindset. Matthew's read Kahneman and Tversky and has better than average awareness of biases that affect judgments—whether it be buying decisions, design considerations, or product prioritizations.

Product ManagementAgileAgile Product ManagementJiraTalent Management

Project Highlights

Financial Aggregator Passwordless Data Exchange
Fulfilled the mutual TLS enforcement on the API gateway for B2B financial aggregator use cases.
Registration Workflow for a CRO Investigator Portal
Built the registration workflow for a clinical research organization’s investigator portal using the Identity Management API and a native WebCenter front end; the project was deployed on time and achieved four nines of availability in the first year.
Prototype for Multi-tenant Policy Decision Service
Designed and built decision service with the REST API for making authorization decisions using context from consumer SaaS apps.

Expertise

AgileCloud InfrastructureCloud SecurityIdentity & Access Management (IAM)LeadershipPricing StrategyProduct ManagementTech Sales

Work Experience

Customer Identity and Access Management Specialist

2022 - PRESENT
Okta
  • Built and documented AWS touchpoints with Okta and Auth0.
  • Wrote several workflow variations with identity-proofing providers for asynchronous approvals that updated lifecycle in Okta.
  • Was a SOAR award winner for the public sector Q3 FY2024 for work with various public sector customers building public CIAM projects.

Director of Product Management

2018 - PRESENT
Oracle
  • Led the Zenedge WAF into an Oracle Cloud Infrastructure; it became the highest-grossing cloud security product in OCI.
  • Revived a key management service by adding a new metric at a better price point, enhancing asymmetric encryption and signing and differentiating via cross-region backup and replication, creating 10,000 new KMS vaults in two years.
  • Blended CASB technical PMs with new hires to form a team focused on native cloud security posture management; Cloud Guard has seen a growth of 1,000+ tenants in less than six months.
  • Absorbed the outbound PM responsibility due to reorganization and had a successful major go-to-market launch of Maximum Security Zones with the highest number of impressions compared to prior security launches.
  • Earned Gartner points for a layer seven DDoS mitigation service; outsourced tooling to give SOC analysts the ability to tune a WAF policy on behalf of the customer and defined customer workflows for escalation and credit rebates.
  • Rewrote the cloud portion of the security certification exam, resulting in a better correlation coefficient of passing candidates.
  • Presented demos of the security cloud infrastructure and completed RFI responses for several analyst evaluations, significantly increasing OCI standing in three years.
  • Presented or mentored on about 20 product definitions, most of which were funded, including certificates, vulnerability scanning, bastion, and secrets; also wrote the planning documentation for the FY22 budget.

Solutions Architect

2016 - 2018
Axiomatics Federal
  • Implemented dynamic authorization projects and training for two government agencies and one car manufacturer.
  • Evangelized the policy decision microservice at Identiverse, NLIT, and CSA Congress.
  • Integrated Axiomatics with Camunda, Sailpoint, and Neo4J for various sales opportunities.
  • Deployed Axiomatics Services Manager to AWS Marketplace.

Identity Consultant

2013 - 2016
Independent Consulting
  • Fulfilled the mutual TLS enforcement on the API gateway for B2B financial aggregator use cases; wrote tooling using Selenium and APIs to test a 3-legged OAuth2 flow.
  • Built the registration workflow for a clinical research organizations’s investigator portal using Identity Management API and native WebCenter front end. The project was deployed on time with achieved four nines of availability in the first year.
  • Implemented Active Directory reconciliation and single sign-on for a federal agency’s business suite, including the E-Business Suite, Hyperion, and Business Intelligence.
  • Modeled a role inheritance strategy for a large bank that would have reduced the number of roles by 33%.
  • Built out the SSO portal for large cable communications using Symplifed.

Product Manager

2013 - 2013
Totvs Labs
  • Defined various requirements for Fluig Identity, a cloud-based identity-and-talent management service.
  • Created the self-paced training for product and identity industry concepts.
  • Tested SSO connectors for third-party vendors like Salesforce.

Sales Engineer

2012 - 2013
Symplified
  • Created a health sciences-themed access control demonstration.
  • Presented an access control solution to multiple prospects daily.
  • Validated the integration with Salesforce, Concur, and other SaaS platforms.

Sales Consultant

2008 - 2012
Oracle
  • Created IAM and database security demos using Oracle software.
  • Worked as part of a special team sent to help build DoD portal; was responsible for SSO using OAM.
  • Provided content to the A-team blog; my CAC card blog had one of the highest number of impressions.

Product Manager Intern

2000 - 2004
Netegrity
  • Wrote a white paper on scaling the SiteMinder web-access management solution.
  • Defined test requirements for IdentityMinder, which was an identity governance program.
  • Executed the proof of concept for SiteMinder agents on Enterprise Java platforms like WebLogic and WebSphere.

Financial Aggregator Passwordless Data Exchange

https://www.americanbanker.com/news/fidelity-data-sharing-hub-aims-to-end-screen-scraping

Fulfilled the mutual TLS enforcement on the API gateway for B2B financial aggregator use cases.

The project was funded by a large financial institution and contracted work on OAuth 2.0 authorization code 3-legged flow. Our team implemented the resource server enforcement layer and an authorization server routing algorithm to facilitate internal and external use cases.

I wrote the tooling using Selenium and APIs to test the 3-legged OAuth2 flow and implemented the API gateway 2-way SSL validation of trusted partners.

Registration Workflow for a CRO Investigator Portal

Built the registration workflow for a clinical research organization’s investigator portal using the Identity Management API and a native WebCenter front end; the project was deployed on time and achieved four nines of availability in the first year.

The CRO went live with a portal powered by an identity API layer that I provided using enterprise software that provisioned user accounts to Active Directory. I also integrated the SSO system with the ADFS login to facilitate the SAML integration with third-party providers.

Prototype for Multi-tenant Policy Decision Service

Designed and built decision service with the REST API for making authorization decisions using context from consumer SaaS apps.

Hosted in AWS and leveraging industry rules engine, I specified a user interface and contracted a developer to build an AngularJS front end. I then built a Fitbit connector to query steps with a use case of a consumer willpower device that distributed reward food based only after steps had been completed.
1998 - 1999

Master's Degree in Engineering Management

Northeastern University - Boston, MA, United States

1991 - 1995

Bachelor's Degree in Engineering Sciences

United States Air Force Academy - Colorado Springs, CO, United States

FEBRUARY 2021 - FEBRUARY 2024

AWS Security Specialty

Amazon Web Services

DECEMBER 2010 - DECEMBER 2011

CISSP

ISC2

Tools

Jira, Confluence, Provisioning Tools

Paradigms

Agile, API Architecture, Agile Product Management

Other

Cloud Security, Identity & Access Management (IAM), Leadership, Product Management, Cloud Infrastructure, Tech Sales, Data Architecture, Relational Databases, API Design, UX Design, APIs, Pricing Strategy, OAuth, API Gateways, SSL, Scope, Single Sign-on (SSO), Identity, Workflow, Salesforce API, Security, Technical Product Management, Cloud Architecture, OpenID Connect (OIDC), Governance

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring