← Back to directory
Ethan Troy

Ethan Troy

Florida

GitHub LinkedIn X / Twitter Bluesky Hugging Face Blog
Available for: open-sourcecollaborationspeaking

Specializations

Compliance AutomationCloud SecuritySecurity ArchitectureOffensive Security

Languages & Tools

GoRustPythonBashTerraform

Frameworks

FedRAMPNIST 800-53NIST CSFSOC 2CMMC

Certifications

CISSPCISAOSCPSecurity+CCSKCEHAWS Solutions Architect AssociateCRTOCRTLPNPTCRTPISO 27001 Lead AuditorISO 42001 Lead AuditorGCP Cloud Security EngineerKCNA

Projects

fedramp-docs-mcp

MCP server for FedRAMP documentation

claude-grc-agent-demo

Domain-specific GRC agent built with the Claude Agent SDK

nmap-GPT

AI-powered Nmap scanner that provides security insights on open ports

DamnVulnerableTrustCenter

Intentionally vulnerable trust center for security awareness

hackidle-nist-coder

Fine-tuned model for NIST security and compliance coding tasks

Open Source Security & Compliance

Curated Hugging Face collection of open-source security and compliance models

About Me

Builder at the intersection of security engineering, compliance automation, and AI. I work on tooling that makes GRC less painful — from MCP servers for FedRAMP documentation to Claude-powered compliance agents.

Currently focused on bringing software engineering practices to GRC: policy as code, continuous compliance, and AI-assisted assessments. I believe the future of GRC is programmable.

Experience Highlights

  • Building open-source GRC tooling and curated resource collections
  • Developing AI agents for compliance workflows using Claude Agent SDK
  • Creating MCP servers for compliance documentation and OSCAL packages
  • Research and development at hackIDLE

Get in Touch

Happy to chat about GRC automation, compliance engineering, AI agents for security, or anything at the intersection of code and compliance.

Interested in working with Ethan Troy?

GitHub Profile Connect on LinkedIn Follow on X Follow on Bluesky Hugging Face Visit Blog