Open to opportunities

Jenna Webb

Trust & Safety and Fraud Leader

10+ years building abuse-prevention systems, detection frameworks, and risk operations across email, messaging, fintech, and SaaS. Most recently Staff PM for Trusted Communications at Twilio, where I cut abuse incidents by 71%. Off-hours, I ship full products end to end — the work below is a sample.

See the workGet in touch

About

Operator first, builder always

I spent the last decade-plus running Trust & Safety and fraud programs at scale — Twilio (Staff PM, Trusted Communications), Alliance Data (Fair Billing), and most recently a consulting engagement with OneSignal designing onboarding-fraud detection. I’m fluent in the operational side of the work: SQL, Snowflake, Looker, Splunk, behavioral analytics, root-cause investigation, KPI design, carrier and cross-functional escalation.

What sets me apart is that I don’t stop at the spec. I build the thing. The projects below are products I designed, built, and shipped end-to-end — database schema, API, mobile UI, billing — using modern AI tooling to move at solo-builder speed without losing the rigor I bring from the T&S side.

The combination is rare: an operator who can talk to legal, finance, and carriers, then go write the schema. That’s the role I’m looking for next.

Experience

Career highlights

Download full resume →

Independent Security & Risk Consultant

OneSignal (Contract)

Jan 2026 – Apr 2026

  • Designed behavioral risk scoring and identity-verification frameworks for onboarding-fraud detection.
  • Built automated decisioning combining device intelligence, document authenticity, network reputation, and behavioral signals.
  • Closed gaps in third-party detection with supplemental controls targeting previously unmitigated abuse vectors.

Staff Product Manager, Trusted Communications

Twilio Inc.

Jun 2022 – Apr 2025

  • Led Trust & Safety strategy for email and messaging abuse prevention protecting millions of users globally.
  • Designed detection and enforcement frameworks that reduced abuse incidents by 71% while minimizing impact to legitimate senders.
  • Built monitoring dashboards and reporting workflows in SQL, Looker, Tableau, Splunk, and Snowflake for real-time visibility into enforcement and abuse trends.
  • Investigated phishing, spoofing, malicious-link propagation, account compromise, and large-scale spam campaigns.

Staff Messaging Compliance Program Manager

Twilio Inc.

Nov 2020 – Jun 2022

  • Led compliance and abuse-prevention strategy for A2P messaging (10DLC, Short Code, Toll-Free).
  • Built automated enforcement workflows and carrier policy controls that reduced messaging violation rates by 40%.
  • Improved compliance review throughput by 60% YoY; reduced average incident resolution time by 35%.

Fair Billing Compliance Program Manager

Alliance Data

Apr 2012 – Aug 2018

  • Founded and operationalized the Fair Billing compliance program: fraud identification, dispute resolution, ACH/Reg E.
  • Conducted risk assessments and root-cause analyses that reduced billing discrepancies and tightened operational controls.
  • Supported CFPB audits through reporting, operational analysis, and remediation planning.

Also worth noting

  • Quantitative Trading (Apr 2025 – present): Python data pipelines and algorithmic trading strategies across equities, futures, and options — backtesting, risk controls, and live execution.
  • Recognition: Superb Owl Award (Twilio, 10DLC carrier connections), Magic Owl Award (Twilio, building the compliance department), President’s Circle nomination (Alliance Data, creating the debt settlement function).
  • Core stack: SQL, Python, Snowflake, Looker, Tableau, Splunk, Jira, event stream analysis, behavioral analytics.

Selected projects

Built end-to-end

Each of these is a product I designed, scoped, and shipped myself — schema, API, UI, billing, and everything in between. They’re evidence of the builder side of the operator profile above.

  • Domain Risk API (SDAT v2)

    In progress

    Commercial fraud-detection API — POST a signup submission (domain, email, phone, IP, device fingerprint), get a scored risk decision with explainable signals.

    The successor to the Config-checker prototype. Multi-tenant SaaS modeled on industry leaders like eHawk: an API-first product where customers automate fraud decisions instead of running them through a human-review console. The moat is a cross-customer fingerprint reputation network plus a community feedback loop that improves accuracy over time.

    Role

    Solo founder & engineer — architecture, API, scoring engine, schema design

    Stack

    • Django 5
    • Postgres
    • Python
    • REST API
    • Multi-tenant
    • Wraps the proven Config-checker analyzer instead of rewriting it
    • API-first: sync POST /submissions today, async-compatible response shape for tomorrow
    • Multi-tenant org isolation with API-key auth from day one
    • Cross-org entity linking and fingerprint reputation as a sellable network signal

  • Config Checker (SDAT v1)

    Shipped

    Streamlit prototype that scores domains for fraud risk — DMARC, RDAP, lookalike detection, threat intel, plus a human-readable risk summary.

    The original Streamlit-based domain-risk analyzer (~400KB Python). Accepts a domain, returns a structured DomainApprovalResult with risk score, recommendation, and an investigator-friendly summary. Still in active use; the engine that the v2 API now wraps. Lives at naanyas/Config-checker on GitHub.

    Role

    Solo engineer — analyzer, scoring logic, Streamlit UI

    Stack

    • Python
    • Streamlit
    • RDAP
    • DMARC
    • VirusTotal
    • Single-domain risk scoring with a structured, queryable result object
    • Pulls DMARC, RDAP, and threat-intel signals into one report
    • Investigator-friendly summary explaining the score
    • Direct predecessor to the v2 commercial API

  • Social Media Verify

    Shipped

    Python OSINT and domain-verification toolkit — lookalike detection, contact OSINT, threat intel, and remediation workflows.

    A 45KB analyzer that classifies a domain across category, contact OSINT, and threat-intel signals. Detects lookalike domains used for phishing infrastructure, integrates VirusTotal, and surfaces a remediation workflow. A second analyzer in the trust-and-safety toolkit.

    Role

    Solo engineer — analyzer, classification logic, tests

    Stack

    • Python
    • Flask
    • RDAP
    • DMARC
    • VirusTotal
    • Domain category classification with contact OSINT pivots
    • Lookalike-domain detection for phishing infrastructure
    • Threat-intel integration: VirusTotal, hacklink scanning
    • Production-ready with test coverage

  • Momentum Screeners & Trading Pipeline

    In progress

    Python data pipelines and algorithmic trading strategies across equities, futures, and options — pattern screeners, backtesting, risk controls, live execution.

    An ongoing personal project applying the same signal-mining discipline I used in trust & safety to financial markets. Scans 1,500+ tickers daily for high-conviction setups (Gap Up + Fade, momentum reversal, etc.), backtests strategies against historical data, and runs risk-controlled execution. Built from a hypothesis-test-iterate loop rather than a black box.

    Role

    Solo engineer — strategy design, pipeline, backtest harness, execution

    Stack

    • Python
    • yfinance
    • pandas
    • backtesting
    • options/futures
    • Pattern screener scanning 1,500+ tickers daily for setups like Gap Up + Fade
    • Backtesting harness for validating strategies against historical data
    • Risk controls built in: position sizing, stop logic, daily loss caps
    • Live execution layer for hands-off trade entry once a setup triggers

  • Tangled Webb Bar Platform

    Beta

    Live bar entertainment platform — trivia, bingo, open mic, Triple Down, and Shut Up & Roll, all running off one host console.

    A full multi-game platform for venues. Players join by scanning a QR code, hosts run live rounds from a unified console, and admins manage venues, question banks, promotions, performer profiles, and booking flows. Anti-cheat detects when players leave the app mid-question. Built for Tangled Webb Entertainment.

    Role

    Solo founder & engineer — product, UX, full-stack build

    Stack

    • Next.js 16
    • React 19
    • TypeScript
    • Turso (libsql)
    • Tailwind
    • JWT auth
    • Five live game modes share one player join flow and host console
    • Player, host, admin, and performer roles each get a tailored interface
    • QR-driven team join, per-venue leaderboards, drink-special promotions
    • Booking and performer-profile system links the platform to GigHive

  • GigHive

    Beta

    Mobile-first booking marketplace where bars and venues book live entertainment — musicians, comedians, DJs, karaoke hosts.

    Two-sided marketplace for live entertainment. Performers publish availability and get booked; bars find acts (especially last-minute) by act type, radius, and region. Includes urgent bookings, fill-in subs, an equipment marketplace, classifieds, and a free public events feed with a follow system.

    Role

    Solo founder & engineer — product, mobile, backend, payments

    Stack

    • Expo (React Native)
    • Supabase
    • Stripe
    • TypeScript
    • 10 act types, location matching by radius and region
    • $5/month subscription with beta-tester bypass; Stripe handles billing
    • Urgent / fill-in board for last-minute coverage
    • Public events feed with follow system, free to consumers

  • 2 Drink Memories

    Prototype

    Bar-friendly photo-hunt game — find the differences between two AI-generated images before the timer runs out.

    First title from Fly Trapp Games (a sub-label of Tangled Webb Entertainment). Token-based plays via in-app purchase, image pairs generated through Gemini 2.5 Flash, hotspot hit-detection on tap. Designed for the bar context — short rounds, easy to pick up, hard to put down after two drinks.

    Role

    Solo founder & engineer — game design, mobile build, content pipeline

    Stack

    • Expo SDK 54
    • TypeScript
    • Gemini 2.5 Flash
    • Supabase (planned)
    • AI-generated image-pair pipeline with hotspot coordinates
    • Token wallet (10/$1.99, 30/$4.99, 100/$12.99) wired for IAP
    • Tappable hotspot detection with miss-marker feedback
    • Dark, branded UI tuned for low-light bar environments

How I work

Operator’s instincts, engineer’s output

End-to-end ownership

Schema, API, mobile, web, billing — I’m comfortable owning the full stack and the product decisions that come with it.

Move fast, with rigor

AI-assisted development lets me ship at solo-builder speed without skipping the thinking — schemas, tests, and architecture still get the time they need.

Real problems

Every project here came from a real pain point — fraud teams drowning in signups, performers hunting gigs, venues looking for better bar nights.

Calm collaboration

I came up in operations. I can talk to legal, finance, and customers — not just engineers — and I write down decisions so the team can move on.

Contact

Let’s talk

I’m open to roles where I can keep building end-to-end and where my range — fraud, payments, marketplaces, live events — is an asset, not a curiosity. Happy to share deeper walkthroughs of any of the projects above.

jwebb@naanyas.comLinkedInResume (PDF)