Patrick Boden · CISSP · CISO at Purpose Financial
Three decades in the trenches of cybersecurity. I build, lead, and overhaul security organizations — and on weekends, I write the tools I wish vendors would.
I'm obsessed with information security — partly because it's fascinating, and partly because protecting data is my version of extreme sports: adrenaline included, with fewer broken bones.
Three decades in the trenches have taught me one thing: the threats don't sleep, and neither can your defenses. I build, lead, and overhaul security organizations — giving enterprises the muscle and mindset to fight back against an ever-evolving threat landscape.
I don't check compliance boxes. I design programs that actually work — staying ahead of fast-moving risks, breaking down business practices to find weak points before attackers do, and turning security awareness from a checkbox into a culture shift.
From publicly traded boardrooms to high-pressure war rooms, I've helped companies modernize security through cloud transformations, incident response readiness, risk modeling, and vendor security programs aligned to real business needs, not fantasy checklists.
KPIs, KRIs, real-time risk analysis. No fluff, just results.
Project Mimir wasn't a product strategy. It was a CISO with a long weekend, a frustration, and an LLM that would let him keep typing.
I wanted to understand what these tools can actually do, end-to-end, on a real codebase that solves a real problem. Not a TODO app. Not a tutorial. A working product with a database, an agent, a UI, an alerting pipeline, and a marketing site. Building Project Mimir is how I taught myself agentic engineering — by shipping it.
I sit on the buying side of commercial EDR. The tools are powerful, the contracts are punitive, and the telemetry leaves your network the moment you turn them on. Open source endpoint visibility shouldn't be a research project — it should be a Tuesday. Project Mimir is what happens when a security leader stops waiting for a vendor to ship what he actually wants.
When I sat down to start this project I needed a name for the GitHub repo. I was watching re-runs of Vikings at the time and figured you cannot go wrong with Viking gods — so I did a quick Google search and up popped Mimir.
Mímir (pronounced "MEE-meer") is a figure in Norse mythology renowned for his unmatched wisdom, knowledge, and memory. Often described as a jötunn (giant) or a water spirit, he is the guardian of Mímisbrunnr (Mimir's Well), a sacred spring beneath a root of the world tree, Yggdrasil, which contains cosmic understanding.
…well, here we are.
Watching Garry push gstack three times a day made it feel like the CEO of YC was personally on my team. I was a one-person shop with a coding partner and a build system that kept getting better while I slept. That's the kind of energy that makes a side project into a real one.— Patrick · re: Garry Tan & gstack
The agent that did most of the typing. Patient through bad ideas, tireless through good ones, and somehow never complained when I changed my mind for the third time in an hour. The marketing site you're on right now? Pair-built with Claude.
For pushing the field forward and making "an LLM you can talk to like a coworker" a thing that exists. The whole agentic-engineering wave started somewhere — and a lot of the foundations sit on work they shipped.
I'm easiest to reach on LinkedIn. The GitHub has the code.