Security and infrastructure leadership,
built from the wire up.
Sixteen years from help desk to the executive table | Cloud architecture, infrastructure-as-code, security & compliance program development, forensic incident response, and business continuity. Former U.S. Army Signal & Cyber officer. I lead by understanding the stack I'm accountable for.
Hard problems, handled.
Anonymized engagements showcasing the judgment and the methodology but never the associated clients.
Sensitive PII, exposed and closed
Led a full-scope penetration test of a municipal governments internal network. Uncovered 1000s of citizens' unprotected personal records served over an open FTP service. My team ran discovery, documented findings, drove containment, conducted forensic analysis, and engaged with stakeholders, before finally handing the work over to internal investigators.
A tenant compromise, contained
Led incident response for a full tenant compromise event inside a Microsoft 365 and Azure environment | Scoped the intrusion, evicted the threat actors, rebuilt identity hardening from the ground up, conducted after-action-reviews with the client, and provided full documentation from discovery-through-resolution.
A data-security program, operationalized
Designed and operationalized a data-security and regulatory-compliance program for a SaaS platform operating within a heavily regulated industry. That program accounts for all the necessary controls, documentation, evidence, and the real-world security pipelines supporting them. All assets built, documented, and operationalized from zero-to-certification.
Infrastructure, codified
Replaced click-ops drift with reproducible, version-controlled cloud infrastructure inside AWS. Networks, identity controls, automated pipelines, and guardrails defined as code and deployed automagically through robust CI/CD review processes.
I came up through the stack, not around it.
I started on a help desk and worked my way through network & security engineering, and ultimately up to executive leadership. As a U.S. Army Signal and Cyber officer I led communications and cyber operations under conditions where keeping the network from failing wasn't just a project ... it was an essential mission.
The instincts I learned have reinforced the importance of calm and quiet control in the face of live-fire incidents, the need for clear-headed decision making even with incomplete information and the necessity for accountability when poor decisions risk total collapse. These are the instincts I bring to every engagement.
Off the clock I'm usually on a trail with a camera, somewhere mid-Bach on the cello, or losing a staring contest to my box turtle, Willie.
