The arc, in full.

Timeline

1. Director of Information & Security

   2022 - Present
   Buddy · Insurance technology SaaS platform

   Sole leadership and responsibility for information security, cloud architecture, regulatory compliance, and DevOps at a SaaS platform handling heavily regulated data.

   • Designed, built, and maintained the entire AWS production, testing, and QA environments from inception: automated CI/CD, infrastructure-as-code workflows, VPC architecture, IAM strategy, encryption standards, network segmentation, and high-availability patterns.
   • Established the information security and regulatory compliance program from inception, achieving and maintaining SOC 2 Type 2, PCI DSS, GDPR, and CCPA as sole owner of policy, controls, audits, and evidence.
   • Built and operate the internal IT platform: centralized endpoint administration and EDR, identity and access management, networking, remote monitoring & management, and helpdesk systems.
   • Established partnerships with engineering and business leadership groups on secure SDLC, architecture security review, and IaC patterns; run a hybrid AWS and GCP strategy with GCP dedicated to AI and ML workloads.
   • Lead and supported custom AI development for the business: internal MCP services, chat and RAG applications, API integration and ingestion pipelines, and cloud-native deployments.

2. Founder & CISO

   2018 - Present
   Bluetec · Managed security and technology services firm

   Founded and run an independent managed IT and cyber security practice with full P&L ownership, from business development through delivery.

   • Scaled the practice to 13 concurrent recurring MSP and MSSP contracts boasting six-figure ARR, plus selective project-based engagements.
   • Lead security engineering and architecture work across incident response, vulnerability assessment, and penetration testing for small and mid-market clients.
   • Designed Microsoft 365 and Google Workspace tenancies and secure configurations across multiple client environments providing secure Transport Rules, Message Encryption, Identity Management, Conditional Access, MFA enforcement, and Zero-Trust architecture.
   • Conducted multiple high-level pentests, risk assessments, and incident response engagements for clients in healthcare, finance, and technology sectors, including tabletop exercises and red team engagements providing detailed reporting and metrics for executive stakeholders.
   • Designed and implemented high-risk cloud migrations and tenancy mergers resulting in full network transitions while incurring zero downtime or security incidents.

3. Senior Network Security Engineer

   2018 - 2019
   Lumber Liquidators · Publicly traded national retailer, 400+ stores

   Owned enterprise security controls and the vulnerability management program across a national retail footprint and its ecommerce platform.

   • Designed and operated EDR, vulnerability management, and DLP controls across the enterprise.
   • Led the vulnerability management program: scan coverage, prioritization frameworks, and cross-team remediation tracking.
   • Performed enterprise security assessments, reported critical infrastructure and process gaps to leadership, and built remediation roadmaps.
   • Ran daily security operations: event monitoring, alert triage, and incident response.

4. Network Engineer

   2015 - 2018
   Independent Container Line · International shipping enterprise, US and European offices

   Owned global IT infrastructure across multiple US and European offices, from the WAN edge to end-user computing.

   • Designed and operated a multi-site Cisco environment: ASA firewalls with SourceFire, Catalyst and Nexus switching, and site-to-site VPNs across US and European locations.
   • Migrated the company website and disaster recovery infrastructure to Microsoft Azure, including DR for domain services.
   • Led a global Windows 7 to Windows 10 migration via SCCM and maintained a Citrix XenApp environment for distributed users.

5. Migration Project Manager / Deskside Support

   2014 - 2015
   VCU Health Systems · Level 1 trauma university hospital

   Promoted from technician to project manager within six months and led a large-scale endpoint migration ahead of schedule.

   • Led a six-technician team through the migration of 10,000+ workstations across 30+ departments and statewide locations, closing six months ahead of forecast.
   • Following project closure, moved into deskside engineering: tier 2 and 3 incident response, Active Directory and SCCM administration, and break-fix engineering.

6. IT Manager

   2010 - 2014
   Fuller Dentistry · Small-business healthcare practice

   Promoted from office assistant to IT manager and built the practice technology stack from the ground up.

   • Managed and maintained the full technology stack, including a HIPAA-compliant network and security controls.
   • Implemented and administered an on-premises Active Directory tenancy: domain controllers,identity management, group policy enforcement, and secure file shares.
   • Sourced, implemented, and maintained the practice management software and EHR system, including secure configurations and integrations.