Jan 2024 – Jan 2025 · 1 yr

• Served as a hands-on technical leader, advancing the maturity of the vulnerability management program through cross-functional collaboration (Engineering, Product, Security) and improving user experience.
• Built observability infrastructure and dashboards to monitor program operations, increasing transparency and accountability across teams.
• Documented end-to-end policies, protocols, standards, and investigation baselines, ensuring alignment with the principle of “say what we do, do what we say.”
• Performed NLP model evaluation for detecting and anonymizing named entities in AI workflows
• Developed AI tools for vulnerability assessment, using prompt engineering, SaaS and self-hosted models, deployed with Python and Helm charts.
• Founded and led a grassroots AI Friday user group, engaging diverse stakeholders to surface friction points, explore AI use-cases, and guide adoption of secure, validated solutions.

Jan 2022 – Jan 2024 · 2 yrs

• Transitioned from red team covert testing to high-coverage grey/white box assessments, maximizing evidence collection, analysis, and visibility.
• Reported more qualified vulnerabilities than any engineer in company history. 𝘙𝘦𝘤𝘰𝘨𝘯𝘪𝘻𝘦𝘥 𝘣𝘺 𝘵𝘩𝘦 𝘴𝘦𝘤𝘶𝘳𝘪𝘵𝘺 𝘥𝘦𝘱𝘢𝘳𝘵𝘮𝘦𝘯𝘵 𝘸𝘪𝘵𝘩 𝘵𝘩𝘦 “𝘔𝘰𝘴𝘵 𝘗𝘳𝘰𝘥𝘶𝘤𝘵𝘪𝘷𝘦𝘭𝘺 𝘗𝘢𝘳𝘢𝘯𝘰𝘪𝘥” 𝘱𝘦𝘦𝘳 𝘢𝘸𝘢𝘳𝘥.
• Reduced recurring and systemic vulnerabilities by delivering hands-on training, publishing reference design patterns, mentorship, fostering internal security communities, and developing automation tools to accelerate detection and response.
• Contributed to the development of a security-first AI/ML infrastructure PoC, mapping functional control requirements to OWASP AI/ML/LLM Top 10 threat model, identifying gaps, recommending mitigations, and validating fixes.

Jan 2019 – Jan 2022 · 3 yrs

• Demonstrated the practical impact of security gaps across applications, code, infrastructure, and processes through multi-modal threat emulation, red team campaigns, and penetration testing.
• Assessed a broad range of technologies—including web, mobile, cloud, IAM, microservices, data centers, CI/CD, containers, orchestration, IaC, physical security, and client devices/EDR—chaining vulnerabilities into cohesive kill chains to simulate sensitive data exfiltration, account takeover, and denial of service.
• Produced privacy risk dossiers for over 100 VIPs, applying OSINT techniques to assess information exposure and providing tailored mitigation guidance to protect employees and their families.
• Provided specialty advisory services, including security reviews for high-impact financial integrations and classified security operations.

Mar 2017 – Aug 2019 · 2 yrs 5 mos

• Led a security consulting practice, delivering comprehensive security assessment and advisory services, building trusted relationships with clients across regulated industries and critical infrastructure.
• Contributed to successful conversion of prospects into contracts through pre-sales engineering, developing tailored proof of concept (PoC) demonstrations and solution designs
• Building trusted client relationships and earning recurring contracts through technical excellence and customer focus.
• Supported government (DoD suppliers, election infrastructure), international manufacturing, retail (PCI), and healthcare (HIPAA) sectors with penetration testing, security architecture and engineering services

Jan 2017 – Jan 2017 · 0 mo

• Founded a boutique consulting firm specializing in data center and network migration, consolidation, and life-cycle refresh projects.
• Identified customer requirements, accurately estimated level of effort, and surfaced critical design decisions during pre-sales engagements, ensuring solutions aligned with business goals and technical constraints.
• Documented and planned phased implementations, detailing prerequisites, operational impacts, and validation criteria to ensure seamless delivery with minimal disruption.
• Streamlined and modernized networks and data centers, eliminating redundant systems and enhancing scalability, resilience, and operational clarity.

Jan 2016 – Jan 2016 · 0 mo

• Assessed and rebalanced a university’s network and security team by addressing workforce mismatches, sourcing resources from interns to consultants, streamlining technology, and engaging staff in hands-on work, while holding negligent team members accountable.

Jan 2015 – Jan 2015 · 0 mo

• Led the IT department at a charter school management company during a period of rapid change, restructuring teams around critical technologies and driving staff motivation through upskilling, promotions, and gamified backlog management. Managed department budgets amidst funding uncertainty, ensuring lifecycle refresh and infrastructure projects remained on track

Jan 2013 – Jan 2015 · 2 yrs

• Designed and managed enterprise network and security architecture for a national real estate equity investment trust. Introduced cloud-controlled network technology to accelerate deployments, reduce costs, and enhance customer experience, while leading a complete network overhaul within 18 months. Served as information security advisor and blue team defender, reporting directly to the CTO.

Jan 2010 – Jan 2013 · 3 yrs

• Specialized in network and data center infrastructure and security at a regional consulting firm, designing and securing complex multi-vendor networks to align with business and security objectives. Delivered customer-focused IT services, ensuring prompt communication, accurate solutions, and effective resolution of multi-vendor network issues while spearheading security initiatives.
• 𝘙𝘦𝘤𝘦𝘪𝘷𝘦𝘥 𝘢𝘯 𝘌𝘮𝘱𝘭𝘰𝘺𝘦𝘦 𝘰𝘧 𝘋𝘪𝘴𝘵𝘪𝘯𝘤𝘵𝘪𝘰𝘯 𝘢𝘸𝘢𝘳𝘥 𝘧𝘰𝘳 𝘦𝘹𝘤𝘦𝘱𝘵𝘪𝘰𝘯𝘢𝘭 𝘱𝘳𝘰𝘣𝘭𝘦𝘮-𝘴𝘰𝘭𝘷𝘪𝘯𝘨 𝘢𝘯𝘥 𝘴𝘶𝘤𝘤𝘦𝘴𝘴𝘧𝘶𝘭 𝘵𝘦𝘤𝘩𝘯𝘰𝘭𝘰𝘨𝘺 𝘥𝘦𝘱𝘭𝘰𝘺𝘮𝘦𝘯𝘵𝘴.

Jan 2008 – Jan 2010 · 2 yrs

• Designed and executed system tests for global mobile broadband products, validating network and RF performance across diverse platforms (boats, planes, trains). Automated and scripted integration tests to validate functional and operational network requirements, analyzing proprietary protocols, network flows, and high-availability features. Built and configured test beds simulating global VSAT, VNO, and customer networks, while characterizing the performance of new technologies and ensuring compliance with AS9100 standards.

Jan 2004 – Jan 2008 · 4 yrs

• Managed programs and coordinated operations for an NSF-funded research center, collaborating with multiple universities and industry partners.

Jan 2001 – Jan 2003 · 2 yrs

• Researching ground state properties of nano-scale devices (spintronics, single electron transistor) using ab initio methods (density functional theory) via high performance / parallel computing.

Jan 2000 – Jan 2000 · 0 mo

• Applying symbolic computation automation to uncover unique behaviors of systems of equations (with applications in fiber optics)