Jun 2021 – Jun 2022 · 1 yr · Fairfax, Virginia, United States

• Research and early product development of AWS, GCP, and Azure based cloud and container block store and disk scanning capabilities.

Dec 2019 – Jun 2021 · 1 yr 6 mos · Fairfax, Virginia, United States

• Provided technical and strategic guidance to cloud-native organizations by efficiently assessing the security posture of their AWS, GCP, and Kubernetes environments via point-in-time assessments and continuous monitoring engagements. Performed security research in the Kubernetes space (CVE-2020-15157) and gave several Hacking Kubernetes talks at multiple KubeCon conferences.

Jan 2018 – Jan 2020 · 2 yrs · Fairfax, VA

• Assisted organizations in developing and securing their Kubernetes deployments in public cloud and on bare metal. Supported GKE and Google Cloud customers as a contract-based consultant via the Google Cloud Professional Services Organization (PSO).

Aug 2015 – Oct 2017 · 2 yrs 2 mos · Herndon, VA

• Led the technical operations team focused on delivering cutting-edge, realistic, and immersive training solutions via capture-the-flag/cyber range CTF exercises to improve security awareness for large organizations and "hands-on" experience to security personnel charged with defending their data. Over 5K ethical hackers participated in Symantec Cyberwar Games exercises.
• Architected and built a fully automated Kubernetes cluster deployment tool on AWS to support the Docker based targets hosted by the https://symantec.cyberskills.io platform. Also built and managed the federated logging and performance metrics system used to monitor cluster and container health (ELK and Prometheus/Grafana).

Aug 2014 – Aug 2015 · 1 yr

• Led the technical operations team focused on delivering cutting-edge, realistic, and immersive training solutions via CTFs to improve security awareness for large organizations and "hands-on" experience to security personnel charged with defending their data.

Apr 2012 – Jul 2014 · 2 yrs 3 mos

• Led the team that designed, built, and delivered capture-the-flag (CTF) style ethical hacking/cyber wargames challenges for security professionals looking to keep their skills sharp. These challenge scenarios have been played by over 5000 security professionals around the world with event sizes from 20-1000 participants lasting 2 hours to 30 days (24/7).

Jul 2008 – Apr 2012 · 3 yrs 9 mos

• Responsible for technical pre-sales support for the design, migration/implementation, and operation of security gateway solutions for Federal Civilian Agencies.

Sep 2006 – Jul 2008 · 1 yr 10 mos

• Managed numerous security assessments and audits from kick-off to final delivery for financial, power/energy, and gas pipeline companies. Led small teams in electronic and physical penetration testing, vulnerability assessments, and solutions design and review.

Oct 2003 – Oct 2006 · 3 yrs

• Provided Tier3 support to all SOC Engineering teams worldwide in support of Fortune 100/500 customers.
• Designed, developed, and implemented the improved fault and performance monitoring system internally recognized for reducing 5% of all daily engineering workload.

May 2002 – Sep 2003 · 1 yr 4 mos

• Responsible for the firewalls and VPNs that provided secure transmission of electronic fingerprints and personnel photos to support Federal hiring processes at remote sites across the US.