Feb 2026 – Present · 4 mos · Remote · Remote

Dec 2024 – Nov 2025 · 11 mos · Maryland, United States · Hybrid

• Senior technical advisor overseeing technology implementations, products, and services that align with the goals of the cooperative in the information quality space. Check out our newly fielded AI powered POC Platform here - https://dashboard.timcoop.org/

Jan 2022 – Present · 4 yrs 5 mos · United States · On-site

• NeatLabs™ is the AI-powered research and development division of Security 360, LLC — a Maryland-based, Veteran-Owned cybersecurity firm serving the federal government since 2012.
• We build intelligent security tools grounded in real federal operational experience not theory. Our founder served as RMF Lead on the 2020 Decennial Census Technical Integrator program (50+ ATOs, 52-system multi-cloud environment) and has led information assurance operations on IRS critical infrastructure for 16+ years.
• The result is a platform portfolio of 228+ tools spanning AI-powered cybersecurity, RMF automation, DevSecOps security, OSINT, continuous monitoring, compliance automation, and federal intelligence — designed for the environments we've actually worked in.
• As federal agencies enter the next wave of large-scale IT modernization including the 2030 Decennial Census, continued CDM expansion, and CMMC rollout across the Defense Industrial Base — NeatLabs™ brings the rare combination of practitioner-built AI tooling and deep federal program delivery experience.
• Mission: Bring context to chaos.
• VOSB (pending) | NAICS 541511, 541512, 541519 | github.com/neatlabs-ai

Apr 2021 – Jun 2023 · 2 yrs 2 mos

•  Currently supporting the USAID Continuous Diagnostic & Mitigation (CDM) Project Office as Project Manager.
•  Primary duties include project management, technical oversight, and analytic SME for the USAID CDM project. • Designated lead technical intermediary between DHS/CISA system integrator for USAID and USAID stakeholders. • Coordinates information sharing sessions, integrated project teams (IPT’s), requests for information (RFI’s), and associated information needs between the system integrator and USAID counterparts. • Evaluates and analyzes recommended solutions, approaches, integration efforts, and operations & maintenance objectives of DHS/CISA proposed solutions for USAID and provides USAID CDM direct hire lead analytic recommendations. • Briefs senior executive staff and stakeholders on continuous operational status of the USAID CDM program. • Performs scheduling analysis, risk mitigation approach, federal mandates and OMB memorandum reviews, vendor product analysis, and other associated compliance and security objectives integration aligned to the USAID CDM program.

May 2012 – Present · 14 yrs 1 mo

• Providing IT Security consulting, engineering, and staffing services and solutions focused on government regulatory compliance and FISMA standards/requirements http://www.security360llc.com
• HIGHLIGHT: 2020 Decennial Census — Technical Integrator Program (Sub to Valiant Solutions → T-Rex Corporation, Prime TI)
• U.S. Census Bureau | 2017–2021
• Served as Singular Security SME Representative to the Engineering Working Group and Change Management proces for the 2020 Census Technical Integrator program
• Led RMF team facilitating 50+ system ATOs in 8 months
• across 52-system hybrid multi-cloud (AWS FedRAMP) environment
• Delivered Security Architecture analysis, DevSecOps support,
• RMF/NIST 800-53 compliance, and Change Management services
• Supported the first-ever online U.S. Census — a program
• serving 300M+ respondents and 400,000 mobile field workers
• SUB to Leidos - Currently Supporting TIPSS-4 Information Assurance efforts with the Internal Revenue Service (IRS) Paper Remittance Processing Program (PRPS II). Sole Information Assurance technical lead & engineer for the program.
• Sub to Northramp, LLC providing project mgmt. and analytic CIO PMO support to USAID for their DHS/CDM implementation phases.
• Previous support as primary Security SME in RMF/CONMON/and Security Engineering on Decennial Census with the Technical Integrator (TI) contract (2017-2021). Singular representative for TI Security to the Engineering Working Group and Change Management approval and review process.
• Open to C2C consulting/support, independent security risk assessments, security architecture analysis and hardening, FISMA & Regulatory compliance, SANS 20 Critical Controls Gap Analysis, proposal support, security training and teaching around the DELMARVA area. Looking to engage on TIPSS-4 CyberSecurity activities and opportunities focused on compliance, risk, architecture and support.

Mar 2018 – Present · 8 yrs 3 mos · Lanham, Maryland, United States · Remote

• Primary Information Assurance & Privacy Support Lead for Leidos support to the Internal Revenue Service (IRS) Paper Remittance Processing Program (PRPS III). Active MBI.
• Key responsibilities include:
• Security Documentation & Compliance:
• Develop and maintain Security Assessment & Authorization (SA&A) documents, including SSP, SSAA, POA&M, ITCP, and others, ensuring compliance with Department of Treasury security policies and standards.
• Vulnerability Management:
• Identify, remediate, and mitigate security vulnerabilities in program applications while aligning with federal security objectives.
• Security Engineering & Implementation:
• Deliver end-to-end security solutions, from system design to secure operations and maintenance. Validate and implement robust security frameworks across hardware, software, data, and processes.
• Security and Privacy Engineering Direction & Analysis:
• Provide strategic guidance and technical analysis for security and privacy engineering efforts, ensuring alignment with evolving program requirements and industry best practices.
• Certification & Accreditation:
• Oversee system certification planning, testing, and accreditation activities, ensuring secure, compliant systems across the program lifecycle.
• Collaboration & Issue Resolution:
• Coordinate with government stakeholders to resolve security challenges and provide expert guidance on security compliance and risk management.
• Privacy Leadership:
• Serve as Program Privacy Lead, addressing privacy requirements and ensuring adherence to applicable standards and regulations.
• Research & Advisory:
• Conduct research and produce white papers on Information Assurance and security topics to support program objectives and enhance security posture.

Oct 2015 – Mar 2016 · 5 mos · Bethesda, Maryland

• Supports via collaboration, analysis, and technical writing to the NIST Cloud Security Working Group.

Jan 2013 – Present · 13 yrs 5 mos · Columbus, Ohio Area

• Provides Cyber Security management and technical leadership to Stealth Entry, LLC GRC engagements.

Jun 2008 – Apr 2012 · 3 yrs 10 mos

• Primary Information Assurance Support Lead for the Integrated Submission and Remittance Processing Program (ISRP) for the Internal Revenue Service.
• Information Assurance lead for a SW development program, responsible for the following activities: (1) Produces and maintains Security Assessment & Authorization (SA&A) documents for program applications; (2) Discover and remediates security vulnerabilities in said applications; (3) Creates and maintains other associated security documents, SSP, SSAA, POA&M, ITCP and other documents as needed; (4) Coordinates and resolves security issues with Government counterparts; (5) Ensures compliance of equipment and applications with Department of Treasury security policies, requirements and objectives; (6) Provides security engineering designs and implementation in all aspects of Information Assurance and Information Security (InfoSec) Engineering. Assesses and mitigates system security threats/risks throughout the program life cycle; validates system security requirements definition and analysis; establishes system security designs; implements security designs in hardware, software, data, and procedures; verifies security requirements; performs system certification and accreditation planning and testing and liaison activities, and supports secure systems operations and maintenance; (7) Provides security certification test and evaluation of assets, vulnerability management and response, security assessments, customer support and provides guidance on security issues; (8) Conducts Information Assurance research, develops security and Information Assurance position/white papers in support of customers' requirements. Works across all Engineering disciplines, interfaces with Quality Assurance, and Program Management. Program Privacy lead.

Nov 2007 – Jun 2008 · 7 mos

• Provides expert technical advice and guidance to management and other technical specialists on critical IT security issues.
• Responsible for conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs and conduct systems security evaluations, audits, and reviews
• Prepares and delivers education and awareness briefings to ensure that systems, network, and data users are aware of and adhere to systems security policies and procedures.
• Implements security requirements through COTS configuration including Windows Group Policy Objects.
• Performs system, OS, and application hardening utilizing industry best practices, DISA STIGS, CIS benchmarks, and NIST standards.

Mar 2007 – Nov 2007 · 8 mos

• Provided Information Security services to Maryland Department of Transportation and State Highway Administration (MDoT, SHA, MAA, MVA).
• Services included the monitoring and configuration of firewalls, IDS appliances, and proxy servers.
• Focus of position was to perform vulnerability assessments and penetration testing.

Nov 2004 – Feb 2007 · 2 yrs 3 mos

• Responsible for user accounts, network connectivity, setup and troubleshooting, backup and file recovery, anti-virus administration, and computer security.
• Lead Active Directory and Group Policy Administrator for corporate network.
• Aided in devising security architecture to include corporate Anti-X solutions and Anti-Virus Solutions. Recommended, installed, and configured assets in support of security architecture such as Barracuda Spam Firewall and Symantec Corporate Anti-Virus.
• Performed and directed baseline security measures pre and post deployment of corporate servers and systems. Further increased security measures by performing system hardening and aligning with standards such as the benchmarks from the Center for Internet Security (CIS) and the DISA STIGS.
• Acted as company inventory manager for all equipment and assets.
• Devised and implemented an interactive asset tracking system.
• Performed numerous small computer support functions.
• Installed, updated, and troubleshot multiple computer systems at company headquarters.
• Provided local help desk support to administrative staff.
• Tracked and administered local area network components.
• Conducted research and evaluation on new software, devices, and systems to be implemented at company headquarters.
• Tested and evaluated security products, enterprise communication systems, and administrative programs in a virtualized environment utilizing VMWARE ESX Server, VMWARE Player, and VMWARE ACE.
• Designed administrative databases to facilitate staff communication and information retrieval.
• Acted as corporate web site designer and maintenance technician as well as manager for corporate cell phone and pager process.

Mar 2003 – Nov 2004 · 1 yr 8 mos

• Contracted to build an interactive data dictionary system.
• Created interactive web-based program to view, search, and administer a doctrine data dictionary.
• Programmed using Perl and a Sybase database.
• Implemented these capabilities on Sun and Windows systems.
• Designed the scripts to be portable to various architectures.

Jun 2000 – Mar 2003 · 2 yrs 9 mos

• Performed UNIX and Windows NT system operations and computer security for relational database machines.
• Performed first tier troubleshooting of encountered system problems.
• Conducted scheduled processes to perform daily and weekly updates of security data.

Feb 2000 – Feb 2003 · 3 yrs

• Key member of a group creating a metrics infrastructure.
• Created automated reporting to the web using Excel, Adobe Acrobat & Perl.
• Created a web application to query the metrics database with access controls.
• Implemented using Perl and a Sybase database on Sun and Windows NT computers.

Sep 1997 – Feb 2000 · 2 yrs 5 mos

• 694th OSS
• Organization Webmaster responsible for the direction, content creation and maintenance of over 200 Intranet HTML pages
• Created and integrated graphical content; implemented CGI and Java scripting.
• Provided end-user Intranet training.
• Acted as an IRIX system administrator for four Silicon Graphics systems.
• Performed NFS configurations, file permissions, password management, system backups, diagnostic checks and general preventive maintenance.

Jan 1995 – Sep 1997 · 2 yrs 8 mos

• 324th Intel Sq
• Managed computer security programs integrating policies and procedures reducing computer-related incidents on Sun servers and workstations.
• Implemented in depth software accountability procedures, information system protection techniques and provided organizational computer security training.

Dec 1993 – Jan 1995 · 1 yr 1 mo

• Attended training courses to enhance knowledge for working with intelligence partners.

Oct 1989 – Nov 1993 · 4 yrs 1 mo

• 695th Intel Sq
• Performed work as a HF analyst for mission collection acquisition.
• This work entailed setting up new collection requirements and tasking, and following tasking analysis procedures.
• Conducted term and near real time analysis.

Sep 1988 – Feb 2003 · 14 yrs 5 mos

• Served 14+ years as a U.S. Air Force Signals Intelligence (SIGINT) Analyst across multiple operational intelligence units — 695th Intelligence Squadron, 324th Intelligence Squadron, and 694th Operations Support Squadron.
• Core disciplines: HF signals collection, target development, collection tasking and requirements management, near-real-time analysis, and finished intelligence reporting. Operated in time-sensitive collection environments requiring rapid analytical judgment and disciplined tradecraft.
• Additional roles within USAF tenure:
• Security/Assistant ISSO (324th Intel Sq): Managed computer security programs on Sun servers and workstations, implemented information system protection techniques, delivered organizational security training
• Webmaster & Intranet Administrator (694th OSS): Directed content and architecture for 200+ intranet pages; IRIX system administrator for Silicon Graphics systems
• Programmer: Built metrics infrastructure and web-based query applications using Perl/Sybase on Sun and Windows NT platforms
• This operational intelligence foundation collection, analysis, reporting, tradecraft is the lens through which I approach every threat assessment, OSINT platform, and intelligence product I build today. You don't stop being an intelligence analyst. You just get better tools.

Jan 1998 – Jan 2001 · 3 yrs

• Monitored networks and servers to ensure operational stability and health; processed batch scripts to synchronize processing, ensured security principals continuously applied to all systems.