About Me

Senior Cybersecurity Professional and Military Veteran with over a decade of experience leading and implementing cybersecurity programs across the DOD and Federal Government agencies. Broad technical and programmatic expertise, with excellent interpersonal skills to handle internal and external stakeholders. Active Top Secret/SCI Security Clearance.

What I Do

Cybersecurity Management

Leading ATO/RMF processes, vulnerability management programs, and incident response across classified and unclassified environments.

Cloud Security

Securing AWS GovCloud workloads with FedRAMP compliance frameworks, Zero Trust architecture, and cloud-native security controls.

Compliance & Risk

Applying NIST 800-53, FISMA, CMMC, ISO 27001, and PCI-DSS frameworks to assess, document, and reduce organizational risk.

DevSecOps

Integrating SAST, DAST, and automated security tooling into CI/CD pipelines to embed security throughout the software development lifecycle.

Core Competencies

Frameworks: NIST 800-53, NIST 800-171, RMF, JSIG, FedRAMP, FISMA, CMMC, ISO 27001, PCI-DSS, COBIT, NIST CSF, SOC Type I/II/III

Tools: eMASS, CSAM, ACAS, Nessus, SCAP, STIG Viewer, RSA Archer, ServiceNow, GitLab, Docker, Splunk, AWS, Terraform, SAST, DAST, OWASP ZAP