Security leader focused on Security Operations, Incident Response, Threat Intelligence, and cloud security. I build pragmatic detection, response playbooks, and scalable security programs.
Competing in invite-only challenges to sharpen detection engineering and adversary emulation tradecraft.
Applying 15+ years of enterprise segmentation to create zero-trust IoT ecosystems — skills directly transferable to industrial/OT environments.
Prototyping autonomous threat analysis workflows — extending SIEM/SOAR playbooks with private, offline AI agents.
Active in security communities fostering knowledge sharing and professional growth.
Scaled SOC operations from scratch to 50+ alerts/day through custom detection rules and SIEM automation.
Directed incident response for ransomware, credential theft, and DDoS attacks with zero data exfiltration.
Mentored analysts across career stages — guided progression to senior roles and management with a track record of upward mobility.
Drove enterprise IR, SIEM automation, and threat monitoring across Azure and O365, improving detection accuracy 40%, cutting investigation effort 50%, and reducing response time 30–35%.
Led SOC, cloud, and AppSec across endpoints, AWS, and GCP, delivering 35% faster IR, 50% broader detection coverage, 70% posture improvement, 100% ISO 27001/NIST compliance, and 80% cost reduction.
Led Red, Blue, and Green Team ops and AWS-based detections to cut resolution time 25%, identify vulns in 95% of systems, and harden posture via AppSec, AV-evasion testing, and GDPR-compliant audits.
Directed frontline IR and SIEM modernization, cutting response time −40% while strengthening cloud frameworks, proactive detections, and coverage across network and endpoints.
Led network security and IR for Chicago operations, achieving −25% incidents and −20% human-error events via PCI-aligned controls, proactive scanning, and training-driven risk reduction.
Built and secured multi-site ISP networks across 97 locations for ~9,000 users, delivering encrypted Wi-Fi and VPN, PTP/PTMP wireless, and hardened routing to reduce attack surface.
Hands-on training in computer security, network defense, and risk management that meets NSA/DHS standards for National Center of Academic Excellence in Cyber Defense (CAE-CD).
Operating systems, programming, hardware, connectivity, and security — with a focus on networking and communications management for IT infrastructure and telecommunications roles.
Open to senior security leadership roles, advisory engagements, and community collaboration. Based in Chicago, IL.