Experience

From network security engineering to architecture leadership and consulting, I've been engaged in architecture, planning, administration, and support for a wide array of modern information technology platforms and services.

Download Resume (PDF) Download Resume (Markdown)
June 2024 - Present

Coalfire

Site Reliability Engineer / Senior Consultant, Cloud Services

Professional, Scientific, and Technical Services Remote - United States

Global services and solutions company that specializes in cyber advisory, assessment, and security

Key Achievements
  • Stabilized an at-risk FedRAMP client engagement by acting as dedicated technical lead, restoring trust through clear architectural guidance and delivery execution.
  • Implemented agile workflows and delivery tracking for an at-risk client engagement, achieving a significant turnaround in client satisfaction and communication despite an inherited decision to transition away.
  • Designed FedRAMP-ready cloud architectures incorporating zero-trust network access, ITSM-aligned change control, and scalable operational patterns.
  • Led FedRAMP discovery and architecture workshops for new clients, producing readiness roadmaps, risk assessments, and project plans that consistently converted to delivery engagements.
  • Automated complex configuration management asset discovery workflows, reducing inventory collection errors by 98% and eliminating a major source of compliance drift.
  • Diagnosed and resolved systemic AWS discovery and visibility issues impacting continuous monitoring and audit readiness.
  • Standardized engineering and operations documentation across MSS engagements, improving onboarding speed, consistency, and troubleshooting effectiveness.
  • Served as a trusted technical advisor to clients maintaining regulated cloud environments across AWS infrastructure, endpoint protection, and vulnerability management platforms.
August 2023 - June 2024

U.S. Bank

Senior Cloud Audit Specialist, Digital, Technology & Operations Services

Finance and Insurance Horsham, Pennsylvania, United States

The company serves millions of customers locally, nationally and globally through a diversified mix of businesses including consumer banking, business banking, commercial banking, institutional banking, payments and wealth management

Key Achievements
  • Served as technical authority for cloud and infrastructure audits, ensuring audit teams asked the right questions and accurately evaluated complex technical evidence.
  • Led a comprehensive audit of the enterprise cloud migration program, assessing technical design, financial governance, security controls, and operational readiness.
  • Bridged engineering, audit, and risk teams by translating modern cloud architectures into clear control implications and remediation actions.
  • Integrated evolving regulatory expectations and internal risk partner guidance into audit procedures to align reviews with emerging risk trends.
  • Supported non-technical audit teams when technology became a factor, preventing misinterpretation of evidence and improving audit accuracy and credibility.
October 2022 - August 2023

Ansys Government Initiatives (AGI)

Senior Systems Engineer, Infrastructure Services

Professional, Scientific, and Technical Services Exton, Pennsylvania, United States

Ansys Government Initiatives (AGI) is the United States national security subsidiary of Ansys, the global leader in engineering simulation

Key Achievements
  • Re-architected a multi-site VMware platform suffering from years of misconfiguration, delivering significant uptime improvements and eliminating recurring outages through a phased redesign.
  • Implemented governance controls including change management, t-shirt sizing, and tagging strategies that eliminated uncontrolled capacity growth and emergency hardware purchases.
  • Designed and launched a ground-up HPC compute and storage platform supporting hosted client workloads, achieving meaningful performance gains for Ansys Fluent and Mechanical environments.
  • Rebuilt Active Directory and RBAC architecture, correcting long-standing technical debt and aligning identity controls with CMMC requirements.
  • Implemented business-driven backup automation via self-service tagging, improving recoverability while reducing operational overhead.
  • Architected and validated disaster recovery and cyber recovery strategies, including an air-gapped clean-room environment.
  • Embedded CMMC readiness requirements into all infrastructure design and operational practices.
November 2019 - October 2022

The Vanguard Group

Project Manager / Senior Auditor, Global Technology Audit Services

Finance and Insurance Malvern, Pennsylvania, United States

One of the world's leading investment management companies

Key Achievements
  • Served as the department's technical authority on cloud and infrastructure audits during the enterprise AWS migration.
  • Identified compliance gaps in critical infrastructure areas that had gone undetected through prior review cycles.
  • Promoted to Project Manager; owned audit engagements end-to-end, coordinating internal teams and external partners.
  • Contributed to formal performance reviews for 3-5 auditors and 1-3 contract staff per cycle, delivering feedback that influenced compensation and promotion decisions.
  • Built automation and reporting tools using scripting, Excel, SharePoint, PowerBI, and PowerApps to streamline testing and documentation.
  • Co-developed and delivered a Cloud Infrastructure Audit Training program, increasing department efficiency and reducing reliance on senior technical auditors.
July 2018 - November 2019

Flexential

Engineer, Professional Services

Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services Remote - United States

Specializing in hybrid IT solutions, integrated colocation, cloud, connectivity, data protection, managed and professional services.

Key Achievements
  • Served as senior engineer for complex migrations, production recoveries, and compliance-driven infrastructure engagements.
  • Led high-risk migrations requiring precise orchestration to prevent data loss and minimize downtime.
  • Diagnosed catastrophic Active Directory corruption missed in initial troubleshooting. Designed and executed an unconventional recovery approach, rebuilding the forest from raw extracted data over a 3-4 day outage window, restoring operations for hundreds of users and preserving the client relationship.
  • Owned white-glove backup and disaster recovery implementation and testing across customer environments.
  • Managed patching and remediation for the full customer base, improving audit outcomes and reducing incidents.
  • Contributed to ITIL/ITSM adoption, standardizing service delivery and documentation.
  • Acted as Northeast Professional Services liaison to Sales, supporting pre-sales solutioning and drafting legally binding Statements of Work.
September 2016 - July 2018

MARS Technology, Inc.

CIO (Founding Team)

Professional, Scientific, and Technical Services Willow Grove, Pennsylvania, United States

Specialized in IT managed solutions and security

Key Achievements
  • Joined as one of the first two employees, helping build the company across sales, architecture, delivery, and MSP operations.
  • Built and led the technical operation from company founding, scaling to 10 clients, 100+ managed locations, and 2,500+ endpoints across four datacenters with a four-person team.
  • Architected the initial datacenter footprint and subsequent expansions, overseeing vendor selection and platform deployment.
  • Evaluated and integrated tooling to support endpoint, server, and mobile device management.
  • Led client onboarding and delivery for SMB and mid-market customers, including regulated PCI environments.
January 2015 - September 2016

Signature Systems, Inc.

Network Security Engineer / Product Specialist

Professional, Scientific, and Technical Services Warminster, Pennsylvania, United States

Software developer and managed solutions provider specializing in point of sale, cybersecurity, and IT services

Key Achievements
  • Promoted to Network Security Engineer after 5+ months of functioning in the role while formally part of the support organization.
  • Supported nationwide rollout of a PCI-in-a-Box POS and back-office solution serving 3,500+ customers.
  • Co-led deployment efforts, owning endpoint configuration, UTM firewall integration, and SIEM tuning.
  • Built automation tooling that reduced deployment times by up to 75%.
  • Migrated the MSSP SIEM platform from AlienVault USM to LogRhythm.
  • Partnered with auditors and pentesters to harden platforms beyond PCI-DSS requirements.
  • Built a custom Sophos UTM management platform managing 2,500+ firewalls, reducing administrative effort by over 90%.