Resume
Security Engineer
I am a Senior Software Engineer and Security Officer specializing in security architecture, compliance, and threat response, with deep expertise in building resilient systems that protect against emerging threats. As a CISSP-certified professional with GIAC credentials in incident handling and forensics, I bring both technical depth and governance expertise to engineering leadership roles. I architect and implement security solutions that balance rigorous compliance requirements with rapid delivery, leveraging AI-enabled development practices (GitHub Copilot, Claude/ChatGPT) to accelerate design, implementation, and security validation.
Creating successful security solutions requires proactive threat modeling, cross-functional leadership, and the discipline to demand excellence. I drive architectural decisions across security, engineering, and compliance teams, transforming security requirements into scalable technical solutions. From endpoint visibility and malware analysis platforms to automated threat response systems, I deliver results that reduce risk while enabling business agility.
Key contributor to Cisco Orbital Remote Scripts for scalable endpoint remediation and threat response. Security Officer for Cisco Secure Malware Analytics, ensuring platform compliance and security architecture integrity.
My heart is in the work.
Certifications
Skills
Security & Compliance
CISSP
Certified Information Systems Security Professional
Risk Management
Enterprise risk assessment and mitigation
Governance
Security governance and policy development
Incident Response
GCIH certified incident handling
Digital Forensics
GCFA certified forensic analysis
Compliance Auditing
NIST/ISO framework alignment
Backend & Systems
Golang
Backend services, security tooling
Java
Enterprise applications, J2EE, Vaadin
Microservices
Distributed system architecture
Databases
CockroachDB, PostgreSQL, MariaDB
NATS/JetStream
Cloud-native messaging
OsQuery
Endpoint visibility and telemetry
Cloud & Infrastructure
Linux Administration
Debian/Ubuntu server management since 1997
Containers
Docker, Proxmox, virtualization
CI/CD
Automated build and deployment pipelines
Ansible
Infrastructure automation and configuration management
Networking
VLANs, firewalls, WAN failover, PoE
Monitoring
Prometheus, Grafana, Uptime Kuma
Tools & Practices
Secure SDLC
Security-integrated development lifecycle
Threat Hunting & Analysis
Proactive detection, malware analysis, sandboxing
AI-Assisted Development
GitHub Copilot, Claude, ChatGPT
Git/GitHub
Version control, code review, CI workflows
API Design
REST APIs, integration architecture
Technical Writing
Hugo, documentation, technical reviews
Professional Experience
Cisco
Security Officer
Cisco Secure Malware Analytics June 2025 – PresentServing as Security Officer for Cisco Secure Malware Analytics (formerly Threat Grid), Cisco's dynamic malware analysis and threat intelligence platform that analyzes files against 1500+ behavioral indicators and correlates findings across millions of samples globally.
- Drove compliance initiatives including risk assessments, security control validation, and alignment with NIST/ISO frameworks.
- Conducted security architecture reviews and threat modeling for handling potentially malicious samples and protecting analysis infrastructure.
- Established secure development practices and security validation processes for platform enhancements.
Senior Software Engineer
Cisco Orbital 2019 – June 2025Key contributor to Orbital Remote Scripts, extending osquery-powered visibility into actionable remediation via Python scripting.
- Led development of Orbital Remote Scripts, core Python-based remediation capabilities powered by osquery.
- Designed script scheduling, linked executions, catalog enhancements, and remote result storage (AWS S3, Azure, Splunk).
- Applied incident response and digital forensics expertise to validate script efficacy in real-world threat scenarios.
- Developed Golang services for resilient, secure backend supporting Orbital's visibility and response platform.
- Enhanced the Golang endpoint security client for remote script support.
IBM
Software Engineer / Advisory Software Engineer
Hardware Management Console 2007 – 2019Contributed extensively over 12 years to IBM's Hardware Management Console (HMC), the dedicated appliance for managing IBM Power Systems.
- Built and maintained Java/J2EE web applications using Servlets and Vaadin.
- Ensured robust, secure code for enterprise-scale hardware control and high-availability operations.
PNC
Software Developer
WebLGY - Veterans Administration Loan Guaranty 2005 – 2007Built the J2EE WebLGY application from inception to deployment for the Veterans Administration Loan Guaranty program.
- Delivered secure Java-based solutions with integrations to financial institutions.
- Implemented controlled access to sensitive mortgage and veteran information in a highly regulated environment.
nFusion
Software Developer
2000 – 2005Joined a tiny marketing startup and contributed to its growth to ~50 employees.
- Led website development including custom e-commerce with SQL backend.
- Managed Linux servers, email systems, and datacenters.
Education
Carnegie Mellon University
Bachelor of Science in Information and Decision Systems
Minor: Computer Science
2000Recent Training
Publications
- Debian GNU/Linux 2.1 Unleashed (Contributing Author) - Sams, 1999