Driving Incident Response with Precision: I bring calm, clarity, and execution during chaotic moments.

Being a Trusted Voice in the Room: Clients, teammates, and leaders trust me to guide decisions with honesty, experience, and technical depth. I translate complex security problems into clear paths forward.

Solving Complex Problems with Creative Thinking: When tools don’t quite fit or the path forward isn’t obvious. I find practical, efficient solutions to technical challenges by thinking differently, adapting quickly, and leveraging experience across systems, infrastructure, and security operations.

DFIR: Velociraptor

Threat Intelligence: OpenCTI, Anomaly

SIEM/SOAR: Splunk, Google, Microsoft Defender, Crowdstrike, S1

SOC Platforms: Hunters, Splunk

Hunting: Splunk, Velociraptor

Building & Maturing DFIR/Hunting Operations

Director of DFIR / Incident Response Lead: Built scalable IR programs that actually work under pressure. Delivered on engagements ranging from ransomware to BEC.

Cloud Security Architect: Designed and deployed zero trust access models using Okta, Azure AD, and Cloudflare Zero Trust — no VPNs, no public IPs, no mercy.

Forensics Investigator: Extracted truths from volatile memory, disk images, and deceptive logs. Made Velociraptor do backflips.

Consultant: Helped clients harden infra, rethink access control, and turn messy environments into secure, auditable systems.

Education

Southern New Hampshire University

Marion Technical College

Himothy University

Certifications

GSEC, GCFA

GCIH, GCFR