At Oakwise, our mission is to help business leaders in the cybersecurity and technology sectors transform their companies by aligning leadership, improving operational efficiencies, and navigating complex M&A processes. We provide tailored coaching and consulting services that leverage proven methodologies and real-world entrepreneurial experience. Through empathy, integrity, and transparency, we guide our clients toward achieving personal fulfillment, professional growth, and operational success.

Rise Up Ninja Foundation is a non-profit organization looking to help empower underprivileged youth in the Twin Cities through ninja warrior training. We provide needs-based grants for membership and training fees, educational outreach, and community building to promote physical activity, mental and physical strength. Investing in youth's health to help them achieve their full potential.

At the Minnesota Institute of Technology, our mission is to equip the next generation of cybersecurity leaders with the guidance, skills, and confidence they need to thrive in an evolving digital landscape. As an Advisory Board Member, I work closely with emerging InfoSec professionals, offering tailored mentorship, strategic insights, and valuable network connections to help them navigate complex career paths. In addition, I collaborate with Minntech leadership to refine educational programs, ensuring our curriculum remains aligned with real-world industry demands. Through consistent engagement, practical coaching, and an emphasis on actionable knowledge, we empower students to become innovative, resilient cybersecurity practitioners capable of transforming and securing the future of technology.

Successful Strategic Acquisition to Cyber Advisors (2023)Founded a security consulting company to high-end information security consulting services, specializing in penetration testing, to aid financial institutions and large education organizations that could not find affordable, ways to identify security risks within their organizations. This resulted in a low-expense, high-revenue consulting firm that provided full-service security consulting, helping businesses understand the needs of their business and empowering those organizations to make effective, right-sized decisions for their companies.Published Application Security Research discovering issues in large applications and platforms.Performed high-end penetration tests and assessments for numerous industries.o Network Penetration Tests and Assessmentso Web Application Penetration Testing and Assessmentso Mobile Application Penetration Testing and Assessmentso SAP Penetration Testing and Assessments

Built a world-class in-house penetration testing team and standardized process based on NIST 800-115 and the Penetration Testing Execution Standard (PTES), in order to decrease excessive capital expenditures. Within 12 months, the capital expenses were reduced, while the quality and consistency of output increased, helping to secure the Target brand and maintain Target’s compliance with PCI DSS regulations. Developed and led Target’s global Security Testing Services team, nearly 30 individuals, providing full security integration throughout the software development lifecycle.Decreased reliance on Third Party penetration testing contractors by 100%.Provided security processes and tooling that enabled Agile, DevOps and CI/CD development to identify security risks earlier in the development lifecycle.Successfully managed establishment and maturation of SOX controls.Collaborated with Red and Blue teams to facilitate attack and defense planning and information sharing within cyber security organization.Influenced the strategy, design, and implementation of a corporate information security program for Target.Executed and managed audits and assessments of IT and Security controls.Advised executive leadership on risks of a IT projects impacting the business.

Managed internal and external resources, delivering Information Security Risk Audit and Assessment activities for Best Buy, to test and evaluate controls, analyze risk, propose remediation options to protect Best Buy’s customer and employee data, along with securing Best Buy’s intellectual property.Delivered risk-based metrics and reporting program to provide key data to CIO, CISO and line of business VPs, to identify, quantify and prioritize information technology risks. This enabled key leadership to effectively manage risks throughout our IT portfolio during a time of increased threat to retail organizations.Led and directed security architecture, application and infrastructure security, and vulnerability management teams, providing high-end security services to multiple business verticals.Increased team throughput by 27% and reduced required project lead-time by 50%.Translated complex information security issues to various key stakeholders. Monitored, tracked and reported on application security metrics to executive leadership.Executed and managed audits and assessments of IT and Security controls.Modernized the strategy, design, and implementation of a corporate application security program for Best Buy.Developed project schedules and resource plans.Defined application security strategy for executive leadershipManaged and developed Information Security Policies, Standards and Guidelines.

Performed application security assessment duties for a Fortune Top 50 company.Researched 0-day and other previously unknown vulnerabilities in large scale enterprise applications.Assessed internally and externally developed web applications for compliance with PCI DSS and OWASP standards and guidelines.Presented findings to both technical and executive level employees.Managed threat vulnerability program to meet the Payment Card Industry Data Security Standards [PCI DSS].

Contracted to Symantec (see above).

Reviewed the Council's security landscape and managed changes to align the Council's security levels with industry best practices.Communicated security projects, threats, risks, vulnerabilities and opportunities for improvement to C-level executives.Created and instituted information security policies and procedures.Implemented patch management technical and administrative procedures.Managed project to comply with the Payment Card Industry Data Security Standards [PCI DSS]

Assessed network security with various automated tools, including Nessus, Nmap, Metasploit and manual scanning methods for clients.Operated as Project Manager for security assessments.Executed internal vulnerability assessments and external penetration tests for various clients utilizing zero-day and older vulnerabilities, escalating privileges on their local networks.Analyzed, categorized and reported security findings to client.Developed PCI DSS work template for use at client locations.

Defined and determined business rules, technical specifications and access control concerns for the Educational Project Information Center (EPIC) development project, where confidential project information will be maintained and accessed by several DRC departments and systems with varying security levels.Contributed to the integration of the Educational Project Information Center (EPIC) with DRC's proprietary Security Center.Applied user feedback and usability/functionality requests to the Educational Project Information Center (EPIC).Set up materials Database for testing materials to be shipped to out of state schools, including materials to be returned and secured materials.Operated as Project Manager implementing Scope Definition, Problem Analysis, Requirements Analysis, and Logical Design for Merit Increase Project.

Used SAP NetWeaver Development Studio v.2.0.12 (based off Eclipse v.2.1.2) to develop a Java Servlet/JSP program that gives performance metrics with a client database and JDBC driver.Tested current and future versions of the following software/systems for errors and functionality:-Visual Composer -Business Intelligence-UD Connect-NetWeaver Development Studio

Provided on-site and remote trouble shooting for students and faculty using Windows 2000 and XP Professional systems, as well as Apple - Mac OS X (v.10.x), primarily related to virus and spy-ware activity.Assisted in maintenance of network storage, printer and email servers.Performed security assessments for the secure wireless networking protocols pilot project for the University.Installed software and upgrades for new and existing systems