• Designed and implemented a highly secure and scalable AWS environment complete with segregated data restrictions and centralized management through AWS Organizations and Control Tower. • Designed and implemented an AWS Greengrass and AWS IoT Core solution for portable water testing devices, complete with Over-the-Air (OTA) updates, continuous integration and delivery (CI/CD) component management, and secure cloud storage of digitally signed records. • Implemented a single table DynamoDb strategy for customer data and searchable device methods, ensuring seamless data management and retrieval. This approach enables our client to quickly and easily access the information they need to provide top-notch service to their customers.• Architected comprehensive Cloud Security Strategy for digital cloud native biotechnology distribution network enterprise leveraging Ionic/React/AWS Amplify web tier, Cognito identity and access management, AWS AppSync GraphQL endpoint, AWS Step Functions workflow, AWS Lambda compute, Amazon DynamoDB, Amazon Neptune, and Amazon S3 processing and storage, AWS SES and Amazon Pinpoint for r personalized communication and Stripe payment processing.• Designed multi-tiered security strategy leveraging AWS Organization SCPs/Control Tower guardrails, IAM just-in-time least privilege elevation, CloudTrail and CloudWatch logging and monitoring, DevSecOps CI/CD automation using AWS Code Pipeline, AWS Config compliance-as-code configuration drift corrected by AWS Systems Manager, AWS Health Dashboard, AWS Trusted Advisor best practice checks, AWS KMS, AWS Backups confirmed with Resilience Hub, AWS Artifact for PCI/DSS compliance, and AWS Budgets to manage security spend. Specific security solutions included AWS Security Hub (CSPM), Amazon Guard Duty (IDS), AWS WAF, AWS X-Ray (tracing), Amazon Detective for root cause analysis, Amazon Macie for PII analysis of S3 data-at-rest, and AWS Inspector for Lambda standard scanning and code scanning.

• Provided pre- and post-sales technical support for all Delinea products across Federal civilian agencies and DoD. Expanded product sales and Federal customer footprint and managed new and existing customer relationships. • Architected and implemented comprehensive enterprise Zero Trust Privileged Access Management (PAM) solutions across Federal market focused on privileged account minimization and privilege “right-sizing” through just-in-time least-privilege elevation.• Delivered Active Directory bridging to Linux/UNIX as well as brokered authentication with extensive DevOps integration with AWS/Azure/GCP through a FedRAMP-accredited SaaS service, secrets vaulting and integrated Privilege Management platform capabilities with MFA, workflow, compliance reporting, SIEM integration, and full-session capture and replay.

• Delivered all technical pre- and post-sales support including requirements gathering and analysis, solution architecture, presentations, demos, evaluations, implementations, migration support, and solution architecture subject matter expert for 75+ products in Symantec’s Enterprise Security portfolio. • Developed comprehensive Zero Trust eXtended (ZTX) solutions for Federal departments built upon Symantec integrated Cyber Defense security platform and exchange covering data, workforce, workloads, network, devices, automation/orchestration, visibility and analytics domains with enterprise and third-party integrated solutions. Documented and cross-referenced to NIST 800-53 and the Cybersecurity Framework (CSF).

(Start-up developing multi-cloud index, search, and caching service. Divestiture required for Symantec opportunity)• Provided all security leadership for organization and major products. Worked closely with Board to continually assess and manage risk and advocated for current and future security and technology investments. Coordinated auditing and compliance activities and documented solution in preparation for commercial and Federal certifications. • Developed NIST 800-53 compliant green-field cybersecurity program from inception. EC2 applications heavily leveraged open-source security tools including Security Onion coupled with extensive application, mid-tier (Sinatra/Ruby), and backend (Elasticsearch) security involving extensive attack tree modeling, penetration testing, and security policy development.

(Cybersecurity consultancy focused on strategic security architecture and program design and implementation for a variety of Federal and commercial customers) • Architected USDA’s Enterprise Entitlements Management Service (EEMS) to provision/deprovision and manage identity and entitlement data across seven mission areas and synchronize data from authoritative data sources as the foundation for deploying smartcards, enterprise Single Sign-On (SSO), and Role-Based Access Control (RBAC). • Delivered Independent Verification and Validation (IV&V) for Health and Human Services (HHS) Centers for Medicare & Medicaid Services (CMS). • Developed strategic security program and required infrastructure for commercial Cloud service provider protecting unstructured data streams in HTML5 WebSockets and Java Serialization processes, SCADA control channels, and remote sensors• Provided architectural support for HSPD-12 solutions for GSA Federal Government Shared Services in developing the USAccess Program.• Provided FIPS-199 risk analysis for the USDA Animal Plant and Health Inspection Service (APHIS) to identify potential security risks and impact on the confidentiality and integrity of collected and processed statistical data for CIPSEA compliance. • Developed strategic segment and solution architecture in accordance with the Federal Enterprise Architecture Framework (FEAF). Produced data, application, and technology target architectures tightly integrated into USDA capital IT investment planning processes emphasizing federal interoperability and standardization. • Analyzed and developed comprehensive IT Roadmap for the University of Washington (UW) Department of Intercollegiate Athletics (ICA).