• Led the rollout of phishing-resistant FIDO2/WebAuthn via Okta, boosting adoption from 20% to 93% in two days • Created, automated with Python and remediation of endpoint security metrics, using the vendor APIs to ensure coverage and operation of security tooling including Jamf, SentinelOne, and DriveStrike across all team member laptops.• Hardening of endpoint devices, increasing visibility and reducing the attack surface via an implementation of Nudge for macOS patching compliance• Addition of new security controls for GitLab's SaaS environment including:- Implementation of Okta Device Trust to ensure that only managed laptops can connect - Removal of more than 20,000 publicly documents via Nira- Okta FastPass and Device Assurance deployment for BYOD mobile- Creation of custom Linux Device Posture checks for Okta, including automated Slack notifications for non-compliance

• Recruit, hire, and managed a 15 person global security operations team with focus on threat & vulnerability management, SIEM engineering, identity & access management, email and endpoint security• Successfully integrated personnel and technology from multiple OpenText acquisitions• Lea security incident response, coordinating efforts across IT operations and information security to rapidly resolve complex incidents across corporate & OpenText Cloud environments• Responsible for managing the LogRhythm SIEM, which processes 5 TB of raw logs per day• Coordinate the deployment of Qualys Cloud Agent to enhance visibility of vulnerabilities for remote workers due to COVID-19• Led the selection, testing and global implementation of security software including Palo Alto Prisma Cloud for providing container (including K8) security and Proofpoint PhishAlarm, which enables end users to notify SOC of malicious emails and auto-quarantines them• Guide the OpenText Cloud Security team, responsible for AWS, Azure and GCP environments: partner with Cloud Ops teams to provide configuration recommendations and responding to security incidents. • Ensure that corporate & production environments were compliant with various compliance frameworks, including PCI, FedRAMP, GDPR, HIPAA, SOC2 and more.

● Enhanced the vulnerability management program to include vendor RFP evaluation, secured funding, and roll-out of internal scanning and reporting for on-premise and cloud environments● Implemented automated vulnerability reporting for using REST APIs● Reduced container vulnerabilities by implementing new tools● Researched, selected, secured funding for, and implemented email auto-quarantine tool that removes more than 1,000 email threats a month from user mailboxes● Managed rollout and operations of SentinelOne ATP across 30,000 endpoints ● Performed security architecture reviews and managed the security exception process● Automated metric collection, updates and threat response using Python and PowerBI● Acted as subject matter expert for implementation of two-factor authentication● Created self-service Portal for two-factor token deployment, used 3,000+ times● Enhanced security forensic capabilities by driving the deployment of Encase Agent● Migrated legacy root password management script from Bladelogic to Ansible

● Built self-service scanning tool in Python using REST APIs from Qualys and OpenText Content Server, allowing system operations to verify OS configuration and vulnerabilities on their schedule, greatly speeding up required Security review/remediation process prior to new system go-live● Developed two Python GUI applications using Selenium:1. For the account provisioning team, reducing time to provision accounts on the SMG system by 93% (8 hour manual process to 40 minutes of automation on a weekly basis).2. For the Security team, reducing time reviewing Commercial System Access Requests by 80% (15 hours/week reduced to 3 hours/week) with future improvements forthcoming● Daily review and escalation of Fortinet UTM and LogRythm SIEM alerts● Participate in Incident Response as Security representative

● Configure Cisco Adaptive Security Appliances (ASA), Virtual Security Gateway (VSG) and F5 Advanced Firewall Manager (AFM), including firewall rule changes, VPN creation, and Firesight management● Perform daily review of PCI network: Trend antivirus, OSSEC logs, and firewall connections● Create penetration scans and analyze results using Nessus● Author new university internal Incident Response plan and Security Awareness training● Process litigation holds/eDiscovery notices, open record requests, and DMCA alerts

● Worked directly with Department of Defense customers to determine requirements for systems under test ● Created test plans to be used for demonstrating system and component performance● Served as subject matter expert for $50 million Air Force acquisition● Managed multi-week test events across geographically dispersed locations for 200-node virtual and physical machine networks ● Analyzed terabytes (TB) of TCP/IP packet capture data, monitoring scripts and system logs● Developed custom routines to analyze packet capture data and logs using Linux scripts, DOS batch files, TShark, Visual Basic for Applications (Microsoft Access and Excel) and proprietary tools● Presented to four Air Force Generals and 50+ stakeholders on system capabilities and test results● Provided technical leadership to junior analysts and engineers, delegating and verifying assignments

● Obtained Top Secret/Sensitive Compartmented Information (TS/SCI) clearance● Tested numerous cellular technology systems and devices for Air Force customer● Correlated logs from devices and network infrastructure components, created data products for customers● Worked with spectrum analyzers and signal generators in support of field testing of SUT● Participated in technical discussions with developers to troubleshoot and resolve issues● Created technical reports and presentations on test results and SUT capabilities for range of audiences● Developed and presented training modules on Signaling System 7, binomial statistics, cellular technologies and RF engineering principles