Led 7-member team developing threat detections for 850K endpoint enterprise network. Tuned and optimized malware signatures using cyber threat intelligence to develop behavioral signatures based on known adversary Tactics, Techniques, and Procedures.● Identified 43 coverage gaps in a newly acquired EDR Solution and crafted and implemented a prioritized list of fix actions, protecting 850K IT assets valued at $14.3B● Led the transition and consolidation of custom detection rules to a new EDR. Developed a prioritized list based on observed/attempted intrusions, resulting in the migration being completed one month ahead of schedule.● Replaced “complaint-based” signature tuning with “accuracy metrics” based prioritization of signatures for tuning, resulting in a 57% reduction of false positives saving over 6000 work hours per year.

Led 13-member team that detected, tracked, and characterized Advanced Persistent Threats and recommended mitigation strategies. Fused intelligence techniques into risk mitigation plans to protect Air Force networks.● Led team that Identified multiple vulnerabilities in a water treatment plant network and an aircraft fuels distribution network, provided mitigation recommendations; team earned two quarterly and one annual award at the regional level● Re-engineered Fly-away SIEM kit to better support the organization's new focus on ICS/SCADA systems. This saved over $250K in acquisition costs as well as an annual $40K in transportation costs; awarded Sr. Technician of the Quarter at the regional level● Led a 13-member team to to hunt / clear APTs and mitigate threats to networks; drove intelligence-driven Cyber Security Operations across 7 Industrial Control System (ICS) networks

Led a 3-member host analysis team as a technical expert that guided defensive actions and developed training which enhanced collection and analysis capabilities● Managed host operations for a significant exercise while collaborating within a 5-member team; identified 41 adversary techniques and protected systems, resulting in the organization winning small team of the quarter● Headed wireless & physical security assessment that identified/mitigated cross network lateral movement path in a heating and power plant.● Drove pathfinder systems development by identifying a critical engineering defect and recommended solutions that kept the program on track and ensured the success of an overseas military operation

Analyzed Endpoint event logs on customer networks to establish behavioral baselines and categorized events as anomalous, suspicious, or malicious● Analyzed cyber threats to a $35B early warning system and trained local IT Personnel in cybersecurity basics which enhanced protection capabilities● Validated the organization’s $1M intelligence support contract by assessing a new cyber threat feed that delivered 347M Indicators of Compromise to 9 supporting cyber commands

Develop engineering designs. Use CAD software. Prepare cost estimates, performance work statements, and specifications for existing and proposed facilities. Design concrete and asphalt pavements. Perform simple load calculations for horizontal and vertical construction. Act as liaison between design, review, construction, and using agencies.Performs drafting duties. Interpret rough engineering sketches to produce working drawings using manual and CAD techniques. Produce architectural, structural, civil, mechanical, and electrical drawings. Update Base Comprehensive Plans and maintains record drawings. Plot and reproduce drawings.Performs GIS duties. Link computerized maps to databases displaying detailed information via the web. Create geographic coverages. Develop database structures. Create and populate feature codes. Link graphical data to relational databases. Develop query routines for end-user applications.Performs surveying duties. Conduct reconnaissance, site location, construction, and mapping surveys while operating manual and electronic surveying equipment. Collect, convert, and present field survey data for civil engineering projects. Maintain equipment.Support contingency operations. Develop bed-down plans to house personnel, aircraft, and associated support functions during contingency operations. Evaluate existing airfield pavements, lighting, navigational aids, markings, and arresting systems. Perform recovery operations to include explosive ordnance reconnaissance, airfield damage assessment, minimum operating strip selection, rapid runway repair calculations, and airfield marking procedures.

I did interior and exterior painting, roof, siding and window repair and replacement, interior remodeling, and cabinet installation.