As the Team Lead for Threat Indicator Development and Analytics Tuning in the CADS program's (formerly NCPS) SOC, manages a high-performing team using the SAFe Agile methodology, focusing on SIEM platform optimization. Committed to the SOC's mission, proactively identifies and closes monitoring process and system capability gaps. Leverages data-driven approaches to solve intricate monitoring and integration challenges, which include harmonizing subscriber data with multi-sensor inputs. Creates and executes the SOC monitoring roadmap to meet the evolving security needs of a multi-cloud enterprise. Conducts regular auditing to ensure SOC performance and quality, implementing corrective measures. Consistently provides critical technical analysis and strategic guidance to senior management and DevOps teams, enabling informed decision-making in real-time security scenarios. Contributes to creating a robust, agile, and data-driven threat detection environment, leading to consistently improving the organization's security posture. Specific technologies include AWS, Azure, Firepower, Imperva WAF, JIRA, Redseal, ServiceNow, Splunk, and SecurityCenter.

Teaches undergraduate courses in cybersecurity operations, information security management, security engineering, and project management; equips students with skills aligned with the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework. Employed a hands-on approach in courses covering key topics such as intrusion detection, network security, risk assessment, and project management methodologies. Utilized real-world case studies to enhance students' analytical skills, emphasizing the role of data-driven decision-making in operational cybersecurity. Enhanced student learning by integrating knowledge of SIEM tools, conducting vulnerability and network analysis, and configuring security sensors and scanners. Project training stresses the application of agile and traditional methodologies to oversee cybersecurity projects effectively. By integrating these competencies, my training prepares students for cybersecurity roles, from incident responders to information security managers, ensuring they meet the demands of today's complex cybersecurity landscape. Integrated key competencies in training to equip students for various cybersecurity roles, from incident responders to information security managers, meeting the challenges of today's complex cybersecurity landscape.

As the lead for a sizable team in a multi-cloud enterprise environment, oversaw support operations and project initiatives while specializing in cybersecurity systems engineering support across the entire system lifecycle. Specialized in configuring a wide array of cybersecurity tools, including analytics platforms, traffic filtering systems, vulnerability scanners, and detection and response solutions. Provided Tier 3-level support to the Security Operations Center (SOC), expertly resolving complex integration issues arising from upgrades, updates, and routine patching. Excelled in crucial technical competencies like SIEM tool configuration, advanced vulnerability scanning, and real-time traffic monitoring. Managed projects efficiently using Agile methodologies, coordinating across departments to align cybersecurity objectives with operational goals. Conducted training sessions for security and threat analysts, focusing on best practices and tool optimization. Specific technologies include Blue Coat, FireEye, ForeScout, Nessus, NetWitness, RedSeal, Sourcefire, and Splunk.

Qualified Information Dominance Warfare Officer providing training on DoD Global Information Grid (GIG) Operations (DGO). Conducts shipboard cyber security inspection support, training administrators how to mitigate identified deficiencies (SCCVI and VRAM), as well as providing over-the-shoulder and formal security training. Mentored personnel in developing reporting procedures/policies (e.g. security violations, incidents and events), conducting security evaluations/assessments, monitoring IA compliance of all network assets, and uploading findings to VMS. Develops/delivers both formalized and just-in-time certification-level training (shipboard and schoolhouse) on a variety of IT topics including IA, network security/defense, networking, and operating systems.

Qualified Information Dominance Warfare Officer performing duties in signals intelligence (SIGINT), digital network intelligence (DNI), and computer network operations (CNO). Fully qualified as a CNO mission operator and performed operational mission tasking to meet mission requirements. As the operations officer, managed tasking responsibilities/activities regarding collection, processing, analysis, and reporting of DNI, across various mission sets. Clearance: TS/SCI w/ CI Poly

Conducted computer network vulnerability assessments (CNVA) and provided OTS training to shipboard administrators for deficiency mitigation. Developed/delivered formal and just-in-time certification-level training (shipboard and schoolhouse) on a variety of IT topics including information assurance, network security/defense, networking, and operating systems. Assessed on-site training requirements, developed schedules and monitored daily instructor activities.

Served as one of the key designers and assistant project manager for the Intelligent Tutoring Authoring Delivery System (ITADS) research project aimed at training US Navy cyber support personnel. Built and implemented a private cloud, mobile platform, and virtualized shipboard networks using deployable ranges. Managed tasks across the entire system development lifecycle, from initial design to final deployment. Created AI-evaluated training scenarios to fill fleet IT knowledge gaps in cyber operations support and cybersecurity. Collaborated with the project manager in planning, executing, monitoring, and controlling the project. Concurrently acted as the local Information Assurance Manager, implementing and auditing security controls, and drafted necessary documentation to achieve Authority to Operate (ATO). Specific technologies include ACAS, COMPOSE, ePO, IOS, Nessus, and VMware.

Trained military personnel in comprehensive cyber mission operations, covering defensive (blue team) and offensive (red team) tactics. On the defensive side, instructed on intrusion analysis, incident response, and packet/protocol analysis using Wireshark, among other security tools. For offense, taught network exploitation techniques, including hacking, penetration testing, and toolsets like Kali and Metasploit. Developed curriculum and cyber ranges, focusing on real-world scenarios and common exploitation vectors such as SQL injection and social engineering. Leveraged project management skills for curriculum and range development, ensuring alignment with mission objectives.

Trained military personnel in comprehensive cyber mission operations, covering defensive (blue team) and offensive (red team) tactics. On the defensive side, instructed on intrusion analysis, incident response, and packet/protocol analysis using Wireshark, among other security tools. For offense, taught network exploitation techniques, including hacking, penetration testing, and toolsets like Kali and Metasploit. Developed curriculum and cyber ranges, focusing on real-world scenarios and common exploitation vectors such as SQL injection and social engineering. Leveraged project management skills for curriculum and range development, ensuring alignment with mission objectives.

Instructed senior military leaders in fundamental joint forces planning and critical aspects of cyber operations, including operating systems, network technologies, and protocol analysis. Taught course-of-action (COA) development using proven offensive methodologies aimed at operational plan implementation. Instructed in network reconnaissance for mapping digital terrain, a critical element for decision-making and offensive activities. Crafted an integrated curriculum supported by operational scenarios across multiple cyber ranges. Employed a project management approach to align training modules and exercises with operational objectives, ensuring mission-critical readiness in cyberwarfare.

Developed requirements and trained cyberwarfare personnel to support Computer Network Operations, by understanding, implementing and utilizing proven Computer Network Defense (CND) and Computer Network Exploitation (CNE) techniques and methodologies. Trained topics in Active Exploitation, CND and Information Assurance including; technical concepts, hacking methodologies, packet analysis, malware, enumeration, encryption technologies and firewall and IDS implementations.

Led the training of military staff in operating and maintaining advanced tactical communications gear, focusing on SATCOM, tactical voice, and encryption devices. Instructed students on deploying and managing X, Ka, and Ku band links across various SATCOM systems. Instructed students in using TDMA IP modems on a black core network, guiding them through configuring convergence routers and encryption, and service delivery via multiplexers. Taught Wide Area Voice Environment (WAVE) skills for tactical radio operation via VoIP in both SATCOM and LOS modes. Educated students in cloud management, knowledge collaboration solutions, and Storage Area Networks (SAN). Developed comprehensive training material, including over 1,500 presentation slides, 500+ student guide pages, and authored two chapters in the system's interactive electronic technical manual (IETM). Succeeded in optimizing course efficacy and enhancing mission readiness through proficient project management. Specific technologies include: ACU-1000, AN/USC-60A/68A, DocuShare, GBS, KG-250, KIV-7, PRC-117F, and VMware.

Instructed Marines in the deployment and configuration of Defense Automated Communications Terminal (DACT) in both mounted and dismounted modes. Taught line-of-sight (LOS) radio configuration to establish tactical mesh networks. Educated Marines in network architecture and custom GOTS software usage. Provided training on DOD C4I system maintenance at both desktop and server levels. Managed team efforts to produce technical support and training documentation, leveraging project management skills to enhance operational readiness. Specific technologies include C2PC, EPLRS, Pocket PC, PRC-119, and Windows Mobile.

Conducted functional testing and evaluation of the Expeditionary Fighting Vehicle (EFV), contributing to test case development. Analyzed network traffic to verify system functionality, aiding the test director in team coordination and data collection. Identified software bugs and glitches, authoring comprehensive reports on module statuses. Offered data-driven recommendations for system corrections and upgrades, employing technical expertise and quality assurance skills to support mission objectives. Specific technologies include C2PC, DBMS, and Wireshark.

Oversaw Data Link Terminal (DLT) operations and maintenance as shift supervisor under the Air Force 21st Space Operations Squadron's MCOM department. Monitored and optimized network performance through real-time adjustments. Executed system configurations during mission-critical windows and conducted troubleshooting, fault isolation, and timely repairs. Leveraged technical acumen, operational insight, and supervisory skills to ensure optimal network performance and mission success.

On scene supervisor and equipment SME for an undersea surveillance system providing deep-water long-range detection capability utilizing high-gain long fixed arrays in the deep ocean basins. Served as a direct liaison between the U.S. and partner(s). Developed and monitored maintenance schedules and tasks. Developed personnel rotation schedules ensuring 24/7 coverage. Performed corrective and preventative maintenance on system equipment.

Responsible for the development, support, and oversight of key Navy Command, Control, Communications, Computer, Intelligence, Surveillance and Reconnaissance (C4ISR) Tactical Data Networks (TDN) including the Global Command Control System Maritime (GCCS-M). . Responsible for security and compliance with current developments, policies, procedures, legislation and regulations in networking. Responsible for developing and maintaining systems life-cycle and change management to improve the LAN infrastructure by deploying new technologies. Coordinated help desk personnel and developed/maintained trouble ticket process; provided oversight for trouble ticket resolution process. Key person for maintaining and integrating Fast Time Analyzer System (FTAS) in support of the Anti- Submarine Warfare Operations Center (ASWOC), which is used for post flight analysis of Maritime Patrol Aircraft collected acoustic data. Lead administrator for SIPRNET and NIPRNET networks consisting of 7 servers and 70 workstations utilizing NT4.0 Server/Workstation, Windows 2000 workstation, HP UNIX, Solaris UNIX, Exchange 5.5, and various commercial and GOTS-D software. Implemented system upgrades, software and security patches.

Developed and tracked equipment maintenance schedules; ensured work center personnel performed all corrective and preventative maintenance. Performed general maintenance and repair on Navy Tactical Data System (NTDS) and Airborne Tactical Data System (ATDS), including computers, data storage devices, digital interface and display equipment, local area networking, and related equipment. Operated, repaired, and performed maintenance on Shipboard Gun Fire Control Systems (GFCS) and surface missile fire control systems (including weapon direction systems and search radar) and associated support equipment. Performed preventive/corrective maintenance on Xerox copiers.