At Oracle Cloud Infrastructure, I served as a product manager for OCI's security infrastructure, architecture, and product offerings. I worked specifically around products such as Vault (Crypto key management, including HSM offerings), IAM, and encryption services. This involved regularly interfacing with top accounts and customer executives to provide security-related guidance, and collecting customer feedback about both current and future products to drive development roadmaps. In addition to maintaining deep technical expertise in cloud infrastructure topics, specifically cryptography, virtual networking, and IAM, I was also responsible for writing and collaborating on the creation of everything from demo networks to showcase products to white papers.

I spent three years at the Foundation as a consultant before converting to a FTE in 2016. My role allowed me to operate with a high degree of autonomy as an advisor on all operations, setting general risk management standards and policies, tracking long-term risk trends, and managing remediation efforts. I was the product owner of the Foundation's IAM initiative and led the deployment of MFA and Conditional Access to all systems. Early on I built the original SIEM solution on Juniper STRM-5000 and contributed to the later Splunk implementation, running the proof of concept and building the log processing pipeline.Due to the nature of the Foundation’s work, I have collaborated with physical security operations to design infosec processes for our major events and VIPs/heads of state. I developed unique security guidelines for travel within high-risk countries, which I then presented on at the 2018 OSAC Convention. My other accomplishments include developing our Secure Coding program for app developers, developing cryptography and PKI policy, and serving as Program Manager for a multi-million dollar outsourcing initiative.

At AT&T Wireless, I architected security solutions deployed to protect the customer-facing mobile data core, managed deployments, oversaw capacity planning, and managed risk assessments. Specific accomplishments included leading a firewall replacement initiative (Lucent Brick 1200 to Juniper SRX-5800) for six data centers nationwide for their customer-facing wireless data network and leading a custom SIEM architecture and deployment (Q-1 STRM-5000, F5 Viprion), designing a scalable cluster that handled millions of events per second. This role also required engineering of niche security solutions for GPRS and LTE-based cell networks.

In this role I advised enterprise customers on enterprise security architecture, business process design, and project management for security and network engineering deployments. This position included work on a carrier-class GSM network and I led integration redesign of SMP/WAP-Push/LBS application to reduce application onboard times by 50%, saving $4M a year. I was recognized with the CEO’s Award, two Sales Recognition Awards, and was consistently placed as team lead on major consulting projects.

At Blue Iraq, I served as Engineering Lead, managing satellite communication and VOIP deployments in the Middle East. Worked closely with military clients and vendors to provide cutting edge voice and data service in high-security areas, including Iraq and Afghanistan. Handled hiring of new engineers, project management of existing contracts, and deployment of VSAT systems for customers.

At IOActive I provided comprehensive security assessments for commercial and government clients in collaboration with security auditing services. My work included network penetration testing, network design review, auditing of web apps and source code, threat modeling, and project management.

As an instructor and researcher I delivered penetration testing courses to global students (corporate, government, military), developed new course materials (EC-Council ECSA certification materials), and researched new tools and techniques.