Over the last 38 years I’ve worked for several Cyber/Defense related organizations. - From December 2018 – April 2024, I was part of the Fidelis Special Operations Team as a Senior Sales Engineer, Network Threat Hunter and Advanced Analysis Instructor. - Prior to that, I was the Information Security Manager for NuScale Power; running a team of five Tier III analysts protecting the company’s intellectual property and systems in a high-threat environment. I’ve developed extensive knowledge over the last 26 years as an Incident Response Handler and Tier III analyst and advanced trainer teaching the use of data mining methods to aggregate, correlate and identify unique network attacks. I spent three years as an Incident Handler on the USAF Computer Emergency Response Team (AFCERT). I have worked with design groups for USAF Intelligence, USMC, NRO, FBI, Veterans Administration, NASA, NOAA, HUD and US Dept of Education on new systems to protect networks and allow the detection and identification of intruders. I have also led teams performing security audits for government, financial, and commercial customers.I have significant experience in intelligence, cryptographic systems, communication and computer network analysis, network security systems development/analysis, communications and computer system exploitation and defense, physical security, and information warfare.

• Demonstrated Fidelis Elevate capabilities and provided pre/post-sales architecture and installation services to customers to allow them to leverage the full capabilities of Fidelis Network, Endpoint and Deception products. • Provided professional services for building custom queries, optimizing the security stack and creating custom detection rules. • Created custom curriculum and taught 1-10 day Threat Hunting and Advanced Analyst Training courses. Conducted threat hunting webinars for publication. • Trained incident responders, threat hunters and security analysts in utilizing the Fidelis Elevate platform to perform their roles. • Performed incident handling and resolution duties during critical customer events.

Providing security and protecting intellectual property for NuScale Power - the next generation of nuclear reactor.• Protected NuScale's critical intellectual property and infrastructure utilizing data from multiple systems and sensors. • Developed layered defense strategies and constructed new security system capabilities for use at NuScale. • Composed network security documentation and established new Information Security standards and training to meet critical requirements from Dept of Energy and Nuclear Regulatory Commission auditors. • Provided incident handling and resolution during critical events. • Assisted with network and system administration duties as required within the NuScale IT section.

• Functioned as a critical member of the Mission Analytics team on the USAF IATAC Strategic Planning task. • Created strategic analysis white papers and tactics documents for the USAF customer to develop methodologies and tools supporting advanced concepts for network warfare operation strategic plans. • CND Subject Matter Expert for testing and evaluation of future enhancements, modules and capabilities for current and follow-on USAF systems/projects. • SME Operator/Trainer for the Information Operations Platform (IOP) at multiple locations on multiple networks. • Developed curriculum and trained analysts in performing IOP network defense tasks.

• Project Team Leader for Bank of America GM/HUD security Network C&A audit team. • Managed 20 person, multi-million dollar project to properly accredit financial servicing system. • Acted as advisor to bank executive leadership and as a liaison with HUD Information Security Executives for this high-visibility, extremely sensitive project. • Helped design, test and implement a new USAF stand-alone, airborne, security appliance. • Performed network/enterprise vulnerability and penetration testing and audit support to military, federal government and commercial customers.

• Performed IR, forensic analysis and incident handling duties as needed for the supporting TJX Corporation security recovery efforts.• Created security operations plans, incident handling procedure plans and training materials for long term use. • Trained new analysts in proper CIRT procedures, required duties and incident handling techniques. • Performed complete NIST 800-53 assessments of multiple NASA and NWS sites/systems; created detailed system security packages and recommendations for Congressionally mandated OMB inspections. • Assisted security/policy personnel at all sites in updating current documents. • Performed vulnerability assessments and C&A Services for additional commercial and government customers.

• Technical Lead for the AFCERT/IR team; monitored real-time network traffic to detect computer intrusions worldwide. • Supervised teams of 20-40 analysts to direct immediate response actions for the recovery of AF/DoD computer systems. • Evaluated new exploit methods and designed signature models to detect them. • As part of the GD IR team, provided professional IR services for three Fortune 500 corporate clients to secure their networks;• Assisted in the design, engineering, and implementation phases of several multi-million dollar contracts, including: • CITS Block 30 design, installation, and training; • FBI Enterprise Security Operations Center - constructed a secure, multi-level, security system to monitor and protect the FBI IT infrastructure; • Supported the NRO Enterprise Management Operations Center and its operations for more than two years; • ARDA project to build a Cyber Attack Prediction System in conjunction with Carnegie Mellon/CERT; and • Performed forensics/security analysis work for internal GD research and development projects. • Assigned to the Intrusion Detection Technical Analysis Team to design future IDSs and components for the protection of USAF networks. • Utilized data mining techniques to leverage existing data and find low-level intrusions. • Provided technical assistance to other DoD, law enforcement, and U.S. Government agencies to secure computers and networks. • IA/Network Security trainer for FBI, NRO, USAF and GD personnel on current tools, systems, and methods providing one-to-five-day structured courses covering intrusion detection, information protection, computer security, and computer threat/intelligence gathering methods.

• Assigned to the AIA, Information Operations Center (IOC) as a Cyber Intel Analyst. • Compiled daily CYBERWATCH report which detailed significant, worldwide, technology, information protection and computer security related incidents or intelligence reports. • Provided trend-analysis and correlation of these events to USAF and DoD units. • Wrote technical papers and intelligence reports on trends, systems, organizations, exploit methods and defense strategies related to computers. • Provided training and supervised personnel operating electronic monitoring and communications jamming equipment during communications vulnerabilities assessments of USAF RED FLAG and PACAF COPE THUNDER Exercises. • Helped to develop IO/IW scenarios utilized during each exercise. • Supervised 10-20 person teams for 16 CT exercises. • Performed twice-daily mass debriefs for 500 aircrew to increase their OPSEC/COMSEC awareness. • Compiled threat analysis and intelligence summary reports for RED FLAG, CT, 11AF, Nellis and Eielson AFB units as a Defensive Intelligence Analyst. • Participated in two wartime deployments for Operations Desert Shield/Storm in support of CENTAF, TAC, and SOCOM. • Detachment OPSEC, COMSEC, Mobility, and Tactical Deception officer.