As the Director of Cyber Security, Tom oversees the design and implementation of Skolem's security program. He has been responsible for initializing the cyber security program, including projects to implement EDR, application allow listing, zero trust, systems hardening, security awareness training, log monitoring, DFIR, offensive security testing (Red Teaming), and DLP, amongst others.

Tom lead the conceptualization of, and provided technical leadership for Principal Financial's internal Red Team. During his tenure, Tom lead the development of the Internal Red Team's documentation, reporting, business interfaces, program objectives, and lead the technical and business output for the team.Tom designed and managed C2 and payload delivery infrastructure, remote access, system hardening and operational procedures, and managed team resources. Tom oversaw the internal reporting processes, business communications, red team operational goals, strategies and design. Additionally, he managed the tracking and reporting of identified improvement opportunities. To designed and helped lead tabletop exercises, and purple team events coordinated with blue team, IT, and threat intel teams.Principal's Red Team now ingests data about real world threat actors in order to replicate their attacks. The team's simulations mimic tooling, objectives, and strategies of selected, specific threat actors to help inform Principal Financial's security efforts as part of ongoing improvement objectives.

Tom assisted with creation and daily operation of the internal threat simulation team (Red Team). The Northern Trust Red Team provides realistic, long term targeted attacks in order to evaluate and improve the cybersecurity program's effectiveness in defense and response for real world threats. Tom specialized in C2 and payload delivery, Red Team infrastructure management, reconnaissance, post exploitation, actions on objectives, exfiltration, and acted as team lead for multiple Red Team Operations. Tom architected, built, and maintained the Red Team's standard images for servers and endpoints, crafted malleable c2 profiles for threat replication and evasion, managed cloud and on-prem infrastructure, and designed, built, and oversaw password cracking equipment and processes.

During his tenure at Plante Moran, Tom compromised over 100 Banks and Credit Unions 500 Million to 20 Billion in assets, while performing Penetration Testing for the Financial Industry. Throughout his consulting role, Tom developed communication strategies that helped result in long term effective improvements for his clients.Internally to Plante Moran, Tom worked with leadership to overhaul the penetration testing procedures, lab, equipment, tooling, and reporting as a Sr Consultant to improve the Penetration Testing team and was promoted to Manager as a result.Additionally, Tom provided consulting services for effective and practical risk mitigation related to network architecture, attacker kill chain, threat emulation, social engineering and training to Plante Moran's internal security team.

Tom founded the private IT Consulting firm SMB IT Solutions. SMB IT Solutions specialized in the application of open source solutions for small and medium businesses, remote support, and supported SMB applications on a variety of server platforms.

Performed Systems Administration, LDAP Administration, system deployment, lead visualization initiative. Conceptualized and designed Disaster Recovery systems and Disaster Recovery plan.Administrated RHEL, Ubuntu, Windows 2003, and Windows XP Operating systems. Deployed WSUS, managed Zimbra. In this role, Tom developed a portable and encrypted file server, which performed 3G routing, and hourly file snaphotting/backup appliance based on Intel Atom hardware.