Micro Focus acquired Hewlett Packard Enterprise’s Software business in 2017 and became the global 7th largest software company. In 2023 Micro Focus was acquired by OpenText Corporation for $5.8B.• Led ArcSight Control (Operations Orchestrator) automation tool software development team • Established product roadmap and priorities for workflow automation and supporting technologies (SIEM, SOAR, Machine Learning, APIs, certificate management, Kubernetes, OS, etc.)• Made vulnerability management and remediation decisions including Log4j vulnerabilities• Contributed to Gartner and Forrester industry analyst responses and demos • Led Security Operation Center redesign and roadmap for Micro Focus Internal SOC & Product SOC • Managed GDPR / German Workers Council Data Protection Impact Assessment for Voltage SecureData format preserving encryption with Carbon Black EDR for SIEM and Machine Learning data analysis• Mapped SIEM content to MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, HPE Attack Lifecycle, Mandiant Attack Life Cycle, and technologies commonly required by standards such as NIST, ISO, HIPAA, PCI, etc. • Clarified security concepts, processes and metrics for product managers, developers, and UI designers• Indirect leadership of cross functional teams of 8 to 10 at management and architect levels

• Delivered and led multi-country, multi-SOC, post-incident deployments, and struggling project turnarounds on a highly specialized global consulting team• Functioned as a “fixer” for struggling projects by de-escalating frustrated customers, re-aligning expectations, setting projects back on course to regain customer confidence and protect revenue targets• Performed maturity assessments, gap assessments, workshops, and road mapping exercises• Led and oversaw security operation centers builds, redesigns, and maturation projects worldwide• Guided threat intelligence platforms enrichment, including MISP, VirusTotal, ArcSight RepSM, Anomali ThreatStream, Recorded Future, and Cisco Talos• Advised on operationalizing threat intelligence and indicators of compromise to actionable, SIEM content, active lists, YARA rules, sigma rules, IPS signatures, hunt hypotheses, and machine learning models• Designed multi-country gaming and entertainment security operations implementation plan• Assessed and advised client executive team for multi-country managed service provider reorganization• Created integrated Breach Crisis Communication Plan for incident & breach response processes with Legal, Security Operations, Insider Threat, and Incident Response teams for a multi-national bank• Project leadership of 3 to 6 consultants & engineers and up to 20 customer SOC analysts

In 2015 Hewlett-Packard Company split producing two Fortune 100 companies, one of which was Hewlett Packard Enterprise Company (HPE), a global IT, Enterprise and Cloud company that ranked 59 in its 1st year.• Managed the Security Intelligence and Operations Consulting team for America, Canada, and LATAM • Scoped, sold, contracted, and managed professional service team and engagements ($8M-$10M annually)• Oversaw key performance indicators (KPIs) for utilization, revenue, margin and customer success • Performed SOC maturity assessments for strategic customers • Consulting practice management for a team of 10-15 direct reports and 5-25 customer-based SOC analysts

Hewlett-Packard Company (HP) was a global IT company which ranked as high as Fortune 500 #10 and known for their hardware, software and consulting services.Exact same position as the Managing Principal role with HPE. (HP split into HPE and HP Inc.) • Managed the Security Intelligence and Operations Consulting team for America, Canada, and LATAM • Scoped, sold, contracted, and managed professional service team and engagements ($8M-$10M annually)• Oversaw key performance indicators (KPIs) for utilization, revenue, margin and customer success • Performed SOC maturity assessments for strategic customers • Consulting practice management for a team of 10-15 direct reports and 5-25 customer-based SOC analysts

• Performed tailored CIO / CSO / CISO level strategic advisory services for Threat Intelligence, Incident Response, Red Team, Vulnerability Management and Risk Management capabilities for HP’s largest clients • Restructured the entire security program for a Fortune 500 after Advanced Persistent Threat compromise • Custom built an oil and gas specific cyber threat intelligence program consisting of intelligence gathering, analysis, reporting, executive risk positions statements, and SOC/CSIRT integration (hunt)• Delivered executive-level intelligence briefings, threat assessments, risk opinions, and strategic workshops • Rebuilt customer vulnerability management program including scanning, patch management & vendor risk • Represented customer on steering committee during $125M to $100M security budget reduction• Provided client mentoring in security organizational structure and change management • Facilitated clear communication between customer executives, technical staff, consultants, and sales teams• Project & team leadership of 1-3 concurrent multi-million-dollar projects with teams of 5-15 consultants

The Center for Infrastructure and Security is a distinguished research center at UT-San Antonio, a Tier One (Carnegie R1), NSA Center of Academic Excellence in Research, Cyber Operations, & Cyber Defense. • Pioneer in the field of cybersecurity exercise planning for critical infrastructure, Financial Services, Oil & Gas, Energy, Chemical, and IT Sectors and leadership-oriented exercises• Technical program manager of a national-level, cyber-terrorism training & exercise programs for Department of Defense, Department of Homeland Security, United States Secret Service & law enforcement • Built a national-level security exercise program that was delivered in over 28 states and 68 cities • Special Advisor to Secret Service Electronic Crime Task Forces, Information Sharing and Analysis Centers (ISACs), Florida Department of Law Enforcement, and Rhode Island Cyber Terrorism Task Force• Built and grew team through continuous growth periods ($2.4M to $4.0M to $15M) • Streamlined program and increased delivery capabilities over 600% while improving content quality• Led development of materials that became the foundation of DHS Cybersecurity and Infrastructure Security Agency (CISA) Tabletop Exercise Packages (CTEPs) which are still in use today• Functionally led the Infrastructure Assurance Program team from 2005, officially promoted in 2007• Conducted Congressionally-funded research, threat modeling, and attack profiling for critical infrastructures• Special Advisor for DHS Cyber Storm I, II and III national-level cyber exercises• Subject Matter Expert for Next Generation 9-1-1 Security Working Group• Founding team member of the National Collegiate Cyber Defense Competition (NCCDC) • U.S. Congress passed House Resolution 1244 to commend the NCCDC program • Congressman Rodriguez wrote to the President of the United States about our program• Program management for a team of 6 direct reports and up to 30 indirect team members

Moonlighted as a contract Expert Consultant for electronic evidence collection and litigation support projects• Led and performed collection and litigation support for backdated stock option fraud investigation• Member of 2-person team that found evidence of corporate espionage for a Global 500 company• Translated technical issues and outcomes between technical team, lawyers, and C-Level executives • Individual contributor directly interfacing with customer C-Level executives and legal teams