• Architected and deployed Microsoft Sentinel SIEM as the central SOC tool enabling analysts to protect, detect, and respond. Automated the integration of a diverse set of data sources & tools such as AWS (Guard Duty, WAF, etc.), Microsoft 365, CrowdStrike, Palo Alto firewalls, Okta, Zscaler, and multiple threat intelligence sources. • Integrated MDR vendor into our SOC, leveraging Cribl for log parsing and routing, Azure Data Explorer as our security data lake, and ServiceNow SIR module for security incident management.• Deployed Microsoft Purview Insider Risk Management to identify and mitigate malicious and inadvertent activities, incorporating pertinent HR data from Workday to enhance organizational security.• Contributed to compliance certifications by collaborating with our GRC team to provide evidence for multiple (HITRUST, NIST CSF, ISO) audits. Actively participated in addressing findings during and after independent reviews.

• Successfully architected & deployed Sentinel, Defender for Cloud, and Microsoft 365 Defender (E5 tools) to multiple customers, including SIEM migrations, workload threat protection, and security operations integrations.• Led the Atlanta chapter of Military@Microsoft employee resource group, supporting veterans and allies across the southern region. Served as the communications lead for the Security Solutions Area Connected Community, enabling skilling and networking for Microsoft's security professionals.

• Developed Microsoft’s strategy for secure development & DevSecOps in response to the Cybersecurity Executive Order. Wrote go to market strategy for driving customer compliance.• Represented Microsoft as a founding member of the Space ISAC, driving their initial operating capability with Azure ML and cloud security tools. Contributed to multiple working groups providing cybersecurity guidance, recommendations to the sector, and feedback on draft NIST publications.• Supported multiple hiring efforts, to include my team’s expansion, Atlanta-area cleared hiring events, and multiple Service Academy Career Conferences.

• Enabled remote work by deploying Azure AD identity management, Conditional Access policies, Azure MFA, and Defender for Office 365 capabilities supporting a provincial government M365 tenant.• Modernized healthcare security by deploying Defender for Identity and enhancing the customer’s existing Defender for Cloud, Defender for Endpoint, and Azure AD identity management capabilities. Conducted technical and operations workshops, created implementation documentation, and ensured adherence to best practices.• Created a customer’s Infrastructure as Code (IaC) repeatable deployment via PowerShell DSC, implementing and configuring domain controllers, LAPS, MDT, WSUS, and security tooling.

• Supported multiple NATO communications exercises for the US forces, offering design guidance, engineering direction, operational assistance, and security hardening recommendations to facilitate multinational integration.• Delivered security assessments across Windows server, client, and Active Directory evaluating the posture and health of the platforms. Provided recommendations and remediation actions based on vendor best practices.• Designed and deployed a customer's upgrade to Exchange 2013, utilizing beta migration IP and simplifying the storage architecture. Collaborated with the IP owners to provide feedback on bug fixes and automation enhancements, resulting in simplified customer deployment and improved future IP deliveries..

• Created an e-Discovery tool to scan the customer's entire Exchange estate for e-mails related to specific keywords and/or users. This enabled both legal inquiries, quick deletions of phishing attempts, and recovery from data spills.• Developed automated email metrics collection and reporting tools, providing senior leadership with data-driven insights into the performance and utilization of the Exchange organization.

• Led team in engineering, scheduling, and deploying the necessary updates to Windows, Exchange Server, and Office to all enterprise assets ahead of the government-mandated time zone changes during the Daylight Savings Time 2007 transition.• Designed and deployed automation playbooks for customer innovation cell, resulting in decreased deployment times, improved deployment repeatability, and increased configuration consistency.

• Officer in Charge, Directory Services – Commanded 15-person team of enlisted airmen and contractors in the design, operations, and maintenance of the enterprise network spanning 18 Air Force bases.• Active Directory/Exchange Upgrade Team Lead – Led small deployment teams responsible for multiple on-location upgrades to Active Directory 2003 and Exchange 2003 across Air Combat Command.