Download PDF

Skills

Cloud Environments
  • Amazon Web Services
  • Google Cloud Platform
  • Microsoft Azure
Vulnerability Management
  • Tenable Nessus
  • Tenable Nessus Agent
  • Tenable SecurityCenter
  • Palo Alto Networks Prisma Cloud
  • Various opensource tools
Compliance Auditing
  • Fedramp
  • CIS
  • DISA STIG
Container Technologies
  • Docker
  • Kubernetes
  • LXC
  • LXD
  • Nomad
Virtualization
  • VMware
  • KVM
  • SmartOS
  • Hyper-V
  • Bhyve
Security Best Practices
Investigation and Analysis
Context-based Risk Analysis
Linux Administration
Linux Hardening
Troubleshooting and Triage
Research
System Design and Architecture
TLS/SSL/HTTPS
Public Key Infrastructure
Hardware Security Modules
Encryption Key Management
Web and Application Servers
  • Apache
  • Nginx
  • Varnish
  • Tomcat

Professional Affiliations

ISACA 

Information Systems Audit and Control Association - Gold Level Delegate

Certifications

Work experience

20242025

Lead Security Engineer - Threat & Vulnerability Management

Salesforce
  • Successfully completed migration of on-premise Tenable vulnerability scanning products for the commercial business to a cloud-based SaaS offering, modernizing the threat and vulnerability management platform.
  • Orchestrated the migration of more than 1 million Nessus Agents from on-premise to SaaS, reducing the number of Nessus Managers required and streamlining scan orchestration.
  • Improved operational efficiency and troubleshooting speed by simplifying scan management architecture and centralizing control through the SaaS-based Tenable solution.
  • Provided training and knowledge transfer to team members on Tenable products, internal Salesforce tooling, and end-to-end vulnerability management processes, strengthening overall team capability.
  • Collaborated with partner teams including risk management, IT, and endpoint management to address and mitigate concerns around system performance impacts of vulnerability scanning.
  • Contributed to optimizing scan configuration and scheduling practices to balance security coverage with system performance and business requirements.
20192024

Sr. Security Engineer - Threat & Vulnerability Management

Salesforce
  • Functioned as in-house subject matter expert for all Tenable products, acting as primary point of contact prior to vendor engagement and guiding solution design and troubleshooting activities.
  • Management of vulnerability scanning across more than 750,000 assets, ensuring minimum cadence of one-per-day scans per asset to maintain continuous security visibility.
  • Design and deployment of on‑premise vulnerability scanning services for highly sensitive environments, including DoD IL6, air‑gapped networks, and FedRAMP environments.
  • Execution of multi‑substrate vulnerability scanning across on‑premise data centers and major cloud platforms (GCP, AWS, Azure), covering both commercial and government cloud businesses.
  • Configuration, customization, and operation of compliance scans in regulated environments using DISA STIG, CIS, and custom standards, supporting adherence to organizational and regulatory requirements.
  • Evaluation of vulnerability management solutions through structured vendor and product comparisons, deployment and administration of Palo Alto Networks Prisma Cloud Compute for non‑Tenable‑supported assets, and coordination with remediation teams to clarify findings and validate fixes prior to rollout.
20182019

Senior Security Engineer

Joyent (Samsung)
  • Architected, developed, and documented industry best practices to support company initiatives while meeting strict performance and high-availability requirements across security platforms and services.
  • Evaluated logging metrics (EPS; minimum, average, and maximum event size; retention timeframes) to accurately calculate compute and storage requirements for SIEM selection, sizing, and licensing.
  • Designed, developed, and implemented workload scheduling and orchestration using HashiCorp Nomad to support scalable, resilient SIEM and security operations workloads.
  • Created reliable, reusable HashiCorp Terraform plans for consistent, automated deployment of applications and security-related services across environments.
  • Authored organization-wide security policies, including “General Use” and detailed “Policy and Standards” documents, and rebuilt internal and external vulnerability scanning programs and processes to strengthen overall security posture.
  • Continuously assessed system and network architectures against security best practices; researched and evaluated emerging security technologies and threats; monitored the external threat landscape; and oversaw and mentored the security engineering team in deploying and maintaining IDS/IPS, SIEM, DLP, VPN, WAF, and vulnerability scanning solutions.
20152018

Information Security Analyst/Engineer

CBS Interactive
  • Design and management of enterprise cryptography and key management systems
  • Select and operate enterprise-wide vulnerability scanning and central logging platform
  • Assist with Web application testing 
  • Implement and monitor network security systems (Firewalls, IDS, Web application Firewalls)
  • Coordinate efforts to standardize network design documents and practices within networking team
  • Improve upon the incident response program and coordinate incident response activities 
  • Provide approvals for network related security changes
  • Assist with assessments as it relates to PCI, SB1386, and other local, state, and federal regulations
  • Evangelize security across network engineering, development, and key groups within the enterprise
  • Evaluate network design and make recommendations on how to improve architecture at Layer 2 and 3 with consideration to network security models
  • Design, implement and manage remote access solutions for employees, contractors and vendors
20142015

Systems Engineer

CBS Interactive
  • Oversaw design, implementation, and maintenance of systems supporting CBS Interactive business operations, ensuring reliability and scalability.
  • Analyzed business units’ requirements and workflows to identify system needs, gaps, and opportunities for process improvement.
  • Designed and implemented systems tailored to business needs, aligning technical solutions with organizational objectives and constraints.
  • Developed technical documentation, including architecture diagrams, configuration standards, and operational procedures, to support efficient system use and maintenance.
  • Promoted and enforced systems engineering best practices across the organization, driving standardization, consistency, and quality of implementations.
  • Collaborated with cross-functional stakeholders to align system designs with security, compliance, and performance best practices.
20102014

NOC Support Specialist

CBS Interactive
  • Monitored production systems and network infrastructure, responding to alerts, incidents, and support requests to maintain high availability and performance.
  • Investigated and triaged system issues, escalating to Unix and Windows system administrators as needed to ensure timely resolution.
  • Performed routine administrative tasks in support of Unix and Windows environments, including basic system checks, user assistance, and log reviews.
  • Documented NOC procedures, incident handling steps, and runbooks, and maintained up-to-date knowledge base entries to streamline operations.
  • Collaborated with system administrators and other technical teams to coordinate maintenance windows, deployments, and system changes impacting monitored services.
  • Contributed to continuous improvement of monitoring and support processes by identifying recurring issues and recommending procedural or tooling enhancements.
20082010

Copy Editor

CBS Interactive / CNET Reviews
  • Reviewed a wide range of consumer products and produced written reviews and blog content tailored to the CNET Reviews audience and editorial voice.
  • Conducted research and comparative analysis of competing products to ensure accurate, informed, and up-to-date evaluations in all published content.
  • Edited reviews and blog posts in accordance with Chicago style, ensuring consistency in formatting, punctuation, and citation practices.
  • Corrected grammar, spelling, and syntax errors to improve clarity, readability, and overall quality of published articles.
  • Collaborated with writers and editors to refine story structure, strengthen arguments, and align content with brand and style guidelines.
  • Ensured adherence to deadlines and publication schedules by efficiently managing multiple editing and writing assignments simultaneously.
20062008

Designer and Copy Editor

Bay Area News Group
  • Edited news copy for clarity, accuracy, and adherence to Associated Press style and grammar standards across multiple sections.
  • Crafted descriptive, compelling headlines and summaries to maximize reader engagement and accurately reflect story content.
  • Produced high-quality news page designs under tight daily deadlines, balancing visual hierarchy, readability, and brand consistency.
  • Collaborated with editors, reporters, and production staff to resolve content issues, improve story presentation, and meet publication schedules.
  • Applied layout and typography best practices to enhance visual appeal and ensure consistent design across print pages.
  • Contributed to overall newsroom efficiency by rapidly revising layouts and copy in response to late-breaking news and last-minute content changes.
20052005

Designer, Copy Editor

The Daily O'Collegian
  • Edited news and feature articles for grammar, clarity, and consistency with Associated Press style, contributing to overall accuracy and quality of The Daily O’Collegian’s published content.
  • Wrote descriptive, compelling headlines and hard news and feature stories to increase reader engagement and effectively convey key information and story angles.
20032004

Medical Claims Specialist

Humana Insurance Company
  • Processed medical insurance claims using the EDS Metavance system, ensuring accurate adjudication, timely resolution, and adherence to internal quality standards and service-level expectations.
  • Developed training documentation and reference materials for the EDS Metavance platform and related workflows, supporting compliance with state and federal regulations, including ERISA and HIPAA.
19982003

Administration and support

CWIS Internet Services
  • Performed on-site server and network maintenance for CWIS Internet Services, including routine upkeep, troubleshooting, and resolution of hardware and connectivity issues to ensure reliable service availability.
  • Provisioned ADSL, dial-up, and Web hosting accounts, configuring access, monitoring performance, and supporting customer setup to maintain consistent, high-quality Internet service delivery.
19961999

Network Administrator

McCurtain Public Schools
  • Configured and maintained Cisco routers and switches to support reliable network connectivity and performance across the school district.
  • Installed, configured, and supported Windows-based desktops for students and faculty, including ongoing maintenance and troubleshooting to ensure stable classroom and administrative computing environments.

Education