With over 10 years of experience solving security strategy, architecture and engineering problems, I bring the fight to technical adversaries with the breadth and depth of skills needed for high-stakes, complex engagements.
With a laser focus on security strategy project leadership, cyber wargaming, policy and technical security controls, building and leading elite teams in assessment and implementation of tailored security solutions, I have earned a reputation in the InfoSec community as a critical thinker, Senior Staff Engineer, and an effective leader.
I’ve designed and executed security solutions across a range of industries. I’ve recently led security strategy and security architecture projects for several high-scale D2C products, e-commerce platforms, top-tier telcos, a $50Bn+ FinTech (G-SIFIs), and $1Bn+ multinational and start-up tech firms. In March 2020, I was invited to Wargame an Int'l (Cyber) Crisis at The Hoover Institution.
Deep expertise in:
· Enterprise cyber risk reduction design and oversight
· Optimal investment in InfoSec
· Models and analysis of online crime
· Cyber-risk quantification and cyber-insurance
· Security standards and regulation
· Adversarial Machine Learning
· Vulnerability discovery
· Cybersecurity policy
· Behavioral security and privacy
· Game theoretic cyber-defense strategy
· CTF design & cyber wargaming
Deep skills in:
✔ Security Architecture & Design
✔ Strategic Analysis
✔ Cyber Wargaming
✔ M&A Security
✔ Zero Trust Strategy & Architecture
✔ Cyber Resilience Analysis & Engineering
✔ Cyber Threat Intelligence
✔ Security & Executive Strategy
✔ Explaining Security to Your Board
✔ DevSecOps
✔ Cloud Security Architecture
✔ Threat & Attack Management
✔ Applied Cryptography
✔ Secrets Management
✔ Security Strategy & Operations Research
✔ Detection Engineering & Incident Response
✔ Writing Secure Code
✔ Red Teaming & Penetration Testing
✔ Exploiting & Protecting Web Apps
✔ Model-based Systems Engineering
✔ Data Security & Privacy Eng.
✔ Wireless Security
Technical credentials:
MSc in Software & Systems Security, Oxford (in progress)
Certificate in Cybersecurity Strategy, Georgetown (in progress)
Certified Cloud Security Professional, CCSP
Certified Information Systems Security Professional, CISSP
Certified Advanced Computer Security Professional, Stanford
Certified Zero Trust Strategist, Forrester
Certificate in Systems Architecture & Engineering, MIT
Certificate in Cyber Wargaming, MORS & Virginia Tech
Advanced Diploma in IT Systems Analysis & Design, Oxford
...