Profile picture

ABOUT ME

Top Secret / SCI-cleared cybersecurity professional with 8+ years of experience supporting DoD and enterprise environments, specializing in risk management, compliance, and cloud security engineering. I build secure, scalable solutions across Azure and AWS—combining hands-on engineering with governance, automation, and security-by-design principles.

I’m expanding that foundation into cloud security engineering through hands-on projects like my Cloud Resume Challenge and enterprise landing zone labs—implementing identity baselines, network segmentation, logging, automation, and zero-trust principles.

Certifications

Microsoft Administrator Associate (AZ-104)

December 2025

AWS Cloud Practitioner

October 2025

CompTIA Advanced Security Practitioner (CASP+)

October 2024

CompTIA Security+ CE

October 2024

Work

Cloud Engineer / Information Systems Security Engineer

Leidos Feb 2022 - Present

  • Lead continuous monitoring and RMF compliance, maintaining SSPs, POA&Ms, and accreditation artifacts in eMASS.
  • Conduct vulnerability and risk assessments for cloud environments and on-premises systems using ACAS, SCAP, and DISA STIGs to enforce secure baseline.
  • Implemented secure web hosting patterns using Azure Static Web Apps, AWS S3, CloudFront, and WAF.
  • Designed enterprise landing zone architectures with management groups, RBAC models, network segmentation, and cost governance.
  • Logging, monitoring & incident response (Azure Monitor, Log Analytics).
  • Identity & access management (Azure AD/Entra ID, RBAC, Managed Identities).
  • Implemented CI/CD automation using GitHub Actions to streamline deployments for both frontend and backend services
  • Harden application security by removing hard-coded secrets and migrating credentials to Azure App Settings, following least-privilege and secure configuration best practices
  • Applied security-by-design principles by enforcing secret rotation, access controls, and secure API exposure for serverless workloads

Cyber Analyst

ISHPI Inc May 2018 - Aug 2022

  • Managed POA&Ms, validated control evidence, and updated eMASS packages supporting RMF/ATO renewals.
  • Conducted vulnerability assessments and supported remediation planning.
  • Implemented compliance controls using NIST RMF and CIS Benchmarks.
  • Worked with different teams and assessed security risks across systems.
  • Conducted CCRI/CORA readiness efforts, achieved zero critical findings

ACAS Administrator

NetCentrics Sep 2017 - May 2019

  • Maintained ACAS SecurityCenter and Nessus scanners (plugins, patches, policies).
  • Updated ACAS TTPs/SOPs improving scan and reporting consistency.
  • Administered Tenable SecurityCenter and Nessus scanners (plugins, patches, policies).

Skills

  • RMF, NIST 800 series, DISA STIGs, eMASS, ACAS
  • Cloud: Azure Functions, Cosmos DB, AWS (Lambda concepts)
  • DevOps: Git, GitHub Actions, Azure DevOps
  • IaC: Terraform, ARM templates
  • Tools: VS Code, Tenable SecurityCenter, Nessus

Contact Me

Feel free to reach out for collaborations, opportunities, or just a chat!