Experience

Professional Highlights

Cybersecurity Leader | Security Engineer

GSLC | GRTP | CRT-ID | RTO-I | PT-I

"Security leader and engineer with 10+ years across Red Team, AI Security, Security Operations, and Cloud Security. Designed and led AI Security, Cloud Security, and AI‑powered Sec Ops initiatives, reducing response time and improving detection coverage. Adept at translating complex threats into actionable controls, with a focus on adversarial techniques using AI in multi‑cloud environments.”

Career Highlights

Developed an end-to-end AI security architecture spanning mcp gateways, servers, SaaS, endpoints, browsers, networks, and developer environments, ensuring secure, compliant, and governed AI adoption across the enterprise.
Architected and deployed AI-powered Sec Ops pipeline that reduced alert triage time by 55%, automating Level 1 SOC analysis while implementing CSPM 30% ahead of schedule with continuous K8s posture monitoring.
Led security modernization initiatives across multi-cloud environments (AWS, GCP, Azure), delivering 100% global visibility for vulnerability management in under 2 months and generating $250K+ in operational savings.
Directed 10-person cross-functional security team through Scrum methodology, increasing delivery velocity by 30% while coordinating executive-level reporting that translated technical initiatives into business KPIs for strategic investment decisions
Spearheaded Red Team adversary emulation exercises simulating APT tactics across Fortune 500 environments, developing custom infrastructure and tools that improved Blue Team detection coverage and refined organizational TTP defenses
Pioneered vulnerability research and zero-day analysis initiatives, building comprehensive incident response plans with specialized ransomware focus while optimizing detection policies to reduce noise by 40% without sacrificing true-positive rates

Organization

Board Member

Jul 2021 - Present

"The Global Information Assurance Certification (GIAC) Advisory Board is a merit-based, invitation-only panel of elite cybersecurity professionals recognized for their extensive expertise across various domains of information security."

Chapter Member

Jan 2025 - Present

"An organization dedicated to strengthening societal safety through information security awareness, enabling members to share knowledge, grow professionally, and collaborate on security initiatives."

AI Center of Excellence

Jun 2025 - Present

“A organization with a mission of uniting security professionals on a mission to democratize software security and solve its ever-evolving challenges with the power of Community."

Experience

“A specialized multinational firm providing expert third-party verification and grading services for various collectible items ensuring authenticity while maintaining strict client confidentiality and privacy protocols.”

Senior Security Engineer | Full-Time

Feb 2025 - Present

Directed 10-person cross-functional security team through Scrum methodology, increasing delivery velocity by 30% while coordinating executive-level reporting that translated technical initiatives into business KPIs for strategic investment decisions
Drove end-to-end unified risk management across the enterprise, aligning to executive impact objectives. Established 100% global visibility by aggregating security risks from AppSec, DevOps, Engineering, Cloud, and SecOps, and translating them into dashboards and scorecards for engineering teams—all delivered in under 3 months.
Coordinated exec‑level reporting on security initiatives, translating technical progress into KPIs that supported investment decisions across Security Architecture, Security Engineering and Security Operations.
Led Cloud Security and Security Operations modernization across a large-scale, multi-cloud environment spanning multiple AWS, GCP, Azure environments.

“Ethos is a technology-driven life insurance company that simplifies the process of obtaining coverage through a fully digital platform, leveraging data and modern underwriting to make life insurance more accessible and affordable.”

Senior Security Engineer | Full-Time

Apr 2024 - Feb 2025

Architected and Deployed CSPM in AWS 30% ahead of schedule; enabled continuous K8s posture alerting
Designed and Implemented SIEM strategy and AI‑powered SOAR pipeline that cut alert triage time by 55% and automated Level 1 SOC analysis.
Developed and implemented a comprehensive incident response plan from scratch, with a specialized focus on ransomware threats, enhancing organizational preparedness and resilience.
Implemented and tuned CrowdStrike policies, decreasing noisy detections by 40% while preserving true‑positive rate.

“Delta Dental, one of the largest, dental insurance providers in the U.S., serves over 80 million Americans and manages their PHI data through 39 independent member companies. It has a network of more than 152,000 participating dentists and more than 2000 workers nationwide.”

Senior Security Engineer - Red Team | Full-Time

Jan 2021 – Mar 2024

Orchestrated adversary emulation exercises by planning, executing, and analyzing complex attack scenarios and helped develop and refine adversaries' tactics, techniques, and procedures (TTPs).
Delivered comprehensive reports and KPIs to senior leadership, guiding strategic decision-making.
Developed and implemented infrastructure and tools in AWS, Azure, Python, and Terraform to augment red teaming capabilities, increasing TTP coverage and efficiency.
Collaborated with cross-functional teams to develop and execute tailored red-teaming strategies, helping improve Blue Team detection metrics.

Senior Security Engineer - Vulnerability Research | Full-Time

Jun 2020 – Jan 2021

Spearheaded vulnerability research initiatives, leading to discovering and remedying high-risk security flaws in hybrid cloud environments.
Developed custom exploits and mitigation techniques to address zero-day threats, safeguarding organizations against cyber-attacks.
Conducted penetration testing and vulnerability assessments on systems, networks, and applications to identify security weaknesses and provide recommendations for remediation.
Researched the latest security threats, vulnerabilities, and attack techniques while experimenting with new tools and methodologies to improve the offensive testing capabilities.

“HackerOne and Bugcrowd are pioneering platforms in the cybersecurity field, offering crowdsourced security testing through bug bounty programs and vulnerability disclosure initiatives.”

Bug Bounty Hunter | Security Researcher

Jan 2019 – Aug 2023

Discovered and responsibly disclosed security vulnerabilities across bug bounty programs on HackerOne and Bugcrowd.
Participated in both charity programs for technology companies, earning recognition for quality vulnerability reports and adhering to responsible disclosure practices.
Built practical expertise in offensive security research methodologies, focusing on web application security, API security, and OWASP Top 10 vulnerability classes.

“Synopsys, valued at over \\\$70 billion, is a global frontrunner in Electronic Design Automation (EDA), Semiconductor IP, application security solutions, and security consulting for Fortune 500 companies and international market leaders.”

Security Consultant | Full-Time

Jan 2018 – Jun 2020

Led security assessments for Fortune 500 companies, providing actionable recommendations to enhance resilience against cyber threats.
Developed and implemented customized security strategies to address specific threats and vulnerabilities, enhancing resilience and reducing risk exposure.
Collaborated with cross-functional teams to develop and implement tailored vulnerability remediations aligned with business objectives and regulatory requirements.

Associate Security Consultant | Full-Time

Dec 2016 – Jan 2018

Participated in diverse security engagements, identifying vulnerabilities and creating actionable remediation plans for clients across multiple industries.
Earned client commendations for delivering precise, actionable security recommendations that strengthened their security posture and cyber resilience.

"Cigital Inc. is a renowned leader in the cybersecurity market, specializing in software security consulting, training, and application security products across various domains, including but not limited to banking, finance, healthcare, and credit unions."

Associate Security Consultant | Full-Time

Jul 2016 – Dec 2016

Conducted security assessments including penetration testing, code reviews, and vulnerability analysis for clients in banking, healthcare, and financial services sectors.
Identified and documented security vulnerabilities in web applications, and network infrastructure, providing detailed remediation guidance.
Supported senior consultants in developing security testing methodologies and contributed to client deliverables and technical reports.

“University of Maryland - College Park (UMD) is a leading research institute that partners with government and businesses to address global challenges. It is also the largest university in both the state and the Washington metropolitan area.”

UMPD Security Analyst | Part-Time

Monitored security alerts and events to identify potential incidents and promptly initiate incident response procedures.
Collaborated with law enforcement to effectively handle and mitigate security incidents at the University of Maryland - College Park.

Education

Master of Cybersecurity Engineering

Bachelor of Information Technology