About Me
I am a seasoned security researcher and engineer with over a decade of experience specializing in threat intelligence, automation, and scalable security infrastructure. My career has been driven by a passion for developing innovative solutions that enhance security operations and enable teams to work more efficiently.
Currently serving as Staff Security Engineer at Google, I lead the technical direction and development of critical internal security tooling platforms. My expertise encompasses threat intelligence analysis, network forensics, cloud infrastructure architecture, and automation engineering, with a proven track record of delivering enterprise-grade solutions that scale.
Threat Intelligence & Network Forensics
95%
Python Development
100%
Linux Systems Administration
80%
Cloud Infrastructure
80%
Professional Experience
November 2022 - Present
Google (acquired Mandiant in 2022)
Staff Security Engineer
- Lead technical architecture and development of enterprise-scale security tooling platforms serving Google's Threat Intelligence Group
- Design and implement cloud-native infrastructure solutions on Google Cloud Platform (GCP) for security operations
- Architect and deploy containerized applications with robust CI/CD pipelines and automated testing frameworks
- Provide senior-level technical leadership, mentoring junior engineers and driving engineering best practices
- Develop comprehensive testing strategies including unit, integration, and end-to-end testing for production systems
- Establish technical documentation standards and maintain critical system documentation for security tooling
March 2018 - November 2022
Mandiant
Principal Security Researcher → Senior Security Researcher
- Led cross-functional team developing and delivering tactical security solutions to threat analysts and researchers
- Architected and delivered enterprise-scale threat analysis platform supporting global security operations
- Embedded with engineering teams to bridge gap between security requirements and technical implementation
- Designed and deployed cloud-native applications across multiple SaaS and PaaS platforms
- Implemented production monitoring and troubleshooting systems for critical security infrastructure
- Established technical standards and best practices for security tool development and deployment
October 2017 - March 2018
IBM
Intelligence Developer
- Designed and implemented scalable threat intelligence infrastructure supporting enterprise security operations
- Developed enterprise-grade Synapse API with custom middleware implementing role-based access control and advanced rate limiting
- Led migration of legacy systems to modern containerized infrastructure with zero-downtime deployment
- Architected and delivered production-ready Synapse UI using Python Flask framework with responsive design
- Established comprehensive CI/CD pipeline for automated testing and deployment of intelligence systems
September 2013 - October 2017
EMC
Principal Security Engineer
- Architected and implemented enterprise-grade Threat Intelligence framework supporting global security operations
- Served as senior incident response analyst, leading escalations and coordinating multi-team efforts during critical security incidents
- Conducted advanced threat hunting operations and performed comprehensive static and dynamic malware analysis
- Designed, deployed, and maintained high-availability clustered Threat Intelligence curation platform
- Managed and optimized multiple large-scale high-performance computing environments for security analytics
- Presented technical research on Intelligence, Surveillance, and Reconnaissance (ISR) automation at internal RSA conference
February 2011 - September 2013
MIT Lincoln Laboratory
Security Analyst
- Designed and implemented enterprise-scale Splunk deployment supporting real-time security monitoring and analytics
- Developed and deployed advanced network threat detection systems and automated response capabilities
- Conducted dynamic malware reverse engineering and analysis to extract threat intelligence indicators
- Performed comprehensive network traffic analysis and correlation with third-party threat intelligence feeds
- Led post-incident threat intelligence gathering and indicator development for threat hunting operations
- Managed daily security operations including incident triage, investigation, and response coordination
Technical Skills
Development
Python
JavaScript
Scala
Infrastructure & DevOps
Linux Administration
Cloud Infrastructure
Docker & Containerization
Security & Analysis
Threat Intelligence
Network Forensics
Malware Analysis
Side Projects & Interests
Raspberry Pi Kubernetes Cluster
Enterprise-grade home lab infrastructure utilizing Raspberry Pi nodes for advanced container orchestration and microservices experimentation.
Cloudflare Tunnel Integration
Zero-trust network architecture implementation using Cloudflare's advanced tunneling technology for secure remote access to home services.
Traefik Reverse Proxy
Production-grade reverse proxy and load balancer deployment with automated SSL certificate management and service discovery.
Home Assistant Automation
Advanced home automation platform with custom integrations for IoT device management and intelligent workflow orchestration.
OCR Wood Stove Monitoring
Innovative IoT solution combining thermocouple sensors with optical character recognition for automated temperature monitoring and alerting.
Security Monitoring Stack
Comprehensive security operations center deployment featuring Wazuh SIEM, Graylog log management, and Zeek & Suricata intrusion detection systems.
Education
2013
Western Governors University
Master of Science in Information Security and Assurance
2010
Wentworth Institute of Technology
Bachelor of Science in Computer Networking and Information Systems