Skip to main content

About

Senior InfoSec Engineer at Cloud.gov. Cloud platform security, identity federation, and compliance automation — the kind you can actually ship. Homelab enthusiast, reformed small-business technician, perpetual tinkerer.

Views are my own, not my employer's.

How I got here

My first computer was a Tandy 286 — the Radio Shack floor model. I upgraded it to Windows 3.1 using thirty-something floppies. By the late 90s I was on Geocities; by the early 2000s I was running a self-hosted PHP forum on a PC under my bed with 500+ users. That turned into a decade fixing computers for small businesses around Harrisburg, PA, which turned into infrastructure, which turned into security.

The pivot: recovering a graduate student's thesis from an MBR virus. Classic "I need help, here's pizza" situation. To this day, when a bad CVE drops, I bring pastries for the response team.

Career

Cloud.gov 2023 – present
Cloud security architecture and federal compliance for a FedRAMP Moderate platform. NIST 800-53 Rev 4 → Rev 5 transition.
NIH 2014 – 2023
HPC site reliability → enterprise vulnerability management across 100,000+ assets and 27 Institutes → security engineering for research infrastructure. Led the Log4j response. Got to burn in 8-way H100 nodes.
Independent consultant 2005 – 2014
House calls to infrastructure management. A decade of learning how things break in the real world.

How I think about security

Security should enable work, not block it. The best controls are invisible — users never notice them because they just work. If developers can't deploy their code, they'll find a workaround. Make the secure path the easy path.

Automation isn't about replacing people. It's about freeing them from clicking buttons so they can do interesting work. AI security is about governance as much as tech — the hard problems are the humans, policies, and processes around the models.

Outside work

My homelab grew from one Raspberry Pi in 2015 to a Dell PowerEdge R910, a fleet of Pis, and far too many containers. I run my own SIEM, a self-hosted password manager, and whatever I'm experimenting with that week. I've burned out a GPU pushing local LLM inference too hard and taken down my home network for hours trying VLAN segmentation just to see how it works.

I'm deep into AI/LLM experimentation — running models locally, building multi-agent orchestration, and figuring out how to secure these systems in production. See the current stack on uses, what I'm building on projects, and what I'm focused on right now on now.

Connect

GitHub · LinkedIn · RSS