Professional Summary
Cybersecurity professional with over a decade of combined experience spanning information security management,
compliance, research security, software engineering, and physical security operations. Holds an active CISSP
certification with deep expertise in regulatory frameworks including NIST 800-171/172, DFARS 252.204-7012,
SOC 2, ISO 27001, and export control compliance (EAR/ITAR). Proven ability to bridge technical and
organizational domains—designing security programs, leading audits, advising executive leadership,
and implementing secure systems from the ground up. Currently pursuing a Master of Science in Cyber Defense
with a long-term goal of doctoral study. Committed to privacy-first design, OSINT-driven threat intelligence,
and continuous professional development.
Professional Experience
Research Security Specialist
The University of Washington — Seattle, WA
- Oversee daily security operations for university research programs, including information management, physical security, personnel security, and export control technical classifications.
- Create and implement security plans aligned with NIST 800-171/172 and DFARS 252.204-7012 for Principal Investigators to meet federal and industry compliance standards.
- Manage submissions to federal agencies including export license applications, commodity jurisdiction requests, and export classification requests.
- Perform compliance audits verifying adherence to University policies governing export-controlled research activities.
- Serve as subject matter expert on technology control plans, deemed export requirements, and international traffic in arms regulations.
February 2023 – Present
Information Security and Compliance Manager
Firstup (fka SocialChorus) — Remote
- Oversaw company-wide information security program and served as executive-level subject matter expert on security and compliance strategy.
- Led SOC 2 Type II and ISO 27001 certification audits from planning through successful completion.
- Implemented SIEM-based logging, alerting, and investigation workflows for security incident detection and response.
- Conducted risk assessments using the NIST 800-30 framework; produced risk registers and remediation roadmaps.
- Directed third-party penetration testing engagements and tracked remediation of findings.
- Trained staff on security best practices; collaborated cross-functionally with networking, desktop, systems, and development teams to close security gaps.
- Drafted and maintained security policies in coordination with audit, legal, and compliance teams.
- Reviewed vendors for information security posture and data governance compliance; co-managed vendor management program.
- Developed customer-facing security documentation, audit summaries, and trust center content.
- Responded to and managed security incidents through full lifecycle investigation and remediation.
January 2022 – February 2023
Implementations and Integrations Software Engineer
Firstup (fka SocialChorus) — Remote
- Implemented SaaS-based customer programs including Single Sign-On (SAML/OIDC), Secure File Transfer automation, and GDPR compliance configurations.
- Served as technical resource for client development teams during product integration and configuration engagements.
- Triaged, documented, and tracked customer-reported security concerns through to resolution in collaboration with internal development teams.
- Contributed to internal security reviews during feature development cycles.
January 2019 – January 2022
SAP Operations Analyst
The Boeing Company — Renton, WA
- Configured and maintained SAP enterprise infrastructure, enforcing security standards and ensuring high availability.
- Monitored and configured event-based alerting systems; served as incident manager for high-priority issues.
- Collaborated with software development teams to enforce security standards and improve system availability across enterprise platforms.
December 2018 – July 2019
Armed Security Officer
The Boeing Company — Renton, WA
- Provided armed physical security for sensitive aerospace manufacturing facilities.
- Enforced access control and monitored for unauthorized personnel or security anomalies.
Prior
Asset Protection Lead
Target — Renton, WA
- Led asset protection operations for high-volume retail location, including loss prevention, surveillance systems management, and incident investigations.
- Trained team members on detection techniques, emergency procedures, and documentation standards.
Prior
Intern — Engineer, Applied Physics
The Boeing Company — Everett, WA
- Supported engineering and applied physics research within aerospace manufacturing environments.
Prior
Sergeant, Aviation Ordnance
United States Marine Corps
- Supervised ordnance handling, storage, and accountability for aviation munitions in deployed and garrison environments.
- Trained and mentored junior Marines; maintained readiness standards under operational tempo.
- Received multiple Letters and Certificates of Commendation, Achievement Awards, and Commendation Medals.
- Recognized for outstanding military service by the St. Petersburg Times (now Tampa Bay Times) in 2009 and 2010.
Prior
Education
Master of Science — Cyber Defense
Dakota State University — Madison, SD
Technical track; pursuing advanced research toward doctoral candidacy.
Anticipated Spring 2026
Bachelor of Science — Information Technology and Administrative Management
Central Washington University — Ellensburg, WA
Cybersecurity Track.
Completed
Associate of Arts — Liberal Arts
Chaminade University of Honolulu — Honolulu, HI
General Studies.
Completed
Certifications & Credentials
- CISSP — Certified Information Systems Security Professional, ISC² (Active)
Technical & Professional Skills
Frameworks & Compliance
NIST 800-171/172, NIST 800-30, DFARS 252.204-7012, SOC 2, ISO 27001, EAR/ITAR, GDPR
Security Operations
SIEM implementation, incident response, penetration testing oversight, risk assessments, auditing
Intelligence & Privacy
OSINT collection and reporting, privacy-first design, export control analysis, technology control plans
Software & Integration
SSO (SAML/OIDC), SFTP automation, Python, JavaScript, HTML/CSS, AWS, Google Cloud, SAP
Vendor & Program Management
Vendor risk reviews, security documentation, customer-facing trust content, cross-functional team leadership
Physical Security
Armed security operations, access control, asset protection, surveillance systems
Community Engagement & Interests
- Missing Persons OSINT: Volunteers intelligence-gathering capabilities to support missing persons cases through open-source research and structured reporting.
- Digital Privacy Education: Instructs at-risk populations in practical data privacy and operational security practices.
- Home Lab & Network Engineering: Maintains a self-hosted home network environment supporting smart home automation and security monitoring research.
- Technical Diving: Certified SCUBA diver specializing in technical diving and Nitrox air mixture operations.
- Lifelong Learning: Actively pursuing graduate-level cybersecurity coursework and professional certifications; targeting doctoral study in cyber defense.
References
Available upon request.