SUMMARY:

• Microsoft Active Directory Red Forest (ESAE) architecture and deployment.
• Microsoft Privileged Access Workstation (PAW) design and deployment.
• Microsoft Local Administrator Password Solution (LAPS) design and deployment.
• Microsoft Privileged Access Management (PAM) solutions design and deployment.
• Secure Development Lifecycle approach for infrastructure and development projects.
• Credential Theft Mitigation strategies, techniques, leading envisioning and architecture projects.
• Threat modeling of infrastructure and application architectures for Public and Private Sector organizations.
• Artificial Intelligence based cybersecurity (ANNs and Expert Systems).
• Threat intelligence engineering & analysis (Splunk, ATA, Fidelis, Dark Light, etc.).
• Trainer, instructor, and presenter on a wide range of cyber security topics to executive level and professional audiences .
• Deployment of infrastructure security solutions for Active Directory (Tier - 0) as well as data layer (Tier-1) and user layer (Tier-2).
• Identification and design of operational security methodologies across 25,000+ employee organizations.
• Design, development, and integration of security solutions for cloud and hybrid architectures (Azure and AWS).
• Penetration testing of infrastructure resources programmatically as well as social engineering methodologies.
• Development of Artificial Intelligence based threat intelligence engines.
• Quantum encryption/cryptography.

KEY TECHNICAL SKILLS:

• Artificial Intelligence (ANNs and Expert Systems design and development)
• Quantum Cryptography
• Python language
• Hadoop
• R/R Studio
• Cloudera
• Microsoft Azure
• Microsoft Active Directory
• Windows 2000 (NT5) Server to Server 2019 (engineer, analyst, consultant, & architect) (Windows NT4 engineer prior to AD).
• Microsoft Exchange Server
• Microsoft Systems Center Operations Manager (SCOM)
• MOM 2005 SCOM 2012 R2.
• Microsoft Systems Center Configuration Manager (SCCM)
• Microsoft desktop operating systems from Windows for Workgroups 3.11 to Windows 10.
• Microsoft Deployment Toolkit (MDT)
• Microsoft Public Key Infrastructure (PKI) architect/design, deploy, and administer.
• Windows Firewall with Advanced Security (WFAS) & IPSec design & deploy.
• Microsoft security architecture, engineering, hardening, monitoring, and forensics on all platforms
• Linux Debian, Caldera, & Red Hat
• Cisco Routing & Switching plus security
• Splunk, Fidelis, FireEye, and Bromium
• Enterprise Security Architecture analysis, design, and review.
• Risk Management Framework (RMF).

PROFESSIONAL EXPERIENCE:

Confidential

Chief Azure Cloud, AI/ML & Cybersecurity Solutions Architect

Responsibilities:

• Designed, consulted - on, and implemented Azure data analytics/data science/data warehousing platform solution architectures
• Delivered solutions focusing on service offerings of: Event Hub/Grid, IoT hub, Kafka, Azure Data Factory v2, Azure Data Lake Storage-GEN2, Azure SQL Data Warehouse/Synapse Analytics, Cosmo DB, HDInsight (Hadoop/Hive/Spark/Storm), Machine Learning Studio, Cognitive Services, as well as third-party AI/ML tooling in Azure (PyTorch, SciKt, etc.).
• Functional and operational design and architectural envisioning support for the USAF Data Services architecture in AF-GCSS CCE2 (Cloud One) Microsoft Azure GovCloud.
• Designed and drafted proposed solution architecture for Azure Data Analytics and Data Warehousing platform for AF Data Services team.
• Advised on and provided oversight of SMARTFM (Financial Management applications) Azure data platform designs for Accenture and AIS partners.
• Drafted and presented alternative SMARTFM Azure data integration architectures.
• Technical advisory, envisioning, and guidance for F-35/UIDES and LIMS-EV Microsoft Azure Data Analytics/Data Integration (DIP) platforms.
• Holistic security design and assurance advisory services for architecture within all Azure program design efforts.
• Provided formal training and instruction (via authoring documentation) on advanced cybersecurity and machine learning applications within Azure.
• Architectural envisioning of strategic Artificial Intelligence (AI) situational awareness platforms for human-machine partnering performance enhancement in mission support operations for Krone-Roper Initiative.
• Advised on and drafted proposed Rationalization & Modernization applications migration process design.
• Drafted proposed SIPRNet Azure CCE2 conceptual architecture and Statement of Objectives (SOO).
• Provided direct Azure platform technical support to Air Force program personnel.

Confidential, Colorado Springs, Colorado

Principal Cyber Threat Analyst - Emerging Technologies SME

Responsibilities:

• Advised on all emerging technologies to include Artificial Intelligence/Machine Learning, Data Science/Big Data Analytics, Cloud Architecture, and Mobility.
• Lead on Cloud and Mobility architecture planning strategies for Confidential with development and consulting on C2 structure for Confidential future operations and development initial strategy for Confidential projected architecture.
• Lead in supporting Cloud-hosted cybersecurity assessments and threat identification and mitigations for compliance with DODI 8510.01 (RMF) transition from DIACAP (Systems Categorizations, Security Plans, Initial & Final Assessments for Confidential .
• Additional task leadership operations including teaching AF and contractor analysts threat identification and mitigation by system and application type.
• Engineered enterprise scale defensive and offensive cybersecurity systems with AI threat intelligence oversight.
• Served as the AO s Architectural Design and Engineering SME for all program teams .
• Provides guidance and direction to ISSE/ISSM/ISSO personnel for correct artifact development and risk mitigation strategy formulation for compliance.
• Development of technical roadmaps and architecture planning for all cyber programs.

Confidential, Redmond, Washington

Principal Azure/Cybersecurity Architect

Responsibilities:

• Microsoft: MCS Architect/Consultant with Enterprise Cybersecurity Group designing and delivering(implementing) CTM (ESAE, PAW, LAPS, etc.) solutions for multiple commercial and public sector customers in both on - premise and Azure subscription-based service models.
• Knows the Microsoft solution architecture service delivery model from pre-sales to project wrap as well as the customer experience vision and the Microsoft way .
• Designed technically and politically complex multi-platform enterprise security architectural solutions for multiple public sector as well as private sector.
• Designed R&M process for over 8,000 applications and migration into Azure.
• Lead and managed direct reports in excess of 44 team members.
• Crafted initial response (IR) and post-breach strategic recovery strategies and implementation programs for very large and complex organizations.
• Designed and developed Artificial Intelligence situational awareness and threat intelligence systems leveraging Artificial Neural Networks (ANNs), Deep Learning, and Expert Systems.
• Artificial Intelligence (AI) Artificial Neural Networks (ANNs) and Expert Systems architecture for threat intelligence analysis and situational awareness (SA) automated communications. Machine learning application development for pre-cursor Artificial Intelligence systems. Quantum computing systems application development with Python on Quantum Machine Instruction (QMI).
• Designed, developed, integrated, and managed DevOps and DevSecOps.
• Expert in architecture and integration of all Azure PaaS and IaaS offerings (i.e. - Azure Synapse Analytics (formerly SQL Data Warehouse), Machine Learning Studio, Azure Data Factory, Azure Data Lake Storage, Azure Analysis Services, HDInsight (Hive/Storm/Spark), Azure Streaming Analytics (and Apache Kafka), Azure Event Hub/Grid, Azure Service Bus, Azure App Service, Azure API Gateway, Azure Functions, Azure Kubernetes Service, Docker, Microservices, App Fabric, etc.
• Extensive security architectural design experience with IPSec (network isolation), TCP/IP based network security solutions, PKI (Public Key Infrastructure), and cross-forest/domain enhanced security management strategies.
• Enhanced Security Administrative Environment (ESAE/Red Forest) and Privileged Access Workstation (PAW) design and deployment expert.
• Architected complex Microsoft Azure cloud deployments for compute and application ecosystems on an extended enterprise scale.
• Threat Intelligence and analysis tools expert: ATA, Splunk, Fidelis, FireEye, and DarkLight.
• Politically astute that is highly adept leading conversations at the executive, CxO, and Board level to map solutions to organizational strategic objectives and moving through resistance.
• Standards and compliance expert: NIST, STIG, DISA, NISPOM, PCI, SOX, HIPAA, DoDI 8500.01, DoDI 8510.01, DoDI 8530.1, DoD 857.01-M, CJCSM 6510.01B, POA&M and RAR processes.
• Expert in supporting national defense operations and networks: C2BMC, DOD C&C practices, JWICS/SIPR/NIPR, general intelligence collection/analysis and warfighting capabilities.
• Led and mentored extensive software engineering teams and associated projects with emphasis on secure software development for scientific research purposes and applications within public and private sector client organizations.
• Advised and guided CIO, CTO, COO, and CISO leadership positions and related senior leadership ( corporate and government) in strategic business planning regarding information technology application in infrastructure, software engineering, and cybersecurity.
• Internally managed and led business development and strategic business planning initiatives in increasing customer base (revenue) as well as establishing and affirming long term business relationship development and venture cooperation.
• Designed intensive auditing and compliance processes and protocols with extensive documentation for multiple clients and industries (PCI, SOX, HIPAA, NIST/SP 800-53, & ISO).
• Engineered large scale information technology enterprise infrastructures and application development solutions for major corporations and public sector entities.
• Developed and taught internal professional and technical development initiatives to increase professional staff knowledge, effectiveness, and drive productivity as well as satisfaction.
• Initial engineering of Artificial Intelligence (early stage) systems for cybersecurity hunter-killer operations.

Confidential, Herndon, Virginia

Principal Systems Engineer

Responsibilities:

• Chief infrastructure architect for Active Directory and Exchange design and implementation.
• Guided and designed overall technology strategy for the Special Agent in Charge (SAC).
• Designed and administered an enterprise scale network infrastructure and application development environment for the Federal Bureau of Investigation (FBI).
• Served as the subject matter expert for the Cincinnati Division of the FBI, post systems implementation under the Trilogy Project; training and guiding the Supervisory Information Technology Specialist (SITS) in systems integration, maintenance, training and development.
• Engineered support infrastructure for the Virtual Case File (VCF) system and application development support platform.
• Authored training and development programs and materials for systems engineers, systems administrators, and software development engineers for large scale project management and program management.
• Served as threat intelligence subject matter expert to the Joint Terrorism Taskforce (JTTF) team members and federal officers.

Confidential, Alexandria, Virginia

Lead Network Engineer

Responsibilities:

• Planned and integrated network infrastructure hardware and network operating systems (Cisco, HP, and Microsoft NOS - Active Directory) in Confidential Marine Safety Offices (MSOs), Shore Side Detachments (SSDs) and onboard ships of the intercostal waterway and river fleets.
• Designed strategic operations readiness and emergency operations response programs for group and detachment level commands (SOPs, COOPS, and DRPs).
• Created training material for Confidential IT Specialists and management doctrine addendums for IT systems leadership (officers).

Confidential, Nashua, New Hampshire

Senior Programming Consultant

Responsibilities:

• Created and administered technical support infrastructure and management programs for in house developed software.
• Served as liaison to all major business customers for support of their software use and internal engineering applications both in a technical expert and business development capacity.
• Developed and managed service desk operational procedures as well as protocol and procedures for technical support specialists.
• Managed and mentored technical support specialists and advised leadership of support management.
• Advised software engineers on best practices in development and lifecycle development practices.

Confidential, Washington

Senior Support Escalation Engineer

Responsibilities:

• Tier three and higher technical engineering support for Microsoft Windows 98/NT4/2000 Server, Exchange Server 5.5/2000, Visual Basic, and FoxPro.
• Long term customer engineering solution support for implementation and support of Microsoft enterprise networking systems (NT through Active Directory) and application development (VB).
• Served as team lead and mentor for other support engineers and technical trainer.
• Designed staffing and analysis metrics software and processes for support volume coverage and delivery.