Sr. Application Security Engineer / Security Program Lead at Nike (2021-01 – Present)
- Built and operationalized secure-by-design programs for finance and corporate platform initiatives
- Established AI security governance and end-to-end assessment workflows for enterprise AI tools
- Designed structured assessment deliverables: SOPs, process guides, gap frameworks, trackers, checklists
- Implemented automation-backed operations improving assessment consistency and tracking accuracy
- Led enterprise vulnerability management modernization across multiple engineering orgs
Nike (2021-01 – Present)
- Integrated security into CI/CD pipelines via Jenkins across engineering orgs
- Built the Foundational Image Remediation program — surfaced 10,000+ vulnerabilities tied to legacy golden images across AWS, GCP, Azure, Alibaba, and SAP
- Coordinated remediation with global engineering teams; defined approved image standards enterprise-wide
- Program still operating today on a weekly cadence
Senior Security Engineer at Fiserv (2016-01 – 2021-12)
- Built vulnerability management processes across banking and payment platforms
- Executed enterprise-scale vulnerability management platform migration preserving risk visibility across business units
- Led architecture reviews for high-risk financial applications
- Supported PKI and secrets management for internal and external API integration security
Fiserv (2016-01 – 2021-12)
- Built HashiCorp Vault PKI infrastructure supporting API security across banking and payment platforms
- Led enterprise vulnerability management platform migration — Qualys to Tenable Nessus Security Center — preserving risk visibility across business units
Technical Program Manager — Security & Hospital Merger at Northside Medical (2014-01 – 2016-12)
- Supported security and integration workstreams during merger and acquisition
- Operated across HIPAA, SOX, and PII requirements with compliance oversight
- Identified and triaged a significant security breach; coordinated handoff to Mandiant Incident Response
- Supported continuity and regulatory alignment through merger and incident response activities
Lead Security Engineer at LGS Innovations (2010-01 – 2014-12)
- Reported directly to the CISO; translated DoD-aligned corporate security policies into operational technical programs
- Built and deployed enterprise MDM solution for mobile device management; hired and transitioned operations to a dedicated analyst
- Stood up SIEM platform end-to-end — onboarded logs from all required network devices per DoD standards; hired security analyst for ongoing monitoring
- Led the company's first third-party security audit; remediated findings and passed verification audit six months later
- Configured network data collection for R&D security research using port mirroring and packet capture to support analysis teams
LGS Innovations (2010-01 – 2014-12)
- Stood up LogRhythm SIEM end-to-end; hired and onboarded an analyst to operate it
- Built and deployed enterprise MDM solution; transitioned operations to a dedicated analyst
- Built the enterprise firewall program; handed off to operations once stable
- Hired and onboarded analysts to run each program after handoff
Tactical Data Network Specialist (MOS 0656) at United States Marine Corps (2006-01 – 2010-12)
- Deployed in support of OIF 06-08; built and maintained SIPR/NIPR networks in forward-deployed environments
- Installed, configured, and maintained tactical network infrastructure including routers, switches, encryption devices, and servers in operational settings
- Promoted to Corporal (E-4) — Meritorious Mast for communications restoration under hostile conditions
- Led field communications readiness and team training for deployed network operations
