Skip to content

Resume

Senior Security Engineer · 15+ years across software, IT, cloud, and security

15+ years building and shipping software, and securing the systems that people and businesses depend on. Contributor, team lead, and engineering manager. I build tools from scratch, automate processes, and work across teams to understand problems and solve them. Deep AWS expertise, FedRAMP and SOC 2 experience. I write code and I explain it to people who don't.

Experience

Dec 2022 – Present

Senior Security Engineer

CircleCI

  • Cloud security, detection engineering, incident response, and security automation
  • DLP, GRC, and compliance in FedRAMP and SOC 2 environments
  • Endpoint security, employee fleet management, and physical office security
  • Security tooling development and AI-assisted vulnerability auditing
  • CI/CD pipeline security and engineering partnership

Key Results

  • Built automated detection and incident response workflows, cutting response time by 40%
  • Reduced false positive noise by 60% through tuned detection logic
  • Automated escalation via PagerDuty and Slack APIs with evidence preservation
  • Built AI-assisted code review and vulnerability auditing workflows
  • Delivered FedRAMP and SOC 2 audit evidence under compressed timelines
Jan 2012 – Present

Founder & Lead Consultant

Southside CHI Solutions

  • IT and cybersecurity consulting for Chicago small businesses
  • Security assessments, endpoint management, cloud hardening, and incident response
  • Security awareness training and AI adoption guidance
Jul 2021 – Oct 2022

Engineering Team Lead, Platform Integrations

Jellyvision

  • People management, sprint planning, and architecture decisions
  • Led team building internal APIs and third-party integrations on AWS
  • Established code review standards, DORA metrics, and cross-team coordination
May 2021 – Jul 2021

Staff Software Engineer

Invoca

  • DialogTech was acquired by Invoca
  • System design and architecture through the transition
Apr 2019 – May 2021acquired

Lead Software Engineer

DialogTech

  • Architecture, team operations, mentoring, and system design reviews
  • Decomposed monolith into Python and Node.js microservices
  • Designed and maintained CI/CD pipelines for automated build, test, and deploy
  • AWS infrastructure design, maintenance, and security
  • Incident root cause analysis
Sep 2015 – Apr 2019

Professional Services Engineer

DialogTech

  • Built REST APIs, ETL jobs, custom dashboards, and third-party integrations
  • Cloud infrastructure across multiple AWS environments
Oct 2012 – Sep 2015

PHP Developer / Database Administrator

Lifting Gear Hire

  • Public and internal web applications, infrastructure patching
  • Internal IT support and business-critical application improvements
  • Built OCR/QR-based secure document workflow
Jul 2011 – Oct 2012

Web Developer / IT Support

A.W.T. World Trade

  • Public and internal web applications
  • Internal IT support for a company of fewer than 100 employees

initial commit

Skills

Cloud & Infrastructure Security

AWSAWS GovCloudIAMGuardDutySecurity HubCloudTrailS3 SecurityService Control PoliciesMulti-account AWSEvent-Driven ArchitectureMicroservicesCost OptimizationTerraformInfrastructure as CodeKubernetes / EKS Security

Detection & Response

Detection EngineeringThreat HuntingIncident ResponseTriage WorkflowsEDR ContainmentSecurity AlertingTabletop ExercisesSecurity RunbooksForensics-first ResponseThreat Intelligence / IOC Handling

Identity & Access

OktaSAMLSCIMAWS IAM Identity CenterLeast PrivilegeAccess ReviewsGitHub Organization AccessCredential Exposure Response

DLP & Data Protection

Data Loss PreventionData ClassificationEndpoint DLPCloud DLPAI/LLM Data Leakage PreventionPolicy EnforcementSensitive Data Discovery

GRC & Compliance

GRC Program ManagementFedRAMPSOC 2Policy ManagementRisk AssessmentVulnerability ManagementSecure SDLCAudit EvidenceControl ImplementationVanta

Software Engineering

PythonGoBashJavaScriptNode.jsPHPRuby on RailsREST APIsETL JobsCI/CDGitHubJenkinsSystem Design Reviews

AI / LLM Security

AI-assisted TriageDetection-as-codePrompt Injection AwarenessModel-side Data Leakage AwarenessResponsible AI AdoptionSecure AI Agent Usage

Community & Consulting

Southside CHI Solutions

Lead Consultant · Jan 2012 – Present

Chicago-based IT and cybersecurity consulting focused on helping small businesses improve their security posture. Services include security awareness training, centralized logging, endpoint management, patching, and safe AI agent adoption guidance.

Visit Southside CHI Solutions →