Resume
Senior Security Engineer · 15+ years across software, IT, cloud, and security
15+ years building and shipping software, and securing the systems that people and businesses depend on. Contributor, team lead, and engineering manager. I build tools from scratch, automate processes, and work across teams to understand problems and solve them. Deep AWS expertise, FedRAMP and SOC 2 experience. I write code and I explain it to people who don't.
Experience
Dec 2022 – Present
Senior Security Engineer
CircleCI
- Cloud security, detection engineering, incident response, and security automation
- DLP, GRC, and compliance in FedRAMP and SOC 2 environments
- Endpoint security, employee fleet management, and physical office security
- Security tooling development and AI-assisted vulnerability auditing
- CI/CD pipeline security and engineering partnership
Key Results
- Built automated detection and incident response workflows, cutting response time by 40%
- Reduced false positive noise by 60% through tuned detection logic
- Automated escalation via PagerDuty and Slack APIs with evidence preservation
- Built AI-assisted code review and vulnerability auditing workflows
- Delivered FedRAMP and SOC 2 audit evidence under compressed timelines
Jan 2012 – Present
Founder & Lead Consultant
Southside CHI Solutions
- IT and cybersecurity consulting for Chicago small businesses
- Security assessments, endpoint management, cloud hardening, and incident response
- Security awareness training and AI adoption guidance
Jul 2021 – Oct 2022
Engineering Team Lead, Platform Integrations
Jellyvision
- People management, sprint planning, and architecture decisions
- Led team building internal APIs and third-party integrations on AWS
- Established code review standards, DORA metrics, and cross-team coordination
May 2021 – Jul 2021
Staff Software Engineer
Invoca
- DialogTech was acquired by Invoca
- System design and architecture through the transition
Apr 2019 – May 2021acquired
Lead Software Engineer
DialogTech
- Architecture, team operations, mentoring, and system design reviews
- Decomposed monolith into Python and Node.js microservices
- Designed and maintained CI/CD pipelines for automated build, test, and deploy
- AWS infrastructure design, maintenance, and security
- Incident root cause analysis
Sep 2015 – Apr 2019
Professional Services Engineer
DialogTech
- Built REST APIs, ETL jobs, custom dashboards, and third-party integrations
- Cloud infrastructure across multiple AWS environments
Oct 2012 – Sep 2015
PHP Developer / Database Administrator
Lifting Gear Hire
- Public and internal web applications, infrastructure patching
- Internal IT support and business-critical application improvements
- Built OCR/QR-based secure document workflow
Jul 2011 – Oct 2012
Web Developer / IT Support
A.W.T. World Trade
- Public and internal web applications
- Internal IT support for a company of fewer than 100 employees
initial commit
Skills
Cloud & Infrastructure Security
AWSAWS GovCloudIAMGuardDutySecurity HubCloudTrailS3 SecurityService Control PoliciesMulti-account AWSEvent-Driven ArchitectureMicroservicesCost OptimizationTerraformInfrastructure as CodeKubernetes / EKS Security
Detection & Response
Detection EngineeringThreat HuntingIncident ResponseTriage WorkflowsEDR ContainmentSecurity AlertingTabletop ExercisesSecurity RunbooksForensics-first ResponseThreat Intelligence / IOC Handling
Identity & Access
OktaSAMLSCIMAWS IAM Identity CenterLeast PrivilegeAccess ReviewsGitHub Organization AccessCredential Exposure Response
DLP & Data Protection
Data Loss PreventionData ClassificationEndpoint DLPCloud DLPAI/LLM Data Leakage PreventionPolicy EnforcementSensitive Data Discovery
GRC & Compliance
GRC Program ManagementFedRAMPSOC 2Policy ManagementRisk AssessmentVulnerability ManagementSecure SDLCAudit EvidenceControl ImplementationVanta
Software Engineering
PythonGoBashJavaScriptNode.jsPHPRuby on RailsREST APIsETL JobsCI/CDGitHubJenkinsSystem Design Reviews
AI / LLM Security
AI-assisted TriageDetection-as-codePrompt Injection AwarenessModel-side Data Leakage AwarenessResponsible AI AdoptionSecure AI Agent Usage
Community & Consulting
Southside CHI Solutions
Lead Consultant · Jan 2012 – Present
Chicago-based IT and cybersecurity consulting focused on helping small businesses improve their security posture. Services include security awareness training, centralized logging, endpoint management, patching, and safe AI agent adoption guidance.
Visit Southside CHI Solutions →