Security Architect with 25+ years of experience across application development, systems engineering, DevOps, and enterprise cloud security. I spend my days designing security architecture for large-scale, regulated environments and my evenings figuring out how the things I work on actually work.

Currently thinking a lot about AI security governance: what it means to secure agentic systems, where existing control frameworks hold up and where they don’t, and what practical oversight looks like when the review step degrades under volume. Some of that thinking ends up here.

I hold the CISSP, CCSP, and architect-level certifications across AWS, Azure, and Google Cloud. I’ve been in and around technology since before it was a career option, and that foundation still shapes how I approach problems.

More details available on my GitHub profile. The repo for this site is available there as well.

LinkedIn if that’s your preferred signal.

If you’re looking for the professional summary, there’s a resume available as well.