Andrew Davidson

GenAI Engineer (Copilots · RAG · Agents) | SOC/IR/IAM | Security-by-Design | JHU Applied GenAI & DIT Candidate

Tacoma, Washington, United States

About

Cybersecurity analyst and writer (10+ yrs) turned GenAI builder. I’ve run SOC/IR/IAM in defense, federal, and enterprise: Splunk/Azure Sentinel/Defender, NIST/STIG, vuln mgmt (log4j), insider threat. Now I ship LLM assistants, RAG systems, and agent workflows with safety/guardrails to make triage faster and decisions explainable. JHU Applied Generative AI & Agentic AI (in progress). DIT candidate (Capella): agentic AI for vulnerability discovery in quantum contexts. Open to remote, contract/part-time SOC/IR/IAM + GenAI roles. Tools: LangChain/LangGraph, OpenAI/Anthropic/Gemini, Pinecone/FAISS/Chroma, Streamlit/FastAPI.

Experience

  • Cyber Security Specialist at Boaz Cybersecurity
    Jul 2026 - Present · 1 mo

  • Cybersecurity Writer & Principal Consultant at Boaz Cybersecurity LLC
    Dec 2022 - Present · 3 yrs 8 mos

    Produce cybersecurity content and threat intelligence briefs that bridge SOC/IR practice and emerging threats. Deliver consulting engagements: risk assessments, SIEM configuration (Splunk, Azure Sentinel), vulnerability management, IR runbooks for SMB and cloud-native clients. Automated vulnerability reporting with PowerShell and Defender APIs, reducing cycle time and error rates.

  • Cyber Security Analyst at Microsoft Quantum Security
    May 2024 - Aug 2024 · 4 mos

    Monitored Azure Sentinel in real time across quantum research environments; triaged/escalated high-severity incidents. Led insider threat investigations using a financial-link analysis platform (Shadow); delivered investigative reports for leadership. Built RBAC/IAM policies and automated egress auditing pipelines to protect sensitive infrastructure. Coordinated security controls with partner engineering teams to support advanced research operations.

  • System Analyst at TQI Solutions – PSNS IMF
    Feb 2022 - Dec 2022 · 11 mos

    Enforced STIG compliance across DoD-aligned systems and performed NIST-based security audits. Built Splunk dashboards for monitoring, vulnerability lifecycle reporting, and forensic analysis of CAD/CAM/FEA/CFD environments. Led remediation for critical vulnerabilities, including log4j; qualified production software via ACAS scans.

  • Information Technology Specialist at IMCOM – Department of the Army
    Feb 2021 - Oct 2021 · 9 mos

    Managed endpoint protection, patch orchestration, and vulnerability scanning for ~300 endpoints. Implemented access controls, IDS, and audit processes per DoD directives; maintained multi-user DB systems and complex telephony.