Sacramento, California, United States
I’m an IT and Security leader with end‑to‑end ownership of information security, IT operations, and compliance programs in regulated SaaS environments. Currently, I serve as Head of IT & Security at Intellaegis, where I’m responsible for security strategy and execution, SOC 2 Type II audits, customer security assurance, and the technical control plane that underpins a secure, scalable platform. I operate at the intersection of executive governance, audit defensibility, and hands‑on engineering—bridging leadership expectations with real‑world operational realities. My work focuses heavily on identity‑first Zero Trust, cloud security, and practical security architecture. I design and govern environments built on Microsoft Entra ID (Conditional Access, PIM), modern endpoint security (Intune, Defender for Endpoint, Autopilot), and AWS cloud platforms secured through least‑privilege IAM and native protections. I also own detection and response capabilities, supporting incident escalation and post‑incident remediation in production environments. In addition to security leadership, I oversee IT and platform operations where they intersect with risk, identity, and trust. I’ve built automation with PowerShell, Python, and Microsoft Power Platform to reduce operational toil, improve consistency, and support auditability—while keeping the organization aligned to business priorities rather than theoretical models. I regularly act as the authoritative security representative for customer audits, security questionnaires, and vendor due‑diligence reviews, including engagements with financial‑institution clients. I’m known for building programs that are accurate, auditable, and commercially realistic—security that enables the business instead of slowing it down. Over my career, I’ve worked across security, cloud platforms, enterprise infrastructure, and monitoring systems, giving me a strong foundation in system design, escalation management, and operational discipline. I hold the CISSP, AWS Solutions Architect – Associate, Microsoft Certified: Azure Fundamentals, AWS Cloud Practitioner, CompTIA Security+, GIAC GSEC, and ITIL v2 Foundations certifications. I enjoy working with teams that value clarity, accountability, and pragmatic engineering—and I’m always interested in connecting with others building secure, scalable systems.
• Own enterprise wide IT and security strategy, architecture, and operations, serving as the senior authority for cybersecurity risk, compliance, and technology decisions. • Designed and implemented a Zero Trust security architecture centered on identity, device trust, least privilege, and continuous verification. • Primary owner of Microsoft Defender for Endpoint and Defender XDR, used as the organization’s core vulnerability management and detection platform, with alert correlation and investigation in Microsoft Sentinel (SIEM). • Led annual SOC 2 audits and multiple customer security audits aligned to SOC 2 Trust Services Criteria. • Operationalized the CIS Critical Security Controls, translating framework requirements into actionable and measurable security controls. • Architected a cloud first, SASE based remote work environment supporting a fully distributed workforce. • Reduced AWS cloud spend by ~50% while maintaining security posture, availability, and performance. • Implemented enterprise identity controls including Conditional Access, Privileged Identity Management (PIM), and Identity Governance (RBAC and self service). • Designed and deployed Windows Autopilot–based secure endpoint provisioning, integrating device trust into the security model. • Led security and IT automation initiatives using PowerShell and Microsoft Power Platform, eliminating manual processes and saving ~40 hours per week. • Act as executive liaison for customers, auditors, and internal stakeholders on security posture, risk management, and compliance.
• Mastered Splunk queries and dashboard creation, tailoring them to meet precise customer needs and specifications. • Partnered with cross-functional teams to establish clear visualization and data consumption standards, ensuring alignment with operational, security, and management objectives. • Showcased and refined developed solutions through active feedback, demonstrating a commitment to client satisfaction and continuous improvement. • Seamlessly integrated third-party data sources, scripted API imports, and generated field extractions, enhancing data accessibility and analysis. • Advanced the system’s efficiency by configuring summary indexing, report acceleration, and deploying optimized Apps and Add-ons.
• Served as the principal IT security architect, engineering robust security systems and practices to safeguard sensitive customer environments. • Functioned as a critical escalation point, resolving complex technical challenges and ensuring customer satisfaction. • Partnered with sales teams to promote and sell comprehensive software and service solutions, leveraging deep knowledge of HPE products and technology integrations. • Conducted demonstrations of proposed solutions and software suites, educating customers on their value and functionality. • Fostered strong relationships with customers and vendor account teams, aiming to become a trusted advisor in key accounts. • Oversaw complex technical proposals, ensuring accuracy and technical integrity through final reviews and edits. • Produced professional deliverables, including configurations, whiteboards, statements of work, and as-built documents, in a timely manner. • Ensured seamless information flow and coordination between account teams and consulting delivery teams through adherence to established processes. • Traveled as necessary to engage with customers across the US, with a particular focus on the East Coast. • Assumed all responsibilities outlined in the preceding role of Senior Technical Operations Analyst.
• Build end-to-end corporate infrastructure including Active Directory, vSphere, ISCSI Storage, SharePoint and supporting IIS systems, backups, network, wireless, provisioning and inventory, and other systems to support corporate goals and initiatives. • Provide technical and educational support to junior staff. Support will include installing, configuring, troubleshooting, deploying, upgrading, imaging, and repairing server hardware and software. • Establishing and maintaining networks, servers, and systems by designing, proactively managing, and troubleshooting network systems. • Setup and maintain working lab with full integration of all supported HP software • Setup and deploy on-demand virtual machines for demo purposes at the request of Sales to help facilitate pre-sales activities and demos. • Recommending new technologies and solutions to proactively support multiple environments. • Prepare documentation, checklist, training, and standards documents to ensure a high-quality of service delivery and maximize efficiency and effectiveness
• Assist in planning, deployment, and configuration of the HP Software Infrastructure including BSM 9.x (with all modules), OO 9.x, SiteScope 11.x, NNMi 9.x, NA 9.x, OM 9.x and their integrations. • Assist the migration from HP SaaS BSM to In-House. • Manage day-to-day operations and health of HP Software infrastructure • Coordinate and execute System, Software, and Security patches and updates for the HP software suite and their operating systems. • Design process and procedure around the use and maintenance of the HP Software suite. • Design and delivery end-user and administration training.
• Intact Lab management and Competitive Analysis environment for BMC and HP Enterprise SW Support • BSM system design and integration for a major branch of the Department of Defense • Troubleshooting complex, multiple system integrations. • Installation and integration of HP Software applications including uCMDB, DDM, Release Control, Service Manager, BSM and SiteScope for test, production and demonstration. • Design, develop, deploy and maintain SharePoint applications • End-to-End infrastructure design and support including network, Active Directory, storage, backup, antivirus, end-user desktops, remote access, email and Cloud infrastructure. • Build training environment and demonstrate new application versions and integrations as they become avalable.
Responsible for training and enablement for the HP SaaS Service Operations Center as well as development and design of VMware ESX test lab environment. Design and Administration of SharePoint applications for Knowledge Management, Project Management, Training Scheduling and On-Demand request as well as specific applications as needed.
Develops and conducts programs to train employees or customers. Confer with management and Delivery Team to determine training objectives. Write training programs, including outline, text, and handouts, tests, and designs laboratory exercises to apply knowledge of HP Applications. Schedules classes based on classroom and equipment availability. Demonstrates procedures being taught following course outline. Observes trainees in laboratory and answers trainees' questions. Participates in meetings, seminars, and training sessions to obtain information useful to training facility and integrates information into training program.