United States
CISO with 16+ years leading security, risk, and compliance for SaaS and high-growth organizations. Proven track record of building scalable security programs that reduce risk, accelerate customer trust, and enable business growth in regulated environments (SOC 2, HIPAA, ISO 27001). Recognized for driving the secure adoption of AI through Responsible AI governance and AI-enabled security operations. Trusted advisor to executive leadership and boards on cybersecurity strategy, risk posture, and emerging technology.
• Lead enterprise security strategy for a SaaS platform, aligning cybersecurity, compliance, and risk management with business objectives and growth initiatives. • Present security posture, AI risk, and compliance updates to executive leadership and board-level stakeholders, strengthening governance and risk transparency. • Built and operationalized a Responsible AI governance framework (ISO 42001-aligned), establishing policies, risk controls, and oversight for enterprise AI adoption. • Implemented AI-driven vulnerability prioritization, reducing critical remediation timelines by 40% and significantly improving patch SLA adherence across cloud and application environments. • Integrated AI risk into existing security and compliance frameworks (SOC 2, NIST), positioning the organization ahead of emerging regulatory expectations. • Led security and compliance programs supporting SOC 2 Type II, ISO 27001, and NIST, successfully managing audits and reducing external audit friction. • Enhanced customer trust and revenue enablement by improving security due diligence processes and accelerating responses to client security assessments.
• Directed global IT and cybersecurity strategy for a 1,200+ employee digital health company in a regulated (HIPAA) environment. • Developed and executed a comprehensive cybersecurity roadmap aligned with SOC 2, HIPAA, ISO 27001, and NIST CSF. • Led transition to insourced security operations, reducing third-party dependency and improving response capabilities. • Oversaw global IT operations and governance across 170+ SaaS vendors, strengthening vendor risk management and operational efficiency. • Implemented governance and cost optimization initiatives that improved service delivery while reducing operational spend.
• Led enterprise security and engineering strategy across global SaaS operations, aligning security with product and business priorities. • Drove compliance across SOC 2, GDPR, ISO 27001, and NIST CSF, strengthening customer trust and regulatory readiness. • Implemented DevSecOps practices, including DAST and automated security testing, improving application security maturity. • Scaled global engineering operations, increasing development velocity and accelerating roadmap delivery by 40%. • Directed hybrid cloud strategy and automation initiatives to improve scalability, resilience, and cost efficiency.
• Led IT and security strategy supporting 20% YoY revenue growth across global SaaS operations. • Delivered 99.97% uptime across five mission-critical SaaS platforms serving customers in 85+ countries. • Led M&A technical integration efforts, modernizing infrastructure and achieving meaningful cost synergies. • Optimized cloud architecture, reducing hosting costs by 20% while improving performance and scalability.
• Directed global IT infrastructure across hybrid environments; improved scalability and security posture. • Established NIST-aligned security framework; led enterprise vulnerability mitigation efforts. • Drove post-acquisition integration efforts and launched enterprise-wide change management programs.
• Served in a variety of positions ranging from Staff Photographer to Company First Sergeant. • Served in progressively senior leadership rolls and gained diverse and valuable experience while performing the duties of such demanding roles as a Recruiter, Platoon Sergeant, Chief Training Development, and Senior Drill Sergeant.