With over two decades of expertise in the cybersecurity and privacy domain, I have cultivated a multifaceted career as a Cybersecurity Manager, Engineer, Architect, and proactive Team Builder. My portfolio includes authoring four books, numerous blog posts, and developing a national standard, reflecting my commitment to advancing industry knowledge and practices.

I am a detail-oriented technologist with an innate curiosity and a perfectionist’s eye for detail, primarily focused on information security, privacy compliance, and risk management. My technical prowess spans security operations, cybersecurity architecture, cloud computing security, and system administration.

Throughout my career, I have served in high-stakes environments at leading organizations such as Facebook, LinkedIn, Cisco, Sephora, and PG&E, demonstrating a robust capability to manage complex security architectures and compliance mandates across varied platforms. My experience covers extensive work with multi-platform security systems, network monitoring, cloud services (AWS, Azure, GCP), and critical IT operations including server setup, virtualization, and disaster recovery.

Known for being a "one-man army," I excel not only in cybersecurity operations and cloud architecture but am also recognized as a subject matter expert in a wide array of regulatory frameworks including PCI DSS, ISO 27000 series, HIPAA, GDPR, CCPA/CPRA, and numerous NIST standards. My approach integrates deep technical skills with strategic oversight, ensuring robust, compliant IT environments that support and advance business objectives.

Connect with me as I continue to explore the intersection of technology and policy, driving security and privacy solutions that resonate across the industry.