About Me

I'm a cybersecurity researcher and leader with more than twenty years in the field.

I started at Lockheed Martin, where I spent a decade on some of the hardest cybersecurity problems in the national security space: cryptography, embedded systems, aircraft and satellites, hardware security, supply chain and third-party risk, and industrial control systems. The work blended best-of-breed commercial tooling with custom technology, some of it now patented. I was an early advocate for intelligence-driven defense, and I spent as much time defeating security mechanisms as designing them. I've carried both perspectives ever since.

From there, I joined Mayo Clinic as Chief Security Architect, the senior technical security leader building the program from the ground up alongside Mayo's CISO. Network security and segmentation, cloud, identity and access management, technology governance, and a full SIEM redeployment with the analytics to make it useful. Then to Eli Lilly as a Senior Director leading global information security architecture, where my team launched the work that mattered most for a modern pharma: network segmentation, deceptive technologies, ICS and manufacturing security, digital product cybersecurity, and data protection at scale.

After Lilly, I co-founded a boutique consultancy, grew it to over 20 people, and worked with over 100 organizations to build, mature, and reimagine their cybersecurity programs and capabilities as a partner, advisor, and CISO.

These days, I'm focused on the hard problems themselves. I spend my time deep in cryptography, RF and wireless, offensive security, quantum computing, and AI, challenging assumptions most people treat as settled. It's the most technically demanding work I've done. The premise is the point: questions where the established answer is either wrong or quietly untested.

One conviction sits under all of it. Technology can do extraordinary things, but only if it can be trusted, and trust has to be earned at the level of the assumptions nobody checks. I care about that more than I care about the result. The work should be honest, the people it protects come first, and how it gets done matters as much as what gets shipped. I think in terms of legacy rather than the next quarter, and the aim is to leave the field a little more trustworthy than I found it.

I work this way on purpose: nothing exists in isolation, so I search for what everyone else skips over — the signal about thirty degrees off from where the room is looking, where innovative thinking finds practical solutions to seemingly impossible problems.