Associate Cloud Consultant (2021) → Cloud Consultant (2022) → Senior (2024)

• Lead customer engagements delivering secure cloud architectures and ATO guidance across DoD and government environments
• Direct CI/CD pipeline security for security across enterprise customer engagements, implementing automated vulnerability scanning, container image scanning, and compliance checks within GitLab CI pipelines
• Develop and deploy IaC using AWS CDK and Terraform — reusable security-hardened templates for VPCs, IAM, encryption, and logging
• Conduct threat modeling and secure architecture reviews for cloud-native applications
• Design IAM policies, network segmentation, and encryption aligned with zero-trust principles for multi-account environments
• Implement container security — image scanning, vulnerability remediation, hardened base images, secrets management
• Build automated security tooling in Python for compliance reporting and findings aggregation
• Mentor engineers and customer teams on secure design patterns and DevOps security
• Collaborate cross-functionally with engineering, operations, and compliance teams to embed security into the SDLC
• Open source contributor to AWS Labs amazon-bedrock-agentcore-samples — authored a CDK IaC template for a full-stack AI agent with AgentCore Runtime, RAG, and comprehensive security controls
• Architect and build Partner Hub, a full-stack internal application for managing partner relationships and hiring pipelines — React on ECS Fargate, API Gateway, Lambda, DynamoDB, Cognito with Amazon Federate SSO, deployed via CDK. Integrated an AI assistant powered by Bedrock AgentCore Runtime with a Strands SDK agent via WebSocket API Gateway for real-time streaming across 9 DynamoDB tool functions

• Administered enterprise security controls and GRC compliance tooling for production SAP environments

• Led multimillion-dollar GRC implementations across government and international clients, managing end-to-end security for cloud and on-premise enterprise applications