Cybersecurity leader with 8+ years of experience delivering security programs across enterprise, cloud, and product ecosystems. I specialize in building scalable, risk-driven security practices that align with business goals from regulatory compliance to product security and modern threat management. I have led end-to-end programs covering application security, vulnerability management, incident response, cloud security controls, and secure product lifecycle governance. I bring a strong track record of aligning with engineering, IT, and product teams to embed security into business processes and technical workflows. My background includes regulated sectors like critical infrastructure, but my expertise is industry-agnostic rooted in frameworks like NIST, NERC CIP, ISO, and SOC2, with practical experience managing vendor risk, customer trust, and cross-functional delivery. I also contribute to broader security initiatives through FIRST.org’s Red Team SIG, the vPAC Alliance, and the NERC SITES working group - shaping best practices across red teaming, product security, and cybersecurity maturity. I am passionate about helping modern organizations scale secure systems, navigate regulatory pressure, and enable responsible innovation whether in cloud-native environments, SaaS platforms, or connected products.