I am a seasoned cybersecurity and technology leader with extensive experience building, managing, and optimizing security programs for organizations across industries including government, education, healthcare, legal, and private sector enterprises. Over the course of my career, I have held executive-level security and IT leadership positions, including serving as Chief Information Security Officer (CISO), Director of Technology, and Deputy Director of Cybersecurity at organizations with complex compliance, risk, and operational requirements.
My background spans both strategic leadership and hands-on program delivery. I have directed ISO 27001 certification initiatives, overseen NIST-aligned policy development, and led implementations of advanced technologies such as EDR/XDR platforms, Security Operations Centers (SOC), and vulnerability management programs. In addition, I have guided organizations through audit readiness, vendor risk management, and alignment with regulatory and contractual frameworks including Outside Counsel Guidelines, HIPAA, and emerging federal cybersecurity requirements.
One of my strengths is bridging technical expertise with executive communication. I frequently present to boards, executives, and government officials, translating complex security challenges into actionable strategies. During my tenure in the K-12 sector, I not only oversaw one of the largest school district cybersecurity programs in the nation but also served as a trusted public-facing spokesperson—presenting at national events such as the Consortium for School Networking (CoSN) and engaging with reporters and stakeholders. Similarly, in healthcare, I worked directly with CIOs and hospital administrators to ensure security and compliance during critical initiatives such as the ICD-10 conversion and major system upgrades.
I understand the unique pressures organizations face when balancing operations, compliance, and security. My approach as a fractional or virtual CISO is rooted in tailoring solutions to meet each client’s specific needs. This includes developing pragmatic policies, ensuring audit readiness, advising on third-party risk, and helping teams adopt security frameworks without creating unnecessary overhead. I am especially passionate about supporting small to midsize businesses, law firms, insurance agencies, and healthcare providers—organizations that require enterprise-level cybersecurity expertise but may not have the resources for a full-time executive security leader.
At every stage of my career, my mission has been to reduce risk, strengthen resilience, and empower organizations to operate with confidence in today’s evolving threat landscape. I bring not only technical and compliance expertise, but also the leadership, communication, and strategic vision needed to guide organizations through cybersecurity challenges with clarity and confidence.