Master of Science in Cybersecurity

2020 - 2022

New York University Tandon School of Engineering, Brooklyn, New York

Academic Achievement Award

Bachelor of Arts in Computer Science, minoring in Italian

2016 - 2018

University of Minnesota - Twin Cities, Minneapolis, Minnesota

Faculty-directed research regarding Machine Learning / Natural Language Processing, Association for Computing Machinery, Study Abroad and Intern in Florence, Italy

Full-Time PSEO (Postsecondary Enrollment Options)

2014 - 2016

University of Minnesota - Twin Cities, Minneapolis, Minnesota

During Junior and Senior years of high school

Specialist Master, Google Cloud Security Alliance

2023 - Present

Deloitte & Touche LLP

• Architected and led the technical delivery of multiple simultaneous SIEM and SOAR migration projects for a diverse portfolio of global clients, including a multinational manufacturer, a global semiconductor software corporation, a U.S. automotive giant, a global QSR, and a U.S.-based financial exchange. Directed seven cross-functional teams, managing all aspects of threat detection engineering, data ingestion and ETL, platform integrations, and SOAR playbook automation. Orchestrated seamless transitions to Chronicle SIEM and SOAR from legacy systems including ArcSight, LogicHub, Qradar, Phantom, Securonix, Splunk, and XSOAR.
• Presented at Google Cloud NEXT 2024, author of Future of the SOC: Evolution or Optimization whitepaper, guest on Google Cloud Security Podcast, 2024 Google Cloud Champion Innovator.

Manager, Google Cloud Security Alliance

2023

Deloitte & Touche LLP

• Led delivery of advanced SIEM migration and deployment solutions for global enterprises and government agencies. Drove innovations in threat detection engineering, custom third-party integrations, and incident response automation.
• Presented at Google Cloud NEXT 2023, 2023 Google Cloud Champion Innovator.

Senior Consultant, Google Cloud Security Alliance

2021 - 2023

Deloitte & Touche LLP

• Led concurrent cybersecurity engagements across diverse sectors, implementing Google Chronicle SIEM with a focus on detection rule development, posture assessment, incident response playbooks, and advanced analytics capabilities.
• Architected and developed a cloud-native advanced analytics platform to enhance enterprise cybersecurity threat detection and response capabilities (PACE). Led a team of 15 engineers and data scientists, overseeing planning, prioritization, and SCRUM task execution.
• Established and led the creation of a global Google Chronicle practice, defining standards and procedures for scoping, staffing, and technical delivery. Developed and delivered technical training materials to several global member firms.

Security Engineer II

2020 - 2021

The Michaels Companies

• Insourced management and administration of enterprise IDM platform, managing virtualized server infrastructure, application integrations, and user lifecycle management automation.
• Developed cyber threat intelligence program, delivering weekly briefings to executive stakeholders. Coordinated with vulnerability management partners to drive applicable remediations and drove threat detection content development within QRadar, Netskope, FireEye, and Proofpoint.
• Provided guidance to application teams across various company verticals as a Security Architect, specializing in Cloud migration and application modernization projects. Additionally created learning modules surrounding security best practices and industry standards to be taught to all engineers in a technology-agnostic manner.

Engineer, ECHO (Event Correlation and Hunting Operations) & TIDE (Threat Intelligence Detection Engineering)

2019 - 2020

Target Corporation

• Architected and built application to generate synthetic events to test all data feeds to SIEM to validate data pipeline stability and health, and expanded to test and validate all of Target's rule-based detection capabilities.
• Onboarded and migrated data feeds to onboard applications into custom ELK SIEM, parsing logs for proper consumption, and developing feature parity to COTS SIEMs using Python and JS. Additionally developed threat intelligence-driven rule-based threat detection content within SIEM.
• Created Grafana alerting on per-pipeline basis to better identify and remediate platform issues, and began foundation of program to automate the construction and development of net-new pipeline alerting.