Solutions Architecture & Cloud Security
Translating complex cloud and security challenges into technical solutions — across architecture, automation, and data protection.
Quick Navigation
Core Competencies
Cloud, security, and data — the technical depth behind every solution
Cloud Architecture
- AWS: EC2, ALB, ASG, VPC, S3, IAM, ACM
- Terraform: Infrastructure as Code
- Virtualization: Hyper-V, VMware
- Networking: SD-WAN, Firewalls, DNS
Automation & Integration
- GitHub Actions: CI/CD Pipelines
- Ansible: Configuration Management
- Platform: Launch Templates, ASG, rolling deploys
- Scripting: Python, Bash, PowerShell
Security & Compliance
- Identity: Entra ID (Azure AD), IAM
- Frameworks: NIST, CIS, HIPAA, ITAR
- Endpoint: SentinelOne, Huntress
- GRC: Auditing, Policy, DR/BCP
Data Protection & Recovery
- Oracle: DBA, RAC, GoldenGate, performance tuning
- SQL: Migration, compliance reporting
- Experience: 5+ years database administration
Professional Skills
Non-technical skills that shape how I work
Collaboration
Cross-functional teamwork, stakeholder engagement, and building consensus across technical and business teams.
Mentorship
Knowledge sharing, team development, and guiding junior professionals through complex technical challenges.
Communication
Technical writing, presentation skills, and translating complex concepts for diverse audiences.
Documentation
Process documentation, technical specifications, and maintaining comprehensive knowledge bases.
Multitasking
Managing multiple projects simultaneously while maintaining quality and meeting deadlines.
Process Management
Agile methodologies, ITIL practices, and implementing structured change management processes.
Toolkit
Technologies I work with daily
Professional Timeline
My journey in technology and security
Senior Security Engineer
EchoStar / Dish Network | Denver, CO
- Designed and built an event-driven firewall change automation platform using AWS Lambda, Step Functions, and SQS, reducing change request processing from 5 business days to 15 minutes — earning VP-level recognition across InfoSec, IT Ops, and Security Architecture.
- Developed a Python-based normalization engine achieving 92% automated execution success rate across 1,000+ legacy network policy datasets, enabling automated validation and GitOps deployment of firewall rules.
- Established GitOps infrastructure pipeline using Terraform and GitLab CI/CD, codifying security standards as Infrastructure-as-Code and eliminating manual ticketing dependencies for provisioning workflows — saving 20+ hours per week across security and operations teams.
- Implemented AWS security architecture including KMS encryption with automated key rotation, least-privilege IAM roles, and private networking (PrivateLink, private SQS), maintaining zero public internet exposure across all automation workflows.
- Built Cortex XSIAM XQL dashboards correlating EASM discovery data with firewall and F5 telemetry to automatically map 35,000+ internet-exposed assets and surface unprotected infrastructure gaps in real time.
- Drove Zero Trust network segmentation across multi-phase perimeter lockdowns, designing identity alignment strategy for 200+ applications to enforce 1:1 identity-to-application mapping and eliminate unauthorized lateral visibility.
- Managed enterprise perimeter security across Palo Alto and F5 platforms — enforcing geo-blocking, bot defense, URL allowlisting, and zone-based access controls while continuously auditing for insecure ports, missing encryption, and policy violations across production and non-production environments.
Systems Engineer
RBS IT Solutions | Wichita, KS
- Managed and secured infrastructures for 75+ MSP clients (3,000+ endpoints) ensuring reliability, compliance, and business continuity.
- Automated hardware and security audits using PowerShell and Python scripts to identify vulnerabilities and improve lifecycle management, proactively eliminating 600+ deprecated devices from our attack surface.
- Led incident response and post-incident analysis using ConnectWise RMM, Proofpoint, and Microsoft Purview.
- Standardized backup, monitoring, and endpoint security with Huntress, SentinelOne, and Acronis enterprise solutions.
Systems Engineer
Leading Edge Technology Partners | Hutchinson, KS
- Implemented secure identity management and SSO using Entra ID across hybrid client infrastructures.
- Enhanced DR operations using Veeam and Synology solutions with tested recovery playbooks and automated reporting, reducing recovery time by 30%.
- Supported deployment and segmentation of virtualized environments using Hyper-V and VMware to strengthen system isolation.
IT Support Manager
Wichita Tech Services | Wichita, KS
- Directed security and compliance programs for 25+ managed clients, including NIST/CIS auditing and HIPAA/ITAR implementation for over 1500 devices.
- Architected multi-tenant, high-availability environments using VMware, SonicWall, and VeloCloud SD-WAN solutions.
- Developed automated monitoring strategies integrating RMM tools and Proofpoint for proactive threat detection.
Infrastructure Administrator
Village Travel | Wichita, KS
- Deployed Jira for incident tracking and asset management for 500+ assets, improving response time and audit visibility.
- Performed full NIST-based infrastructure audits to remediate security gaps and optimize resource utilization.
- Developed and enforced formalized DR policies aligned with CIS controls to strengthen resilience.
Database Administrator
Flint Hills Resources | Wichita, KS
- Built automation for database monitoring and compliance reporting using Bash, PowerShell, and SQL.
- Consolidated servers into a multitenant architecture, reducing operational risk and attack surface by 10%.
- Migrated legacy databases to AWS-managed infrastructure to increase scalability and reduced licensing costs by $200k/year.
- Engineered highly available infrastructure by deploying and hardening Red Hat Linux (RHEL) servers on AWS to specifically support and host Neo4j databases.
Database Administrator
TDS Telecommunications | Remote
- Led the upgrade of 400+ Oracle databases from 12c→19c, integrating encryption, audit logging, and patch automation.
- Maintained 400+ SQL/Oracle systems using GoldenGate replication and Oracle RAC to ensure data integrity and availability.
- Developed Python and Bash scripts to automate refresh processes, eliminating 10+ hours of manual work weekly.
Network Engineer Intern
TDS Telecommunications | Bend, OR
- Developed a regression model using Python to analyze PNM data and network efficiency to improve technician deployment strategies.
- Performed data mining and visualization in Python and R to identify access point inefficiencies and enhance user experience.
Technical Support Engineer
Sunriver Computer Services | Sunriver, OR
- Provided technical support for 15–20 business clients including network setup, firewall administration, and software maintenance.
- Led the end-to-end overhaul of outdated POS technology, successfully transitioning to new systems that met all required PCI DSS regulatory mandates.
- Configured and maintained multi-site Windows environments with consistent uptime and security baselines.
Education & Certifications
Academic foundation and professional credentials
Bachelor of Science in Computer Science
Western Washington University
Jan 2014 - Jun 2017
Leadership & Activities:
- • Group Leader: Creators and Innovators Club for Girls (2015-2017) - Volunteer mentorship program focused on robotics and engineering for middle school girls, including Little Bits, Lego NXT Mindstorms, and Arduino programming.
- • Officer: Association for Women in Computing (2014-2017) - Coordinated outreach opportunities to promote diversity and empower women in Computer Science.
- • Scholarship Recipient: Computer Science and Mathematics Scholars Program (2014-2017) - High achieving women pursuing technology degrees.
Professional Certifications
Security & Cloud Focus
Earned credentials
Current:
CISSP (Certified Information Systems Security Professional)
Obtained November 2025