I design and operationalize secure industrial architectures across energy, manufacturing, and regulated environments. My work sits at the intersection of infrastructure, OT cybersecurity, and governance—turning complex systems into predictable, measurable, and resilient operations.
I am an ICS/OT Security Architect who builds order out of complexity. I combine deep infrastructure experience with modern OT security, documentation, and governance to reduce risk and improve operational integrity across multi‑site enterprises.
A selection of work that best represents how I think, design, and deliver in high‑stakes industrial environments.
Authored a four‑section, Day‑1 actionable master plan covering governance, Dragos rollout, SIEM/SOAR integration, OT Zero Trust pilot, AI/ML strategy, and a conversion‑ready evidence portfolio for executive oversight.
Led Dragos deployment and remediation across 10 plants, coordinated sensor placement and relocation, delivered monthly vulnerability reports, and aligned segmentation and incident response with enterprise standards.
Administered hybrid Active Directory, VMware vSphere, Windows Server roles, and Red Hat OpenShift in a high‑pressure greenfield battery plant, ensuring secure, stable infrastructure aligned with enterprise security and change management.
Served as primary server administrator for Denso Manufacturing Michigan and a key member of the North American server/storage team, managing VMware Horizon VDI, ESXi hosts, Nimble SAN, Veeam backups, and multi‑site AD/GPO.
Implemented Duo SSO for 18+ applications, performed MFA assessments for OT systems, and integrated CyberArk with SIEM for privileged access auditing—tightening identity governance across plant and enterprise services.
Built early‑career depth in FDA‑regulated and GxP environments, authoring SOPs, IVIs, and change‑controlled documentation while supporting scientific instruments, Windows/HP3000 servers, and large‑scale backup operations.
A condensed view of how my roles evolved from hands‑on infrastructure and lab systems to enterprise ICS/OT security architecture and governance.
Lead ICS/OT security architecture across nuclear, generation, distribution, and gas sites; design segmentation, secure remote access, and executive‑grade governance for critical infrastructure.
Delivered hybrid AD, VMware, and OpenShift administration in a greenfield battery plant, supporting commissioning and alignment with Ford enterprise security standards.
Operationalized Dragos, improved segmentation, strengthened identity and access controls, and led governance and incident response enhancements across multiple plants.
Managed VMware, SAN, backups, and VDI for North American manufacturing environments, providing 24/7 support and driving vulnerability remediation and lifecycle improvements.
Supported scientific instruments, Windows/HP3000 servers, backups, and application testing in FDA‑regulated environments, building a strong foundation in compliance and documentation.
The capabilities I rely on most when designing and operationalizing secure industrial environments.
The principles that guide how I design, lead, and communicate—and how to reach me if you’d like to talk about ICS/OT security, infrastructure, or governance.
These are the anchors I return to when making decisions in complex, high‑stakes environments.