Education

Dakota State University
Master of Science in Information Assurance and Computer Security 2013 - 2014 Co-Authored Mobile Malware Security Challenges and Cloud-Based Detection CTS 2014
Dakota State University
Bachelor of Science in Computer and Network Security 2009 - 2013

Work Experience

Senior Red Team Operator
NVIDIA 04-2022 - Present Led a team that conducted adversarial emulation engagements utilizing Threat Intelligence backed data and presented findings to stakeholders Implemented the AWS deployment of the open source Red Team Infrastructure project providing secure, high performing infrastructures for our Red Team Created custom malware for Red Team engagements. MacOS subject matter expert for the Red Team. Conducted Penetration Tests against internal products including LLM’s and various AI products. Created the NVIDIA implementation of the Red Blue Games Program conducting engagements and tabletops to facilitate the improvement of the Blue Team Led a team of engineers tasked to help increase the security posture of NVIDIA by improving asset inventory and password hygiene, this team had members of various organizations working together to help solve these systemic issues.
Adjunct Professor (Cyber Operations)
University of Arizona 10-2022 - Present Teach CYBV-480 Cyber Warfare to students at the University of Arizona Taught CYBV-302 Linux Security Essentials to students at the University of Arizona
Principal Security Engineer, Red Team
Oracle Cloud Infrastructure 01-01-2019 - 04-2022 Led and conducted adversarial emulation engagements utilizing Threat Intelligence backed data and presented findings to stakeholders Led Red Blue Games Program engagements to facilitate the improvement of Blue Facilitated strategic relationships for collaboration with Detection and Response Team (DART), Threat Intelligence, Risk Management, Security Architecture, among others, to remediate systemic and emerging security risks Wrote custom C2 utilized in our Red Blue Games program which is being open sourced for ShmooCon 2022 Created training environment and taught teammates techniques for Red Teaming against MacOS environments Created custom malware for Red Team engagements
Senior Security Engineer, Security Assessments
Oracle Cloud Infrastructure 01-01-2019 - 04-2022 Engaged internal service teams to conduct penetration tests against IaaS, SaaS services and presented findings to stakeholders Created the region build assessment program and led security assessments against newly created Regions. Presented Brown Bags to internal teams on various tools and techniques Created custom tooling to address the needs to test inside a cloud environment
Penetration Tester
Urbane Security 2018 - 2018 Conducted penetration tests on large corporate networks consisting of Windows and Linux systems Created scripts to automate testing using Powershell and Python. Presented penetration test reports to management and helped explain complex security issues down to a level that they could understand. Performed testing against chef IT automation environments
Penetration Tester/ Red Team
PayPal 16-2016 - 18-2018 Lead Penetration Tester on QE Security Team and Led the PayPal Red Team conducting adversarial emulation engagements. Performed penetration testing against internal PayPal web applications and systems. Created scripts to automate testing using Powershell and Python. Presented Penetration test reports to application owners and helped explain complex security issues down to a level that they could understand. Performed penetration testing on implementation of Microsoft LAPS and Beyond Trust Security Suite. Performed penetration testing against Dell Wyse thin clients to determine the risk of the systems to PayPal and PayPal's partners.
Partner, Senior Security Engineer
Helix Security 14-2014 - 16-2016 Managed a team of penetration testers providing guidance and ensuring that reports were delivered to customers on time. Serviced clients across multiple sectors including health care, banking, and government. Conducted numerous Vulnerability Assessments across a variety of complex networks, both onsite and remotely; included working with client to scope the service, conducting the assessment while troubleshooting on-the-fly, creation of a client deliverable prioritizing risk, and remediation support. Engineered multiple Social Engineering Assessments utilizing a variety of techniques including physical impersonation, phishing, pretext phone calls, war driving, installation of rogue access points, and configuration and placement of unknown media devices.. Facilitated the creation and maintenance of Risk Assessments for numerous clients which complied to HIPAA regulations and Information Security Best Practices. Developed and maintained tools required to perform assessments which included a report generation tool, vulnerability database, remote vulnerability assessment system, and SaaS risk management platform.
Information Security Consultant
Secure Banking Solutions 12-2012 - 14-2014 Led a team to conduct social engineering assessments for banks of various size and complexity; assisted with reconnaissance efforts, pretext phone calls, deployment of phishing emails, creation of physical badges and paperwork, and onsite physical impersonation assessments. Assisted a banking client with the creation of a wireless internet policy which was compliant with applicable banking regulations and information security best practices Assisted clients with implementing various components of TRAC, which is an SBS created SaaS tool facilitating regulatory compliance, information risk assessment, vendor management, internal audit, remediation tracking, and policy management.

Highlights

Passed Lancair IV­P Transition Course Certification Course
April 11, 2026 Training to fly my Lancair IVP Turbine

Aircraft Experience

Mooney, M20
  • Time in Type: 215 hrs
Diamond, DA-42
  • Time in Type: 57 hrs
Piper, PA-28
  • Time in Type: 214 hrs