I’ve spent more than two decades working in cybersecurity — starting as a network engineer watching IDS alerts at 2am and working my way up to running security engineering and automation programs at enterprise scale.
My career started in the trenches: managing 300-server Linux environments, building out IDS infrastructure, and being the person who had to figure out why something was on fire at midnight. From there I moved into building Simplifile’s information security function from scratch — establishing policy, conducting penetration tests, managing SOC 2 audits, and growing the security program across a rapidly expanding organization. After Simplifile was acquired by ICE, I became Senior Director of Security Operations at ICE Mortgage Technology, leading incident response and vulnerability management across 40,000+ systems. I now serve as Senior Director of Cybersecurity Engineering at ICE (Intercontinental Exchange — NYSE operator and global financial market infrastructure), where I lead a 27-person engineering team responsible for all security tooling across 150,000+ endpoints spanning five major business units.
On the offensive side, I hold a Certified Ethical Hacker (CEH) certification and have conducted physical and cyber penetration tests, web application assessments, and security architecture reviews across organizations of various sizes. I’ve also spent considerable personal time in RF and RFID security research — the Proxmark3, HackRF One, and Flipper Zero content on this site comes from actual bench time, not spec sheets.
The tools I work with at enterprise scale include SentinelOne, CrowdStrike, Tanium, Axonius, Splunk, Tenable.io, Qualys, Vectra, and Cofense. On the research side: Proxmark3, HackRF, hashcat, Wireshark, Burp Suite. I’ve competed in CMIYC (Crack Me If You Can) international password cracking competitions.
Unlike a lot of security content online, what I write here comes from real experience — tools I’ve actually run, techniques I’ve actually tested, setups I’ve actually built. If something doesn’t work the way the documentation says, I’ll tell you that too.
If you’re a security practitioner, a hobbyist getting into RF or physical security research, or building a home lab that teaches you something real — you’re in the right place.