Fractional CISO · GRC Engineering · Applied AI for Security CISSP · CCSP · Navy veteran · Based in Ann Arbor, MI
Founder of CyberReadyLabs, a fractional CISO practice helping small and mid-sized businesses get assessment, compliance, and policy automation done without a full-time security team. 15+ years across cybersecurity governance, federal compliance, and security operations — bridging policy and engineering with hands-on infrastructure, detection, and applied AI.
Production LLM applications for security operations and document workflows —
Anthropic Claude API integration, prompt engineering, multi-stage pipelines with
grounded verification, and vision/multimodal extraction.
→ francis — self-verifying AI security digest
SIEM-centered detection and security automation — Wazuh tuning, custom Python
reconciliation tooling, vulnerability and patch workflows, alert pipelines.
→ cve-patch-watch — stale-vs-real CVE reconciler
Compliance and security policy expressed as versioned, tested code — OPA/Rego
policy domains and InSpec/Cinc hardening profiles, mapped to NIST CSF 2.0 and
CIS Controls v8, with scan results scored and piped into a Wazuh SIEM for
continuous compliance monitoring. Public demo below; a proprietary version powers
CyberReadyLabs client engagements.
→ policy-as-code-demo — OPA/Rego + InSpec, framework-mapped, CI-tested
Self-built multi-node Proxmox lab with segmented VLANs, OPNsense, Wazuh SIEM,
Authentik zero-trust access, Traefik + Cloudflare Tunnels, k3s, CrowdSec — the
platform underneath the AI and detection work.
→ security-architecture — zero-trust design, firewall model, DR/resilience, decision records
→ homelab — architecture overview
NIST CSF 2.0 · NIST 800-53 / RMF · CIS Controls v8 · CMMC 2.0 · CSA CCM · ISO 27001 · SOC 2 · HIPAA · FedRAMP
- M.Eng., Cybersecurity Policy & Compliance — George Washington University (in progress, Dec 2026)
- A.S., Electronics & IT — U.S. Navy Center for Surface Combat Systems Dahlgren
- M.Div. + B.A. — Hellenic College / Holy Cross School of Theology