credentials
Actively cleared and pursuing industry certifications to complement hands-on technical experience in cybersecurity and networking.
Secret (Active) - Granted March 2026.
CompTIA Security+ (in progress) - Anticipated August 2026.
experience
Lockheed Martin
Seasonal Freelance Worker
activities
Active member of RIT's largest academic club, built around the motto "Security Through Community," contributing to student-led education, research, interest groups, mentorship programs, and competitions like IRSeC, ISTS, and the RITSEC CTF, which draw talent from across the country.
Secured 1st-place finishes at University at Buffalo Lockdown and CORA II, demonstrating strong incident response and penetration testing skills under competitive pressure. Also contributed to building RIT's own competitions, helping develop logging infrastructure and design King of the Hill (KoTH) style challenges.
Founded and personally manage this award, overseeing the website, eligibility criteria, and evaluation process for applicants. To date, have awarded over $3,000 to underrepresented students at West Haven High School in Connecticut to support their pursuit of higher education.
projects
Engineered a cloud and virtualization infrastructure suite across four lab environments, applying Infrastructure as Code (IaC), high availability, and Zero Trust principles. Built scalable Azure architectures with ARM templates to deploy load-balanced web tiers with health-based failover, securing admin access via Azure Bastion and centralized Key Vault credential management. Configured Linux KVM/libvirt and Proxmox VE clusters, covering automated VM lifecycle management, XML-based hardware definitions, and multi-node migrations.
Co-authored a systematic literature review synthesizing 35 sources (2012–2025) on Risk-Based Authentication (RBA), covering machine-learning risk scoring (Random Forests, feed-forward neural networks, deep reinforcement learning), real-world deployment gaps, and the security-usability-privacy trade-offs shaping adoption. Findings included evidence that only 42.31% of audited websites supported MFA and 22.12% blocked obvious account hijacking attempts, underscoring the gap between RBA's technical maturity and its practical deployment.
Architected and deployed a segmented, two-VLAN enterprise network on Proxmox, integrating Windows Server 2022 (AD, DNS, DHCP) with RHEL 10 systems for web, database, and file/print services. Hardened all hosts against CIS Benchmarks, mapped Group Policy Objects to NIST CSF controls, and configured Wazuh for centralized log aggregation and threat detection across the environment.
Co-authored a technology risk assessment for a simulated regional healthcare network, evaluating how Identity, AI, Quantum Computing, and Cloud adoption affect disaster recovery and business continuity. Led the Cloud Computing analysis, covering geo-redundant backups, HIPAA-compliant storage, and multi-cloud failover strategy for EHR and telehealth systems, and contributed to the AI section, focused on third-party model risk, PHI data isolation, and failover planning for automated clinical workflows.
Built and deployed an intentionally vulnerable Windows target, 'database,' incorporating RCE and weak authentication flaws modeled on common real-world misconfigurations. Confirmed exploitation paths through Nmap-based reconnaissance and Metasploit-driven exploitation, incorporating privilege escalation techniques throughout.
Built and administered a Windows Server infrastructure featuring Active Directory, DHCP, DNS, and a pfSense gateway. Managed user accounts, OUs, and GPOs across Linux and Windows clients, ran remote Git repositories on a Linux server, and set up secure file transfer via vsftpd. Compared file-sharing protocols including rsync, FTP, Samba, and NFS, then deployed an SSL/TLS-secured Apache web server to enable safe login access.
skills