How I work
Independent, senior, and focused. I take a small number of engagements where 20+ years of pattern recognition moves the needle fast. Typical availability: 10–15 hours/week to start, scalable as the work warrants.
Engagement types
- Fractional / advisory CISO — strategy, governance, risk, and executive-level security decisions without a full-time hire.
- SOC modernization — SIEM selection and deployment (Google SecOps/Chronicle), telemetry consolidation, MTTR reduction, tool-sprawl elimination.
- Compliance & audit readiness — IRS 1075/FTI, CJIS, NIST 800-53, PCI DSS; getting to (and staying at) a defensible posture.
- AI governance for security — where AI belongs in the SOC, how to adopt it safely, and how to measure whether it's paying off.
- Incident response readiness — tabletop-to-runbook, so the first bad day isn't the first time the plan is tested.
How I engage
I work through ITSAC (Request for Resume or SOW), direct SOW, or as a subcontractor to primes serving Texas DIR and Texas Cyber Command customers.