IT Architect Lead building toward DevSecOps & Security Architecture — Azure Zero-Trust, IaC, and Identity Security.
Most cloud security programs pass every audit and still get breached. Compliance checks configurations one at a time; attackers chain them together. I build tools and infrastructure that close that gap.
PathFinder — An Azure identity attack-path visualizer that traces how individually reasonable permissions chain together into a route to sensitive data. Real graph path-finding engine, runs entirely client-side on Azure's free tier.
Azure Landing Zone (Terraform) — A secure Azure landing zone provisioned entirely as Infrastructure-as-Code, with three-tier network segmentation, default-deny traffic, private endpoints, managed identity, and Azure Policy governance.
ShieldInbound — A serverless, FedRAMP-simulated zero-trust control plane with JIT credential issuance, an AI prompt guardrail, and a SIEM audit ledger mapping events to NIST 800-53, CMMC, ISO 27001, and SOC 2.
13+ years leading enterprise cloud, security, and application architecture, most recently as Systems/IT Architect Lead at Georgia Tech Research Institute, where I define cloud migration strategy and author IaC frameworks (Terraform/Bicep) for federal research workloads.
LinkedIn — feel free to reach out if you're working on identity security, zero-trust architecture, or DevSecOps tooling.