About

As a Senior Cybersecurity Consultant at Microsoft, I have over 20 years of experience in information security across the public and private sectors. I am a member of the Microsoft Incident Response Team (Formerly DART), which responds globally to security incidents affecting Microsoft’s most critical customers.

I perform in-depth analysis of forensic artifacts collected, set the direction and goals of threat hunting and investigation for the active engagement, and mentor and support newer analysts on the team. I also write and present executive summaries and detailed technical reports for relevant findings, tailoring them to the audience’s level of technical expertise. I think outside of the box to help customers with their security needs in times of crisis, using tools such as Azure. My mission is to protect and empower people and organizations from cyber threats and risks.

Previously, I served as a crisis lead on the Software and Services Incident Response Plan (SSIRP) team in the Microsoft Security Response Center (MSRC) where I responded to high-severity product, service, privacy, and adversary incidents. I also managed the compromised credentials program which collects leaked credentials from public and underground sites, protecting Microsoft enterprise and consumer customers from compromises that use credentials seen in the wild. Prior to Microsoft, I directed the information privacy technology program at the Depository Trust & Clearing Corporation and built the Navy Computer Forensics Lab while serving in the US Navy.