With decades of experience across cybersecurity strategy, vulnerability management, and security operations, I have led transformative initiatives in both the public and private sectors. My work has included pioneering incident response frameworks at IBM and Honeywell and shaping global security standards through contributions to CVE, FIRST, and Red Hat. I currently serve as Senior Director of Product Security and Incident Response at Red Hat, where I guide secure development practices and integrate upstream security initiatives such as CVE, CVSS, CSAF, and PSIRTs into business operations. I also serve as a CVE Board Member and Officer of the CVE Foundation, where I advance cybersecurity transparency and automation, and I lead efforts in the FIRST PSIRT SIG and VulnCon 2024–2025 to improve vulnerability management practices across the community.
Earlier in my career, I held senior cybersecurity roles at Honeywell and IBM, including as a Cybersecurity Strategist overseeing incident coordination for IBM X-Force. Before IBM acquired Internet Security Systems (ISS), I served as Special Assistant to the CEO, contributing to the National Infrastructure Advisory Council (NIAC) and helping to establish the Information Technology – Sector Coordinating Council (IT-SCC), where I now serve as Treasurer on the Executive Committee. My governance and information-sharing leadership spans service as Operations Center Director for IT-ISAC, Board Member and CFO of FIRST, and President of ICASI. I also served as a Commissioner for the CSIS Cybersecurity Commission under the 44th Presidency. A retired U.S. Army Lieutenant Colonel, I bring operational discipline to my cybersecurity work. I hold a Master’s degree from the University of Phoenix, a Bachelor of Science in Business Administration from Rollins College, and am a graduate of the U.S. Army Command and General Staff College.