About me

We’re building smarter systems every day; which means we’re creating more interesting ways to break them.

I’m a cybersecurity professional with 5+ years of experience focused on cloud security, detection, and building security programs; primarily in environments shaped by frameworks like HIPAA, PCI, and NIST CSF.

I originally thought I wanted to be a developer. I taught myself Ruby, took college courses in Python and web development, and started down the typical engineering path. But as I got deeper into Linux and networking, I was introduced to the security concepts that sit underneath everything; that’s what pulled me in.

I got my start in IT on the helpdesk, and eventually transitioned into a Security Analyst role; where I helped introduce cybersecurity practices into the company. That experience shaped how I think about security today; not just as a technical problem, but as something that has to work in real environments with real constraints.

This blog is where I document what I’ve learned, what I wish I knew earlier, and what I think others should know. I’m especially interested in practical security; things that actually work outside of theory.

I also spend time working through CTFs; if one stands out, I’ll share write-ups and lessons learned here.

Outside of security, I’m usually learning new tech, experimenting in my homelab, or going down the occasional rabbit hole that may or may not be useful.

If you’re interested in practical security, continuous learning, and understanding how this field actually works in the real world, you’ll probably find something useful here.