Summary

Information Technology & Security Professional with experience across cybersecurity, GRC, IT support, and healthcare compliance. Background spans red team and blue team operations, risk assessments, vulnerability management, and regulatory compliance under HIPAA and NIST frameworks. Former careers in investment banking and technology sales bring a business-oriented perspective to security work.

Industry Experience

  • Cybersecurity — 4 years
  • IT — 3.5 years
  • GRC — 2.5 years
  • Regulatory Frameworks (HIPAA, NIST) — 4 years
  • Business Administration & Management — 3 years

Professional Experience

SOC Analyst II — CoreCivic, Nashville, TN

April 2025 – Present

  • Assisting senior engineers in defining security requirements, including securing VIP email communications in compliance with business needs.
  • Manage Microsoft Defender for Endpoints across the organization, investigating and remediating known and suspected security incidents through threat hunting.
  • Proficiency in Kusto Query Language (KQL) for Microsoft Sentinel and Advanced Hunting in Microsoft Defender.
  • Manage Microsoft Entra ID Protection policies to detect and mitigate identity risks including risky sign-ins, impossible travel, and malware-linked IPs.
  • Provide 24/7 on-call support rotation and troubleshoot daily operational tickets.

GRC Cybersecurity HIPAA Analyst — Summit Behavioral Healthcare, Nashville, TN

September 2023 – January 2025

  • Implemented AuditBoard GRC platform to streamline risk management and compliance workflows.
  • Conducted HIPAA Security Risk Assessments across 34 healthcare facilities, identifying vulnerabilities and driving mitigation strategies.
  • Aligned HIPAA Security Rule requirements with NIST 800-53 controls to ensure organizational compliance.
  • Collaborated with IT teams to deploy technical safeguards including multi-factor authentication and audit logging.
  • Configured Sophos Email Security and phishing protection, reducing phishing-related incidents by 25%.
  • Used Tenable to run vulnerability scans, generate reports, and manage remediation follow-ups with each facility.

Help Desk Analyst — Freeman Webb, Nashville, TN

May 2022 – September 2023

  • Managed and supported a 600-user Windows environment with 450 endpoints.
  • Administered IAM and PAM platforms for end users.
  • Managed anti-spam and threat policies in Microsoft Defender.
  • Utilized Sophos to create and deploy phishing simulation campaigns for security awareness training.
  • Resolved technical issues related to O365, networking, and industry-specific software.
  • Assisted with Azure MFA implementation and developed user documentation and support resources.

Help Desk Analyst & Field Technician — Frontgate Technologies, Nashville, TN

February 2022 – May 2022

  • Provided onsite technical support for client issues related to O365, networking, and hardware.
  • Managed IAM and PAM platforms and administered anti-spam and threat policies in Microsoft Defender.
  • Configured and maintained Active Directory accounts, access privileges, and software.

Information Security Consultant — Asylas, Nashville, TN

October 2019 – September 2020

  • Conducted vulnerability assessments, phishing simulations, and risk analysis aligned to CIS, NIST, and HIPAA frameworks.
  • Used Nessus/Tenable and Qualys to scan for vulnerabilities, generate reports, and recommend remediation to clients.
  • Deployed KnowBe4 phishing campaigns to train end users on current threats.
  • Delivered cybersecurity best practices training and recommendations to clients.

Additional Experience

  • TriMech — Tech Sales Manager (2017–2019): Exceeded sales quotas by 148% in the first year, specializing in technology solutions.
  • TekLinks (now C Spire) — Technology Sales Manager (2015–2017): Sold complex IT solutions in FDA, PCI, and HIPAA-compliant industries.
  • Founders Investment Banking — Associate (2010–2013): Managed merger and acquisition transactions, contributing to $2M+ in fee revenue.

Education

University of South Alabama — Mobile, AL
Bachelor of Arts (BA)

Technical Skills

  • Security Tools: Nessus, Qualys, Sophos, AuditBoard, Plextrac, KnowBe4, ServiceNow, Microsoft Defender, Azure, Entra, Tenable
  • Frameworks: HIPAA, NIST CSF, CIS, PCI-DSS
  • Technical Expertise: Active Directory, O365, Azure, MFA, Vulnerability Scanning, GRC Platforms