Professional background
Résumé
Summary
Security and compliance leader with 13+ years across Fortune 500, federal modernization, enterprise and cloud security, GRC, and AI governance. Track record leading large-scale security programs, supporting security authorization and ATO readiness under NIST RMF, and translating technical risk into executive-level and governance decisions.
Currently Co-Founder and CEO of ProfytAI, building defensible compliance infrastructure for regulated institutions across Southeast Asia, the most ambitious expression of the same career arc. Combines practitioner depth across GRC, cloud security, NIST RMF, and FedRAMP with the discipline to build products, teams, and market positions in regulated environments.
Experience
ProfytAI
NowAug 2025 to Present
Remote (U.S. and Southeast Asia)
Co-Founder & CEO
Founded ProfytAI, a Singapore-incorporated company building defensible compliance infrastructure for banks and regulated institutions across Southeast Asia.
- Set company strategy and built the operating foundation from zero, hiring and leading a cross-functional team across engineering, product, and revenue, with the hiring standards, culture, and execution rhythm to match
- Direct product, engineering, and go-to-market for a platform that structures obligations, evidence traceability, and continuous audit readiness, with human judgment kept at the decision points
- Lead design-partner engagements with regulated institutions, validating the platform in high-control regulated environments
- Won the Grand Prize at the Agentic Startup Arena Vietnam (January 2026)
Jul 2021 to Jul 2025
Washington, DC
Senior Technical Program Manager, Security
Led enterprise security programs across multiple engineering organizations at one of the world's largest professional networks (1B+ members).
- Managed and developed engineers, owning hiring, performance, and career growth, while leading security programs across multiple concurrent projects and 9+ globally distributed engineering teams
- Drove security programs advancing compliance posture, automation, and platform resilience across one of technology's most scrutinized environments
- Engineered and executed a Root Certificate Authority rotation and TLS compliance program, protecting encryption integrity across critical platform services
- Deployed automation frameworks that materially reduced manual compliance effort and accelerated compliance reporting cycles
- Shaped executive investment and risk decisions through direct briefings on security posture, compliance readiness, and threat priorities
Deloitte Consulting
Jun 2019 to Jul 2021
Arlington, VA
Manager, Cyber & Strategic Risk
Federal consulting engagement: U.S. Department of State.
- Managed cybersecurity workstreams on a U.S. Department of State modernization engagement, supporting security governance, risk management, and federal compliance execution across mission-critical applications
- Led security authorization and ATO readiness work under NIST RMF for systems supporting global visa and passport issuance
- Led and unified a team of security architects, engineers, and compliance specialists across concurrent programs, meeting federal security requirements without schedule slippage
- Consolidated fragmented monitoring tools into a unified threat-detection capability and integrated security controls into Agile delivery
Booz Allen Hamilton
Aug 2018 to Jun 2019
McLean, VA
Lead Technologist, Cloud Security
Federal consulting engagement: U.S. Department of the Treasury.
- Led FedRAMP-compliant cloud migration strategy for U.S. Treasury financial systems, maintaining regulatory posture through a high-risk infrastructure transition
- Developed migration roadmaps, risk models, and governance frameworks that accelerated cloud adoption while protecting compliance standing
- Established cloud security architecture standards adopted across Bureau of the Fiscal Service engineering teams
Aetna
2016 to 2018
Hartford, CT
Cloud Security Lead
Enterprise cloud security and compliance at one of the nation's largest health insurers.
- Led enterprise cloud security across hybrid environments, supporting HIPAA and PCI-DSS compliance across sensitive data infrastructure
- Reduced system vulnerabilities and improved risk-detection accuracy through new assessment methodologies for hybrid cloud
- Delivered an R&D initiative introducing biometric-based authentication, reducing reliance on legacy credential infrastructure
Cigna
2012 to 2016
Bloomfield, CT
Information Security Advisor & Early-Career Roles
Career foundation: growth from cybersecurity analyst to Information Security Advisor.
- Advanced from analyst to Information Security Advisor, owning endpoint security, infrastructure engineering, and enterprise compliance across a Fortune 100 healthcare organization
- Managed security and compliance for 14,000+ enterprise devices, including an on-time enterprise OS migration that maintained security posture through the transition
Education
Penn State
University Park, PA
B.S. Information Sciences & Technology
College of Information Sciences & Technology
Certifications & Clearance
CISSP
Certified Information Systems Security Professional
CISM
Certified Information Security Manager
PMP
Project Management Professional
CTPRP
Certified Third Party Risk Professional
Security Clearance: Previously held U.S. DoD Top Secret (TS) clearance
Core competencies