CV
Security researcher specializing in building AI-assisted workflows for detection and triage.
Skills permalink
AI/ML & Data Engineering Python (NumPy, scikit-learn, PyTorch), multi-agent orchestration (AutoGen, LangGraph), LLM/SLM fine-tuning, clustering and anomaly detection, data validation (Pydantic), Azure OpenAI, KQL, Azure Synapse
Security Research & Engineering Malware analysis/reverse engineering (Ghidra, x64dbg), detection engineering, incident response, vulnerability management, penetration testing, SAST/DAST, CI/CD, AWS and Azure, C/C++, containers
Experience permalink
Security Researcher II — Microsoft permalink
October 2021 – Present
- Designed a large-scale threat intelligence pipeline utilizing LangGraph and clustering algorithms for grouping indicators to generate leads for a partner team's threat hunting engagements. Implemented a human-centric evaluation to produce metrics to quantify performance.
- Sole administrator of Azure ML infrastructure supporting AI/ML development workflows, including fine-tuning reasoning models, managing networks/APIs, and optimizing endpoint configurations to minimize inference latency.
- Built a hierarchical multi-agent system using AutoGen and GPT-4.1 to autonomously triage and resolve security incidents, greatly reducing analyst workload in production. Regularly achieved above 90% precision and 85% recall for monthly case loads.
- Conducted threat research into LOLbins and sideloadable DLLs to identify gaps in detections. Produced several production detections to catch abuse.
Senior Application Security Analyst — Change Healthcare permalink
September 2020 – October 2021
- Performed vulnerability assessments against on-prem, cloud, containerized systems, and web applications.
- Built Python pipelines leveraging Splunk APIs to automate data reporting and reduce manual analysis time.
- Conducted security design reviews and assisted teams with building secure applications.
Cyber Security Analyst — Children's Hospital permalink
July 2019 – September 2020
- Acted as the expert for endpoint security and incident response, driving multiple security projects to completion.
- Provided consultation for the configuration of firewalls, VPNs, vulnerability scanners, and other systems.
Associate Security Analyst — ACI Worldwide permalink
October 2018 – July 2019
- Performed penetration tests against web applications and conducted security architecture reviews.
Presentations permalink
Finding a needle in a stack of needles — Measuring Randomness with Language Models FireCon 2026 | Microsoft
Presented research on fine-tuning DistilBERT to detect entropy of a string for anomaly detection, demonstrating how it outperforms traditional methods and how it can be integrated into a detection system. Achieved an F1 of 0.929 vs. 0.828 for freq.py across 250 domains, demonstrating that SLMs can outperform statistical methods on string-randomness tasks at low cost.
Education permalink
Bachelor of Science in Information Technology, 2016–2019
Professional Training permalink
| Course | Institution | Year |
|---|---|---|
| Technical AI Safety | BlueDot Impact | 2026 |
| AGI Strategy | BlueDot Impact | 2026 |
| GIAC Reverse Engineering Malware (GREM) | SANS University | 2025 |
| Offensive Driver Development | Zero-Point Security | 2023 |
| GIAC Certified Incident Handler (GCIH) | SANS University | 2023 |
| Malware Development Essentials (C/C++) | Sektor7 Institute | 2022 |