Cybersecurity Engineer
Zero Trust Architecture · Security Operations · Compliance
Secure network infrastructure, ZTNA implementation, and compliance programs at T-Mobile. Based in Seattle, WA.
I'm a Cybersecurity Engineer at T-Mobile specializing in Zero Trust Network Access, with five years building and implementing secure network infrastructure using ZTNA and application-level segmentation. I understand the security protocols and best practices that underpin modern Zero Trust architectures.
I apply a security first mindset to every layer of the stack, from identity and access management to compliance documentation and audit readiness. Experienced in cyber security incident management and response, I work effectively both independently and within cross functional teams, with strong communication and problem solving skills.
Now integrating agentic AI / LLM tooling, including custom MCP servers and triage skills, into Tier 1–3 incident and service task triage workflows to improve consistency and reduce resolution time.
T-Mobile · Seattle, WA
Develop, implement, and maintain secure network infrastructure solutions using Zero Trust Network Access (ZTNA) and Virtual Private Network (VPN) technologies. Assess existing network security architectures and document findings and recommendations aligned with industry best practices. Monitor network security protocols and best practices related to ZTNA and provide guidance on improvements or updates. Respond to and manage cyber security incidents. Act as a leader and mentor to junior technical personnel. Collaborate with internal teams to develop and improve processes related to network security. Analyze data and trends to understand network security threats and vulnerabilities. Create and maintain technical documentation related to network security. Research and recommend new products and technologies to improve network security. Perform hands-on implementations and configurations of network security technologies. Ensure all security operations and maintenance activities are fully documented and up to date.
T-Mobile · Seattle, WA
Oversaw total life cycle focus for the program from requirements development and architecture creation with a focus on complex system designs through architect definition. Partnered closely with internal teams, SMEs, program management, and Systems Engineering leadership to drive the technical solution across the program. Ensure the requirements and architecture focused on “building the right thing.” Developed architectures, defining the physical architecture, allocating requirements to architecture elements, deriving requirements to drive details into the model, creating and refining modeling standards and design patterns, and distributing and merging model elements back into the baseline
T-Mobile · Seattle, WA
Designed and developed system architectures, and defined key capabilities and performance requirements. Defined total systems design and technology maturity constraints in accordance with mission requirements. Developed system element architecture and design and interface definitions. Defined system implementation approach and operational concept. Developed models and architectural guidelines for current and future system development.
Firefly Aerospace
Co-designed and built the hardware and software for a launch-pad state warning system meeting U.S. Space Systems Command range-safety standards (SSCMAN 91-710). Programmed safe/nominal/hazardous state-change logic in Lua to drive warning lights and audio, installed and tuned a siren and speaker array, and validated alert coverage with decibel-meter testing during launch preparation.
Wave Broadband
Delivered remote technical troubleshooting for broadband, TV, and voice services. Reduced service disruptions by 20% through accurate diagnostics and secure data handling.
AI / LLM Tooling (Claude, ChatGPT, Cursor) · Model Context Protocol (MCP) Servers · Prompt & Skill Engineering · RAG Knowledge Systems · Python Automation
Zscaler ZIA & ZPA · Axis · Prisma Access · Palo Alto Firewall · Checkpoint · IAM & SSO Integration · VPN Technologies · Firewall & Perimeter Security
SIEM/SOAR Tools · Splunk · Incident Response · Vulnerability Management · CASB Solutions · SaaS Security · DDoS/WAF (Cloudflare, Silverline) · NDR Tools
SOX · PCI-DSS · CPNI · NIST Framework · CIS Controls · Security Documentation & Audits · Access Reviews · Risk Assessment & Mitigation
AWS · Azure · Google Cloud Platform · Cloud Migration · Configuration Auditing · Hybrid Cloud Architecture · DLP (Microsoft Purview, Conditional Access)
ServiceNow · Jira · Python · Agile/Scrum · Automation Tools · Email Protection (Proofpoint, Barracuda, SpamTitan, Mimecast)
Project Management · Security Documentation · Mentorship · Cross-functional Collaboration · GRC Walkthroughs · Stakeholder Communication
Purdue University Global
Colorado State University Global
Open to discussing cybersecurity solutions, Zero Trust architecture, or new opportunities with fellow security professionals.