Portfolio

Real engagements.
Documented outcomes.

Sanitized case studies from production environments. Every control, finding, and outcome shown here reflects actual implementation work, not hypothetical architecture.

Healthcare - Compliance Program
HIPAA Security Program Build-Out

Zero-to-operational HIPAA security program built in 5 months for a multi-site diagnostic imaging organization. Full governance library, IR suite, and M365 security stack deployed by a single engineer.

6 sites, 83 users, 39 endpoints
Microsoft 365 Business Premium
Secure Score: 40% to 96.34%
16-document governance library
Read case study
Infrastructure - Network Security
Multi-Site Network Hardening + MFA

Standardized firewall policy across 8 sites, deployed Duo RADIUS MFA for VPN access, and established a hub-and-spoke AutoVPN topology. Got 100% MFA coverage including legacy clinical systems that Entra CA could not reach.

8 sites standardized
Cisco Meraki MX75 + Duo RADIUS
100% MFA coverage achieved
Cyber insurance control satisfied
Read case study
Security Assessment
Internal Vulnerability Assessment

Full internal vulnerability assessment of a production clinical network using Nmap and Nessus Essentials. Found 15 findings across 3 servers. Three critical issues were closed the next day.

15 findings across 3 servers
Nmap 7.98 + Nessus Essentials
3 critical findings same-day
HIPAA ยง164.308(a)(8) satisfied
Read case study
All case studies are sanitized. Client names, internal hostnames, IP addresses, and identifying details have been removed or generalized. The work is real.