Security Architecture & Engineering
Secure-by-default design, threat-aware implementation, and practical hardening strategies for real-world environments.
Personal Brand
Security-focused engineer building resilient cloud systems and privacy-respecting software.
Specializing in Microsoft cloud operations, endpoint identity, and secure product engineering.
Areas where I design, implement, and harden production systems.
Secure-by-default design, threat-aware implementation, and practical hardening strategies for real-world environments.
Entra ID, Intune, and Windows 365 operations focused on identity control, endpoint governance, and operational resilience.
Building tools like Lens with local-first learning, transparent logic, and disciplined telemetry practices.
A quick snapshot of what I build and how I work.
I operate at the intersection of security engineering, Microsoft cloud operations, and product development. My work centers on building systems that are resilient, maintainable, and designed with security as a first principle - not an afterthought.
From enterprise endpoint governance to privacy-first browser tooling, I focus on delivering practical solutions that perform reliably in production environments.
Selected work from strategy to shipping.
Privacy-first phishing copilot that learns locally and explains decisions.
I help teams ship reliable products with clean foundations and clear execution.