Employment
Senior Vice President — Infrastructure and Security Director
Eastern Bank · 2024 – Present
V.P. Infrastructure and Security Manager
Eastern Bank · 2021 – 2024
- Sets and executes infrastructure and support strategies. This includes the development of the strategy, architecture, and design for the entire infrastructure stack across the enterprise.
- Responsible for the security design of all infrastructure implementations, subject matter expert to contribute to analysis and design of all technology systems at the Bank.
- Works with business unit and technology constituents to lead the selection and implementation of software and services to provide a highly functional and secure operating environment.
- Responsible for managing a staff of technical professionals to develop and implement strategic solutions. This includes the server, network, and security infrastructure teams.
- Leads complex and inter-related projects collaborating with resources from multiple areas of the corporation, makes key strategic decisions on those projects, and ensures that those projects are completed on time and within budget.
- Develop and execute remediation plans for regulatory, audit, and risk-based technology reviews.
- Maintains contracts with external vendors.
- Monitors the reliability of systems and services.
- Interfaces with business units to ensure needs and SLAs are met.
- Lead response for significant system and application outages or issues.
V.P. Security Operations Manager
Eastern Bank · 2020 – 2021
Management
- Manages high-performing cyber security professionals in Incident Response, Information Assurance, Security Engineering and Identity and Access Management.
- Meets with auditors regularly to ensure compliance with regulations and internal policies.
- Manages security budget.
- Evaluates and purchases products and services to meet security goals.
- Drives security initiatives, leads projects, and improves processes.
- Tunes and configures security tools to maximize the effectiveness of time and detection of incidents.
- Conducts periodic lunch and learn training sessions.
Technical
- Manages SailPoint IDN Build Team. Current project ongoing to implement SailPoint IDN.
- Manages Public Key Infrastructure.
- Configures Azure SSO for SAML authentication.
- Responds to cyber security incidents.
- Writes scripts in PowerShell and Python to improve efficiency and manipulate data.
- Creates Splunk queries, alerts and dashboards.
Information Assurance Manager
Eastern Bank · 2019 – 2020
- Managed a team of three high-performing cyber security professionals.
- Met with auditors regularly to ensure compliance with regulations and internal policies.
- Evaluates and purchases products and services to meet security goals.
- Drives security initiatives, leads projects, and improves processes.
Principal Information Assurance Analyst
Eastern Bank · 2017 – 2019
Sr. Information Assurance Analyst
Eastern Bank · 2016 – 2017
Vulnerability Management
- Oversees the vulnerability management program.
- Collaborates with several teams and vendors to ensure remediation or mitigation is achieved.
- Created automated methods for ticket creation and handling.
- Creates and monitors CIS security baselines for all network devices.
- Works with risk management to document exceptions.
Code Reviews
- Performs SAST and DAST code scanning for all code developed for Eastern Bank internally and by third parties. (Java, JavaScript, PowerShell, Python, PHP, HTML)
- Reviews findings to ensure no false positives are found and works with developers to mitigate true positives.
Incident Response
- Coordinates incident response efforts.
- Response to cyber security alerts generated by numerous sources.
- Created automated workflows to enhance the response time to incidents.
- Monitors SIEM and creates new alert methods as necessary.
Digital Forensics
- Created and manages the digital forensics program.
- Captures hard drive and memory images during investigations.
- Works with third parties as necessary to ensure investigations are completed in a forensically sound method.
Development & Business Intelligence
- Writes scripts in PowerShell, Python and Java to gather and push data via numerous APIs.
- Uses Gitlab and code collaborator to store, share and review code with co-workers.
- Uses CI/CD tool to automate script executions.
- MajorDomo role for Domo business intelligence platform.
- Creates ETLs and SQL scripts to transform data as needed.
Information Security Officer
Stony Brook University · 2007 – 2016
- Oversaw the vulnerability management programs.
- Managed security related projects; provided security advice and architecture design for all technology projects.
- Provided penetration testing on a regular basis.
- Responded to cyber security alerts; monitored SIEM and created new alert methods.
- Implemented new firewall infrastructure; created site-to-site VPNs with vendors.
- Managed Checkpoint endpoint security system.
- Served as the HIPAA Security Officer; performed regular audits.
- Implemented and managed VMware and Hyper-V environments.
- Managed medical records SQL databases and R25 Scheduling Oracle database.
- Created policies and procedures for cyber security and HIPAA regulations.
Help Desk Technician
Stony Brook Medicine · 2005 – 2007
- Provided first line support to a large domain of over 10,000 users. Fielded over 2,000 calls/month.
- Worked with vendors to design the single sign-on system.
- Redesigned Information Technology website (HTML and CSS).
- Upgraded and managed Unicenter Service Desk ticketing system.
- Implemented and managed ACD call recording system.
Entrepreneurship
Founder & CEO — WeaveHub Technologies LLC
2025 – Present
Founded and lead a technology company developing the Pocket suite of enterprise mobile applications. Products include PocketOps (CDN management), PocketSOC (security operations), PocketNOC (network operations), PocketVM (vulnerability management), PocketIntel (threat intelligence), and PocketSync (data synchronization). Built on Swift, TypeScript, and Cloudflare Workers. Also develops open-source Home Assistant integrations and custom Terraform providers for infrastructure-as-code workflows.
Education
Master of Science in Information Technology — Digital Forensics
American Public University System · 2011 – 2014
Bachelor of Science in Information Systems Security
American Public University System · 2009 – 2011 · Dean's List
Certifications
Microsoft Certified Desktop Support Technician
Microsoft Certified Professional
Certified HIPAA Security Specialist
Certified HIPAA Professional
Projects
Automated Audit Evidence Retrieval
Eastern Bank · Dec 2025
Designed and built an automated evidence collection platform for network security audits. Developed 50+ scripts that pull data from enterprise sources on demand, display the queries used for transparency, and organize output into audit-ready formats. Integrated with ServiceNow to enable the audit team to execute evidence retrieval independently without engineering involvement. Reduced evidence collection time from several weeks to a few minutes, significantly improving consistency of audit deliverables and accelerating the overall audit cycle.
Enterprise Data Center Migration
Eastern Bank · Jun 2024 – Apr 2025
Led the migration of the enterprise data center from a legacy facility to a modern, SOC-certified environment. Relocated all core systems — networking equipment, firewalls, hypervisors, storage arrays, and backup appliances — with no rollback option. Built out the new data center cage, installed racks and power distribution, and established ISP connectivity. Deployed new firewalls, segmented networks, and coordinated secure interconnects between sites. Aligned disaster recovery testing with the migration timeline to validate business continuity protocols. Completed ahead of schedule with zero downtime — most users were unaware the transition had occurred.
Strategic Integration Leadership — Bank Merger
Eastern Bank · Aug 2024 – Apr 2025
Led the technology integration efforts during a major financial institution merger, overseeing the seamless unification of systems, networks, and operational workflows between two legacy organizations. Directed the full lifecycle of infrastructure migration including data center integration, SD-WAN deployment across branches, and enterprise-wide email and SSO cutovers. Partnered with cross-functional teams to securely onboard hundreds of employees, implementing credential distribution protocols, automated provisioning strategies, and secure file transfer configurations. Led the planning and execution of the multi-day conversion event, coordinating IT teams to deliver a successful cutover with zero downtime during critical conversion windows.
SailPoint IdentityNow Implementation
Eastern Bank · 2021
Led the build team for the SailPoint IdentityNow implementation which included personally onboarding over 325 applications in two months. Configured and managed the SailPoint application. Created new sources inclusive delimited, AD connected, and API connected sources. Created testing plans and managed change controls. Created training plans for end users.
Change Control Workflow
Eastern Bank · Jan 2019 – Feb 2019
Redesigned the enterprise change control process by implementing a dynamic approval workflow using Salesforce Lightning forms. The new system replaced a manual, inconsistent approach with a structured, automated solution that improves risk determination and streamlines approvals. Impact is calculated based on user input, automatically determining the required approval path. All changes are tracked through Salesforce cases, providing full auditability and centralized visibility. Reduced turnaround time and improved compliance across departments.
Next-gen AV Replacement
Eastern Bank · Jan 2018 – Apr 2018
Led the enterprise-wide transition from legacy antivirus solutions to a modern endpoint protection platform. Deployed next-generation AV technology across thousands of endpoints, enhancing threat detection, response capabilities, and overall security posture. Coordinated phased rollouts, validated compatibility across diverse systems, and ensured seamless integration with identity and access controls. Completed ahead of schedule with no disruption to business operations.
Cyber Alert Bot
Eastern Bank · Apr 2018 – Jun 2018
Developed an automated workflow using Power Automate to streamline the handling of cybersecurity alerts. The solution parses data from SIEM-generated events to identify the impacted user, initiates a validation step to confirm whether the triggering action was legitimate, and routes the response to the security team for review. Significantly improved alert triage efficiency, reduced manual investigation time, and enhanced the accuracy of incident classification.
Cyber Security Metrics Automation
Eastern Bank · Jan 2018 – Mar 2018
Led the development of an automated metrics platform to centralize and streamline reporting across cybersecurity and project management functions. Integrated data from over 30 disparate sources, including SQL databases, APIs, and spreadsheet exports, into a unified analytics environment. Used ETL pipelines, custom filters, and advanced queries to normalize and enrich raw data. Dashboards built in Domo visualize KPIs, risk trends, and operational metrics, enabling real-time decision-making. Supports weekly reviews and executive reporting.
Network Migration
Stony Brook University · Jun 2015 – Jul 2015
Led the complete migration of Student Health Services' network infrastructure from a publicly accessible environment to a secure, segmented private Class C network. Oversaw the deployment of redundant, high-availability firewalls ensuring continuous uptime. Designed and implemented granular access-control policies, optimizing both security and performance. Established a robust, scalable network architecture that improved reliability, reduced risk, and aligned with institutional security standards.
Single Sign-On Implementation
Stony Brook Medicine · Aug 2007 – Nov 2007
Collaborated with a third-party vendor to design, test, and deploy a single sign-on (SSO) solution supporting a large enterprise user base. Introduced a seamless authentication experience across multiple applications, improving user efficiency and security. Developed step-by-step procedures and knowledge-base documentation. Trained helpdesk and support staff on troubleshooting, user provisioning, and escalation processes.
Technical Skills
PowerShell
Python
Splunk
HTML & CSS
Bash
RegEx
Git
Terraform
UNIX
Microsoft Azure
Cloudflare
Akamai
ServiceNow
AI-Augmented Engineering
Areas of Expertise
Vulnerability Management
Penetration Testing
Security Metrics
Incident Response
API Management
Risk Management
Awards
- Above and Beyond 2nd Quarter 2025 — Eastern Bank
- Above and Beyond 3rd Quarter 2024 — Eastern Bank
- Above and Beyond 4th Quarter 2022 — Eastern Bank
- Above and Beyond 1st Quarter 2022 — Eastern Bank
- Above and Beyond 1st Quarter 2021 — Eastern Bank
- Above and Beyond 4th Quarter 2020 — Eastern Bank
- Above and Beyond 2nd Quarter 2018 — Eastern Bank
- Above and Beyond 4th Quarter 2017 — Eastern Bank
- Above and Beyond 4th Quarter 2016 — Eastern Bank
- GIAC Advisory Board
- President's Volunteer Service Award — Lifetime Achievement
Volunteer Service
President and Chief of Department / Various Officer Positions
Port Jefferson EMS · 2005 – 2015
Operations Management
- Managed 125 volunteers and employees.
- Created policies and procedures.
- Performed Incident Command in numerous situations.
- Coordinated response efforts during major emergencies.
- Created and monitored key performance indicators.
Administration
- Chairman of the board of directors.
- Negotiated budget with multiple municipalities.
- Implemented electronic medical records system.
Training
- Created EMT training program for new recruits.
- Provided trainings for driving, CPR, and CEVO.
- Created continuing education program for EMS providers.
EMT / Critical Care Technician
Port Jefferson EMS · 2001 – 2015
- Providing emergent care to patients in Suffolk County.
- Communicating and coordinating care with physicians and nurses at various hospitals.
- Ensuring vehicles met Part 800 NYS DOH regulations.
- Provided safe transport for patients and crews.