Cloud & Network Security
- SASE
- ZTNA
- FWaaS
- Secure Web Gateway
- CASB
- DLP
- DNS Security
- IPS
- RAVPN
- VPN — IPSec / SSL
- TLS decryption & inspection
- Generative-AI security & guardrails
- Traffic analysis
Field Dossier — Cloud Security
Cloud & network security engineer.
Cloud and network security engineer with 14+ years at Cisco and Sophos, specializing in high-severity escalation engineering across SASE platforms and the tooling that accelerates resolution at scale. Increasingly focused on designing agentic AI systems for security work.
I specialize in diagnosing high-severity issues across SASE platforms — ZTNA, FWaaS, secure web gateway, DNS security, IPS, and RAVPN — and in bridging engineering and support to drive root cause to resolution. Beyond escalations, I build the infrastructure that makes the team faster: a cloud lab for reproducing customer environments, diagnostic tooling in Bash, Python, and JavaScript, a Webex automation bot (Python async, Docker, EC2) for case routing and severity alerting, internal documentation, and mentoring and training programs.
Lately I design and ship agentic AI systems. At Cisco I built a human-in-the-loop tool on Claude Code and AWS Bedrock, now in active use by my team, that drives end-to-end triage on high-severity escalations through MCP tool-calling and skill-based modules pulling live logs and internal state. Outside work I build LangGraph agents for security use cases where safety is structural rather than prompt-based — destructive actions hard-blocked behind human-approval gates the model cannot skip, and the reasoning layer kept separate from the tools that act.
What motivates me is the full loop — taking a difficult technical problem to a deeper understanding of the product, then scaling that understanding across teams through documentation, labs, and hands-on teaching.
May 2023 — Present
Cisco · Vancouver, BC
Dec 2021 — Apr 2023
Cisco · Vancouver, BC
Dec 2016 — Dec 2021
Cisco · Vancouver, BC
Mar 2015 — Dec 2016
Sophos · Vancouver, BC
Jan 2014 — May 2015
Sophos · Vancouver, BC
Apr 2013 — Dec 2013
Sophos · Vancouver, BC
Nov 2011 — Apr 2013
Sophos · Vancouver, BC
Active open-source contributor. Recent work centers on agentic AI for security — LangGraph agents with structural safety (destructive actions gated behind human approval, the reasoning layer separated from the tools that act) — alongside network and DNS security tooling, encrypted DNS, and upstream fixes to platforms I run. Primarily Python, with JavaScript, PHP, and Shell, and supply-chain-hardened CI/CD throughout.
Project details and repositories available on request.
BCIT — UBC Joint Program
Graduated with Distinction. Coursework in VMware virtualization, Active Directory, Postfix/Dovecot, pfSense, Cisco routing & switching, Linux, and Windows Server — with strong standing in security theory and applied practice.