I'm a clinical systems administrator doing senior-scope security work inside a critical-access hospital — hardening medical devices, holding identity infrastructure together, and building the tools that were missing. This page is that work, monitored live.
Every node below is real infrastructure I own or have hardened. Green is holding. Amber is active work. Hover a node to bring it forward.
Consulted on the MUSE and ELI cardiology cart projects, optimizing SQL queries and streamlining the data workflows that move ECG records where clinicians need them — faster reads, cleaner data.
Locked down the ECG fleet: Technician-ID authentication, idle-timeout lockouts, and HIPAA compensating-control documentation for devices that couldn't meet the standard natively. Authored every change record.
A spreading cluster of monitors kept dropping their wireless link. Ran it to ground as a WLAN coverage bottleneck rather than device failure — the kind of fault that only surfaces at the edge of the network, where most people never look.
Designed the integration that ties badge access to AD security groups: new hires are provisioned with role-based door access automatically, and terminated employees lose it the moment they're offboarded. Identity lifecycle that runs itself.
Reviewed the firewall HA pair during a facility-wide slow-network complaint and turned "the internet is slow" into an actual diagnosis. Edge security and triage where the symptom and the cause are rarely the same thing.
Built out the Vocera infrastructure that lets clinical staff reach each other hands-free across the floor, then trained the departments on it to drive real adoption. Certified Vocera Voice 5 system administrator.
Researched and implemented mitigations for Rapid7 penetration-test findings and eliminated critical Active Directory Certificate Services vulnerabilities — measurably improving the security posture of the environment.
The same floor, walked longer. A pattern of taking senior-scope work without waiting for the title to catch up.
Certifications and the working toolset. Amber items are in progress.
Shipped code, not just coursework. Each one links to the repository.
Stood up a live honeynet and security operations center — Azure VMs feeding Microsoft Sentinel, with Log Analytics surfacing real attack telemetry.
End-to-end ML pipeline in Python — data analysis, SQL, and scikit-learn models built and evaluated in Jupyter.
A delivery-routing engine built on hand-implemented data structures and algorithms in Python.
A full JavaFX desktop application — data management, software design, and a complete UI.
An Electron desktop app I built to replace a paid badge-printing license — same output, zero license cost. It prints every new hire's first badge and still runs in production.
A rare combination — clinical-systems fluency plus security credentials plus the instinct to build — that pays off in four ways.
I harden the exact class of devices most security teams treat as a black box — ECG carts, telemetry, biomed endpoints — and document the compensating controls to back it up.
HIPAA-aware by default. I run EMR governance, change control, and audit-ready documentation cleanly — the unglamorous work that keeps an organization defensible.
SSO, firewall HA pairs, and the kind of root-cause network triage where the symptom and the cause are never the same thing. I keep the floor running.
When the right tool isn't there, I write it — SQL workflow optimization, AD-to-badge automation, KQL detections, and shipped applications in Python and Java. Problems get solved, not just ticketed.