Who I am

I'm a cybersecurity professional focused on defense contractors, federal suppliers, and security teams working toward CMMC 2.0 and DoD requirements. Through CyberSec Insight I share practical guidance on CMMC, NIST frameworks, zero trust, and securing the defense industrial base (DIB).

My work turns compliance and architecture standards into clear next steps: CMMC assessments, zero trust for hybrid cloud, and hardening Azure and identity for federal use.

Tools & development

I also build the security tools hosted here for practitioners and teams who need fast, trustworthy checks without a vendor gate. That includes security header scans, domain email DNS (MX, SPF, DKIM, DMARC), email header analysis, phishing URL heuristics, password and hash helpers, and GUID conversion. No sign-up; inputs are not stored in an app database.

Tools catalog·Scan hub·Password & breach tools

Certifications & credentials

CMMC Certified Professional (CCP)

Microsoft Certified Cybersecurity Architect Expert

Verified CMMC Certified Professional in the CyberAB ecosystem. Official profile:

CyberAB member profile↗

Expertise

Depth across modern cybersecurity and compliance, including:

• CMMC 2.0 & 32 CFR Part 170: Scoping, gaps, control implementation, C3PAO readiness.
• DoD & DFARS: Contract flow-down, NIST SP 800-171, DIB supply chain.
• Zero trust: Identity-centric design, hybrid and multi-cloud, federal access patterns.
• Microsoft Azure security: Reference architectures, baselines, Entra ID, cloud controls.
• NIST frameworks: 800-53, 800-171, CSF, mapping to CMMC.
• Detection & response: Detection engineering, IR, SecOps for enterprise and DIB.

What you'll find here

CyberSec Insight is for practitioners, program owners, and contractors who want concrete guidance, not generic vendor messaging. The blog covers CMMC roadmaps, Azure hardening, identity, and assessment-ready steps. The tools support day-to-day checks alongside that content.