• Registered CMMC Practitioner – Cyber AB Paz, John | CyberAB
• COMPTIA Security+CE
• Certified PMP®, Project Management Institute
• Certified Ethics Associate
• Fortinet Certified Associate Cybersecurity - Issued Jun 2024 · Expires Jun 2026
• Fortinet FortiGate 7.4 Operator – Issued Jun 2024
• Certified Cyber Insurance Specialist (CCIS)
• Migrating to Google Cloud-Credential ID K3X7GHTCP8MJ
• Google Cloud Platform Fundamentals: Core Infrastructure-Credential ID ZQG84HR3UEEX
• TELCOMA Global -Certified 5G Security Expert-Credential ID 141289Credential ID 
• 5G Strategy for Business Leaders-Credential ID b8e0d88fb9ac4fe79919f4563b637c24
• Management & Strategy Institute - Certified Ethics Associate-Credential ID 193466787
• Microsoft Azure Fundamentals (AZ-900) - Credential ID E3894A-7H847349370 (Craftsman) Communications, Computer Systems Control
• CCAF – Electronic Systems Technology - 42 CEU hours 
• Certified Video Conferencing Engineer – Dec 1997 
• Executive Management Certified (EMC)
• Fiber Optic Installation and Splicing for the Technician, AT&T 1993
• Google Cloud Platform Fundamentals: Core Infrastructure
• ITIL Foundation Certificate in IT Service Management 
• ITIL Practitioner’s Certificate in IT Service Management, Support and Restore – 2006
• ITIL Version 3 Certificate, Foundation Bridge Examination - Jul. 16, 2008

I’m a cybersecurity and program delivery leader with more than 20 years of experience driving large‑scale cloud, infrastructure, and security transformations across federal, financial, and state government environments. My background spans Zero Trust, IAM, endpoint security, CMMC readiness, and enterprise cloud modernization.

Most recently, I served as a Cyber Readiness Program Manager, where I led a major Zero Trust implementation for a federal agency—deploying Zscaler ZIA/ZPA, CrowdStrike, and Okta/ across more than 2 million identities and thousands of endpoints. I built 26 SOPs, established governance and metrics frameworks, advanced RMF/ATO compliance, and transitioned tool ownership from contractors to government teams through structured training and documentation. I also built and operationalized a full Insider Threat Program and supported CMMC Level 1 and 2 readiness for defense contractors.

Before that, I delivered Microsoft 365 and Azure solutions as a Cloud Program Manager, led global DLP for Deutsche Bank across 68 countries, and achieved 95% patch compliance for 166,000 USPS endpoints. Earlier in my career, I built a deep technical foundation in networking, telecom, and data center operations, which helps me bridge strategy, engineering, and mission needs.

Across every role, my strength is leading cross‑functional teams through complexity—listening first, aligning stakeholders, and turning ambiguous security challenges into structured, executable programs. I’m at my best when I’m building clarity, driving adoption, and delivering secure, scalable solutions that organizations can sustain long‑term.

1. Leadership & Influence

• Led massive Zero Trust modernization (Zscaler, CrowdStrike, Okta) across 2M+ identities and 10,000+ endpoints.
• Unified engineering, networking, ICAM, security, and mission owners through governance, shared metrics, and clear decision rights.
• Built trust by listening first, validating assumptions with data, and translating technical risk into mission‑impact language.
• Directed cross‑functional teams in federal, financial, and state government environments.

2. Organizational Change & Adoption

• Designed full adoption programs: SOPs, training, office hours, FAQs, SharePoint hubs, and champion networks.
• Reduced resistance by creating role‑based enablement and phased rollout models (pilot → limited rollout → enterprise).
• Used telemetry, help‑desk trends, and pilot feedback to refine policies and improve user experience.
• Delivered smooth enterprise adoption of Zscaler, CrowdStrike, Okta, and Microsoft Cloud solutions.

3. Tools, Workspaces & Process Design

• Built centralized SharePoint workspace for Zero Trust rollout: SOPs, diagrams, checklists, videos, FAQs.
• Created Zero Trust metrics tracker mapping tools to DoD ZT pillars and RMF controls.
• Authored 26 SOPs and full Insider Threat Program documentation for NISPOM/CUI compliance.
• Developed dashboards tracking agent health, authentication success, tunnel performance, and compliance posture.

4. Workload, Prioritization & Project Management

• Managed multiple concurrent workstreams (Zero Trust, CMMC, ICAM, RMF/ATO, cloud deployments).
• Used structured prioritization (risk, impact, urgency, dependencies) to sequence work.
• Built integrated schedules and delivered weekly executive dashboards summarizing progress and risks.
• Balanced urgent operational issues with long‑term strategic milestones in highly regulated environments.

5. Technical Execution & Delivery

• Directed enterprise Zscaler rollout: pilots, connector testing, ZPA tunnel strategy, remote/branch deployment.
• Oversaw CrowdStrike deployment across 7,300+ endpoints, 180+ mission servers, AWS Workspaces, and VDIs.
• Achieved 95% patch compliance for 166,000 USPS endpoints.
• Led global DLP implementation for Deutsche Bank across 68 countries and 131,000+ users.

6. Compliance, Security & Governance

• Registered CMMC Practitioner; led CMMC L1/L2 readiness, evidence development, and inspection prep.
• Advanced RMF/ATO posture: validated controls, developed POA&Ms, supported ATO‑C extensions.
• Built and operationalized Insider Threat Program (policies, training, workflows, evidence).
• Strengthened C2C maturity by aligning device posture and stabilizing connectors across multiple sites.

7. Communication & Stakeholder Engagement

• Delivered clear, data‑driven status updates to executives, mission owners, and technical teams.
• Facilitated workshops, architecture sessions, and change‑management briefings.
• Translated complex cybersecurity and cloud concepts into business‑aligned recommendations.
• Built strong relationships across government, financial, and enterprise environments.

8. Problem‑Solving & Continuous Improvement

• Resolved agent check‑in failures, provisioning issues, and connector instability during large deployments.
• Identified inventory gaps requiring Falcon for IT to improve asset visibility.
• Improved compliance traceability through structured evidence packages and documentation workflows.
• Streamlined processes by consolidating documentation and standardizing SOPs.