Real Impact, Anonymized

A federal cybersecurity agency needed to rapidly expand its regional advisory capacity to meet surging demand from state and local government partners.

The existing team of four advisors was stretched across a multi-state region. Scaling required recruiting diverse technical talent in a competitive market while maintaining team cohesion and mission focus.

Redesigned the hiring pipeline to prioritize mission-driven candidates from non-traditional backgrounds, established structured mentorship and onboarding, and cultivated an inclusive team culture centered on psychological safety and professional growth.

Grew the team from 4 to 17 advisors with zero involuntary turnover, creating one of the highest-performing regional teams in the organization.

A nation-state-linked threat campaign targeted programmable logic controllers used by water and wastewater utilities across the country.

Thousands of utilities relied on internet-exposed industrial control devices with default credentials. The vulnerability required immediate coordinated outreach across federal, state, and local boundaries.

Mobilized a multi-agency response within hours, coordinating with sector-specific partners to identify affected systems, issue actionable guidance, and conduct direct outreach to at-risk operators in the region.

Achieved initial stakeholder notification within 7 hours of discovery. Response became a model for cross-agency OT/ICS coordination and contributed to updated national guidance for water sector cybersecurity.

A frontier AI company needed to evaluate whether cybersecurity-related model interactions constituted legitimate security research or potential misuse.

Distinguishing between defensive security research and adversarial exploitation requires deep domain expertise. Evaluation workflows needed to scale without sacrificing nuance or accuracy.

Designed and executed human-in-the-loop evaluation protocols that paired automated triage with expert cybersecurity review, applying structured rubrics to assess intent, capability, and risk of dual-use queries.

Contributed to refined safety evaluation frameworks that balanced security researcher access with responsible use guardrails, improving both coverage and consistency of dual-use assessments.

A federal agency lacked a unified way to measure and communicate the impact of its regional cybersecurity programs to leadership and oversight bodies.

Each region tracked outcomes differently, making it impossible to aggregate impact data or demonstrate return on investment at the national level.

Designed and built a standardized risk outcomes dashboard that normalized key metrics across all regions, incorporating stakeholder engagement data, assessment completion rates, and risk reduction indicators.

Dashboard was adopted across all 10 regions and became a primary reference in senior leadership briefings and congressional testimony on agency effectiveness.

Government and critical infrastructure partners needed to prepare for emerging threats at the intersection of AI and cybersecurity.

Traditional tabletop exercises did not address AI-specific attack vectors. Participants ranged from technical practitioners to senior executives, requiring scenarios that were both realistic and accessible.

Developed a series of tabletop exercise scenarios covering LLM-assisted phishing campaigns, AI-accelerated vulnerability discovery, and prompt injection attacks against deployed AI systems. Facilitated sessions with cross-functional groups to stress-test response plans.

Exercises were adopted as a recurring preparedness tool and informed updates to organizational incident response playbooks for AI-related threats.

A high-profile international event with venues across multiple cities required comprehensive cyber resilience planning involving dozens of federal, state, local, and private-sector partners.

The event's scale and visibility created a high-value target environment. Coordination spanned multiple jurisdictions, time zones, and organizational cultures with no single authority over all stakeholders.

Leading cyber mission planning and coordination across all participating venues and jurisdictions, facilitating large-scale tabletop exercises, and building unified communication channels for real-time threat sharing during the event.

Preparedness efforts include a tabletop exercise with over 1,000 participants across 11 host cities, establishing a coordinated cyber resilience framework for the event.