-brightgreen?style=flat-square){kind=icon}
Security Engineer | GRC · Cloud Security · Detection Engineering · RF/Wireless Security
I design and implement risk-based security controls across cloud and regulated environments, translating CIS, NIST, and ISO frameworks into audit-ready enforcement, validation, and detection.
📧 careers@pharns.com · 🌐 portfolio.pharns.com · 💼 LinkedIn
USAF Veteran (Service-Disabled) · USPTO Patent Holder · 12 Active Certifications
| Category | Details |
|---|---|
| Target Roles | Security Engineer (GRC/Cloud) · Cloud Security Engineer · Security Controls Engineer · Technical GRC Engineer |
| Availability | February 2026 (B.S. graduation) |
| Work Style | Remote-first · Async-ready · Distributed team experience |
| Location | US-based preferred · Remote US/EU |
| Engagement | W-2 preferred · Contract considered |
Multi-domain RF threat detection platform monitoring Wi-Fi, Bluetooth, SDR, GPS, and ADS-B simultaneously. Centralized sensor aggregation with structured logging and detection workflows.
- Codebase: 25 Python modules · 81 shell scripts · ~12,500 LOC
- Status: WGU BSCIA Capstone
- View Project →
Multi-agent GRC automation using n8n orchestration and CISO Assistant.
- Stack: Portal + n8n + Nextcloud + SuiteCRM + CISO Assistant
- Status: Production MVP — 4 workflows operational
- View Project →
Security Onion SIEM with TheHive case management and Cortex enrichment.
- Detection Content: Custom Sigma-style rules · Alert tuning
- IR Playbooks: Documented incident response workflows
- View Project →
Deterministic AI agent orchestration with explainable routing and audit-grade logging.
- Codebase: 6,361 lines Python · 72 health checks · 4 provider integrations
- View Project →
S3 default-deny · GuardDuty export · Scoped IAM with CIS/NIST mapping
- Status: Architecture complete, CLI implementation in progress
| Metric | Value |
|---|---|
| Production infrastructure security | 7 years (USOG, 2017–2024) |
| Vulnerabilities remediated | 15,000+ |
| Framework implementation | CIS v8 → NIST CSF → SOC 2 mapping across regulated environments |
| Compliance enablement | Audit-ready evidence pipelines for PCI-DSS & multi-framework controls |
| PCI-DSS endpoint hardening | <48 hours with documented evidence pack |
| Active certifications | 12 |
| Domain | Skills |
|---|---|
| Framework Implementation | CIS Controls v8 · NIST CSF · ISO 27001 · PCI-DSS v4.0 · SOC 2 mapping |
| Cloud Security | AWS IAM · S3 · GuardDuty · CloudTrail · Policy-as-Code |
| Detection Engineering | Security Onion · Wazuh · TheHive/Cortex · Sigma · Alert tuning |
| Automation | Python · n8n · CISO Assistant · Evidence pipelines |
| RF/Wireless | RTL-SDR · HackRF · Kismet · Bluetooth/BLE · ADS-B |
Security+ · Network+ · A+ · ITIL 4 · ISC² CC · SSCP (Assoc.) · LPI · Project+ · CSIS · CIOS · CySA+ · CSAP
PenTest+ (Feb 2026)
AWS Cloud Practitioner · CCSP
B.S. Cybersecurity & Information Assurance — Western Governors University (Feb 2026)
Capstone: TraceLock™
- USPTO-granted patents in UAV payload systems
- Multi-domain RF detection architecture
- FAA Part 107 certified
- Software-defined radio & wireless security expertise
| Channel | Link |
|---|---|
| careers@pharns.com | |
| Portfolio | portfolio.pharns.com |
| linkedin.com/in/pharns | |
| Certifications | Credly |
Open to remote security engineering roles. US Citizen.