Cloud Governance & Security Architecture MBA | BS Accounting | Budgeting, Variance Control, Decision Traceability
I build governance-first security and cost controls that leadership can actually review, auditors can actually trace, and engineers can actually follow.
My work sits at the intersection of:
- Identity governance & administration (IGA)
- Supply chain risk management (SCRM)
- FinOps cost governance
- Cloud platform behavior (Azure-first)
- Audit-ready documentation and decision trails
This profile showcases how governance decisions are made, explained, approved, and retained — not just how dashboards look.
- Identity lifecycle automation (JML, RBAC, Conditional Access, PIM)
- Vendor risk scoring with deterministic justification layers
- Budget vs actual variance governance
- Cost ownership & allocation logic
- Forecast discipline and exception handling
- Executive-ready cost reporting
- Evidence retention for leadership, finance, and audit review
I intentionally avoid:
- "click-here" cloud tutorials
- admin-level claims I can't evidence
- tool-first narratives without control logic
| Pillar | Packs | Controls | Status |
|---|---|---|---|
| Identity (IGA) | 9 | 90 | Sealed |
| Supply Chain (SCRM) | 8 | 80 | Sealed |
| FinOps | 5 | 50 | Sealed |
| Cloud Security | 9 | 90 | Building |
| Total | 22+ | 220+ | 3 pillars operational |
Every pack delivers 10 Expected-vs-Observed controls. Every control cites evidence. Every finding — including honest fails — is documented and tracked.
A governance-first portfolio demonstrating how cloud spend is controlled as a financial discipline.
What it proves:
- Variance thresholds trigger action
- Decisions are logged and reviewable
- Evidence artifacts are retained and traceable
- Cost governance operates on a repeatable monthly rhythm
9 packs covering the full identity lifecycle: joiner-mover-leaver automation, RBAC least privilege, conditional access, quarterly access reviews, PIM/JIT elevation, guest/vendor IAM, separation of duties, cloud permission management (CIEM), and identity threat detection.
8 packs covering the full vendor lifecycle: risk tiering and scoring, attestation validation, SBOM governance, vendor scorecards, incident response (52-second containment), Tier 2/3 traceability, SLA governance, and vendor offboarding.
Every proof pack includes:
- executive summary (one-page)
- documented financial or security logic
- evidence index (traceability)
- sample tables and decision records
- explicit assumptions and scope boundaries
No screenshots or artifacts imply production authority or engineering control.
- MBA + BS Accounting
- 20+ years in high-accountability environments (U.S. Navy, federal, aerospace)
- Budget ownership, procurement governance, audit readiness
- Executive reporting and documentation discipline
- Cloud Security & IAM (Entra ID) | Azure + AWS | Zero Trust | IT Governance
Security & Identity
- CompTIA Security+
- CompTIA Network+
- (ISC)² Certified in Cybersecurity (CC)
- SailPoint Identity Security Leader (ISL)
- CCSK v5 (Certificate of Cloud Security Knowledge)
- Microsoft SC-900 (Security, Compliance & Identity Fundamentals)
- Fortinet Certified Associate Cybersecurity (FCA)
- Fortinet Certified Fundamentals Cybersecurity (FCF)
Cloud Platforms
- AWS Certified Cloud Practitioner
- Microsoft AZ-900 (Azure Fundamentals)
- Microsoft Cloud Support Associate Specialization
- Microsoft IT Support Specialist Specialization
FinOps & Operations
- FinOps Foundation — Introduction to FinOps
- FinOps Foundation — Introduction to FOCUS
- ITIL 4 Foundation
- Lean Six Sigma Green Belt
- Scrum Master (Scrum Institute)
- Google IT Support Professional Certificate
- SC-300 (Identity & Access Administrator) — in progress
- FinOps Certified Practitioner (FOCP) — in progress
- CSA Certificate of Competence in Zero Trust (CCZT) — in progress
Fort Worth, TX Open to remote and hybrid roles
Small steps. Long vision. Governance scales when decisions are explainable.