In my early career, I worked in fast-paced, high-stakes technical environments. I learned quickly that success in technology doesn’t come from technical skill alone. It comes from staying composed under pressure, communicating clearly, and managing expectations in real time.
Those experiences shaped how I approach cybersecurity today. I learned how to ask the right questions without making people defensive, and how to deliver insights that people actually trust—because they know I’ve been where they are.
The Shift to Auditing: A New Perspective
When I moved into cybersecurity auditing, the change was immediate. Instead of fixing problems in the moment, I was guiding organizations through structured, strategic conversations about how their systems and teams operated.
One audit stands out. A senior executive sat in quietly while his team responded to my questions. Near the end, he asked,
“How long have you been doing this?”
That question wasn’t about my résumé. It was about how I carried myself—how I handled the room, moved the process forward, and made space for candor without sacrificing clarity. I gave him a short version of my background: over a decade in the military, followed by years in tech and security consulting. What I didn’t mention was that I’d been conducting high-stakes audits long before I had the title. But I could tell he already understood that.
Why I Founded Santsec
Santsec was built on a simple truth: cybersecurity auditing is about more than frameworks and findings. It’s about understanding the real-world context in which decisions are made, risks are weighed, and systems are maintained.
Too often, audits are done at arm’s length. Some firms show up with checklists but little understanding of how IT environments actually run. They point out risks but miss the human factors that drive them.
Santsec exists to close that gap.
We know what it’s like to be the person responsible for uptime and accountability. We’ve managed access control, responded to incidents, and handled the gray areas of technical debt, resource limitations, and real-world tradeoffs.
That experience informs everything we do.
Why Clients Choose Santsec
- Asking questions that lead to clarity, not conflict
- Translating technical findings into executive priorities
- Speaking with both credibility and respect to IT teams
- Delivering outcomes that improve your security posture—not just your compliance score
Whether we’re reviewing your SDLC, assessing cloud architecture, or conducting a risk assessment, we approach your business with technical fluency and leadership awareness.
Final Thought
I know what it’s like to be on the front lines when systems fail. Today, I work alongside leaders who want to prevent that failure before it ever happens.
Santsec isn't here to criticize. We're here to strengthen.
Let's talk about what that looks like for your organization.
Ready to Strengthen Your Security Posture?
Experience auditing that understands your real-world challenges. At Santsec, we bring technical expertise with practical leadership experience to help you build stronger, more resilient security practices.
Our Approach:
- • Real-world context in every assessment
- • Clear communication without technical jargon
- • Actionable recommendations you can implement
Services:
- • Security audits and assessments
- • SDLC security reviews
- • Cloud architecture evaluations