intersoft security

Over 35 years of IT experience in diverse businesses with in-depth technical expertise, specializing in Identity and Access Management and Public Key Infrastructures.

Specialties: Identity and Access Management • Public Key Infrastructures • Certificate Lifecycle Management • Information Systems Security • Highly Available/Scalable Systems Design • Enterprise Architecture • Software Design and Development

EXPERIENCE

ICAM Architect / PKI SME
intersoft security
May 2025 - Present
Independent consultant supporting our clients' information security requirements.
Current clients include: Second Factor, Inc., and Axle Informatics.
ICAM Architect (GS-15/10)
U.S. Department of Homeland Security
Feb 2020 - Apr 2025
Lead a great team to implement the award winning Enterprise Non-Person Entity (ENPE) PKI based on PrimeKey/KeyFactor EJBCA Enterprise Edition. Evangelist for digital certificate lifecycle management and crypto agility to support the migration to quantum safe cryptography. System owner for the ENPE PKI and Enterprise PKI Validation Service (EPVS).
Sr. ICAM Engineer
Sevatec, Inc.
Jul 2017 - Jan 2020
Provided technical architecture, leadership and PKI SME support for the development of the Trusted Certificate Manager (TCM) application. Led USCIS ICAM enterprise Physical Access Control System (ePACS) project, delivering a functioning ePACS system with REST API interface to multiple PACS including Gallagher.
Sr. ICAM Engineer
BRMi
Feb 2017 - Jul 2017
Provided ICAM SME support to DHS HQ ICAM program and acted as liaison between unclassified and classified ICAM projects until company contract expired.
Sr. Analyst
Protiviti
2013 - Feb 2017
Identity Management Subject Matter Expert/Federal PKI Technical Lead/Security Officer
Served as the Technical Lead of the Federal PKI Management Authority advising on technical matters and setting technical direction for the FPKI MA. Supported the FPKIMA Platform, Community and Security Teams as well as the FPKI Program Manager. Performed analysis in support the FPKIMA’s move from FISMA Moderate to High. Authored white papers in support of the Program Manager, including on FPKIMA Trust Infrastructure Operational Resilience.
Sr. Manager
Protiviti
2008 - 2013
Identity Management and Infrastructure Subject Matter Expert
Technical Architect for the Federal PKI. In support of the FPKIMA, directed the redesign of the Federal PKI Trust Infrastructure including new data centers, networking, servers and applications. Over a 12 month period, with monthly traffic increasing over ten times, the redesigned infrastructure improved overall performance by 30x, and 60x for the top two most requested resources. The scalable, highly available infrastructure supported over 1.5B requests per month with sub-quarter second response times. The redesign included project management of the HSPD-12/PIV compliant Physical Access Control System (PACS) installation for one of the new data centers.
Directed elements of a comprehensive testing program to support the FPKI. The testing program included a living, systemic regression test plan and a multi-protocol, customizable load testing capability.
As FPKI Platform Team Lead, managed the operations, security and network administration of the Federal PKI and provided project management oversight for enhancements.
If we've met IRL: Connect on LinkedIn