Credentials
Credentials
CMMC Certified ProfessionalISACA
CISSPISC2ISO/IEC 42001:2023 Lead AuditorAI management systems
CompTIA Security+CompTIA
ISO/IEC 27001:2022 Lead AuditorBSI
Every badge links to its Credly verification page. Credly profile ↗
Built
CMMC Assessment Tool
Self-assessment, POA&M generation, and control mapping.
A CMMC Level 2 self-assessment that runs entirely in the browser. Nothing is uploaded.
It scores at the objective level across all 320 assessment objectives, tracks Level 1 and Level 2 separately, and computes a live SPRS score against the real methodology. Scoping, POA&M generation, and control mapping are built in.
- 320 objectives
- SPRS scoring
- POA&M generation
- Browser-local
A CMMC 2.0 advisor that runs as an agent skill. I extended it with the NIST 800-171A assessment-objective layer and the AO dataset, an AO-level SSP generator, Level 1 and Level 3 references, inherited-controls mapping from FedRAMP CRM/CIS Appendix J, and a reconciliation against the 32 CFR 170 final rule.
Forked from LV-262/cmmc-advisor
- Python
- NIST 800-171A
- 800-172
- OSCAL
- MIT
A decade across infrastructure, federal compliance, and advisory delivery.

Workstreet
Manager, GRC Engineering
- CMMC L1/L2
- FedRAMP 20x
- NIST 800-53 Rev 5
- KSI validation
- DFARS 7012/7019/7020
- ITAR/EAR
- SOC 2 Type II
- ISO 27001:2022
- AWS GovCloud
- Terraform
- Python
- Vanta
- Drata
- Secureframe
- Paramify
- IntelliGRC
- Claude
- Codex
- Cursor
- Agentic compliance pipelines
- SSP authoring
- C3PAO coordination

COLSA Corporation
Enterprise IT / Cyber Engineer
- CMMC L2
- CUI enclave design
- DFARS 7012
- ISO 27001:2022
- SPRS
- M365 GCC High
- Entra ID
- Intune
- Defender
- Sentinel
- Palo Alto
- Cisco/Meraki
- VMware vSphere
- Omnissa Horizon VDI
- Nutanix
- Tenable
- SentinelOne
- RSA
- Splunk

Astrion
formerly QuantiTechIT Systems Administrator
- NIST 800-171 Rev 2
- DFARS 7012
- Azure Government
- M365 GCC High
- SIEM
- XDR
- Windows 10 / WDS
- BitLocker / GPO
- PowerShell
- Veeam
