Experience

 

Senior Technical Program Manager - Azure Security Communications (Microsoft, 2023 - Current)

  • Managed semester feature planning and requirement gathering for partner engineering teams. Provided monthly OKR updates in a central forum.

  • Drove the communications workstream for Azure security and privacy incidents end-to-end across multiple partner teams, ensuring customers received the correct notifications in the correct manner and support teams were properly mobilized.

  • Authored customer facing copy, distilling complex security topics into easy to understand language and actionable steps for remediation.

  • Acted as automation and data query SME and leveraged Azure Logic Apps and Python to handle the automatic enrichment and processing of incidents.

  • Investigated and mitigated instances of customer fraud and abuse in Azure cloud environments, taking down offending resources and communicating to customers saving Azure and customers millions of dollars.

Senior Security Engineer - Threat Defense Engineering (Microsoft, 2018 - 2023)

  • Secured Microsoft’s corporate environment and promoted customer adoption by migrating legacy SIEM to cloud based Azure Sentinel processing 10 billion security events daily. Used KQL to create threat detection rules that protect company assets by notifying security analysts of malicious behavior.

  • Acted as subject matter expert for automatic case creation using Logic Apps and for Azure DevOps CICD pipelines — provided process documentation and training for engineers and users.

  • Drove clarity by communicating monthly team status to executives. Used a data-driven story telling approach using KPI metrics, team wins, and risks.

  • Operated cross-functionally to decreased security analyst threat hunting response time from 52 hours to 25 minutes by developing a Python data connection library hosted on Jupyter Hub interface. Evangelized team success by presenting the story and impact to Microsoft CEO and LT.

  • Increased clarity around threat coverage by designing a central detection database with automated management of 2,000+ live detections saving >35 hours per month and leveraging Azure DevOps, Python, and Logic Apps. Improved user experience and adoption by providing process documentation and training.

  • Reduced new employee onboarding time and created standard processes for team of 15 engineers including documentation process, standardized team repository and trained users on Git flow process, created the employee onboarding guide, and automated incident response using Python.

Software Engineer - Penetration Testing (Microsoft, Early Career Rotation Program, 2017 - 2018)

  • Developed automated penetration testing reconnaissance web application using Python, HTML/CSS, JavaScript, and SQL to reduce manual red team efforts including auto-deployed scanning scripts for accounts, hosts, and services.

  • Assisted ethical penetration testing of internal applications for exploitable vulnerabilities and preventing adversaries from obtaining footholds in the corporate network.

Service Engineer - Threat Defense Engineering (Microsoft, Early Career Rotation Program, 2017 - 2017)

  • Responded to ArcSight alerts and owned end to end mitigation regarding potential breaches.

  • Developed autonomous UEBA policies and detections using Securonix to advance real-time security monitoring and anomalous behavior detections.

Program Manager - Sales and Marketing (Microsoft, Early Career Rotation Program, 2016 - 2017)

  • Managed end to end support of inside sales telephony expansion in EMEA, LATAM, and APAC regions.

  • Structured Genesys piloting process, demoed new capabilities to key stakeholders, participated in onsite support and triage, and organized pilot team for a successful roll out.

  • Pushed for tool stability improvements to surge performance, reduce crashes, and increase revenue by upping seller productivity through an easier and faster experience.

Skills

 

Hard Skills

Python, PowerShell, KQL, SIEM, Microsoft Azure Suite, Linux/Bash, HTML/CSS, JavaScript, SQL, Git, YAML, Logstash, Jupyter, Azure DevOps CICD

Soft Skills

Agile, Program Management, DevOps, Threat Detection, Incident Response, Health and Security Monitoring, Content Design, Technical Writing, Data Analytics, Customer Focus, User Empathy, Mentoring, Communicating to Stakeholders, Presentations, Customer Communications, Security Incident Response

Education

 

Bachelor of Science (B.S.), Information Technology and Cybersecurity

Brigham Young University, Provo, UT 2012-2016

Master of Arts (M.A.), Counseling Psychology (in progress)

The Seattle School of Theology and Psychology, Seattle, WA 2023-present

Publications

 

Winders, W., & Cornel, C., & Cornel, C., & Larson, A., & Cunha, S. A., & Moses, S., & Rowe, D. C., & Wilkinson, L. (2015, June), Cyber War is not Gender War - Experiences of Creating a Productive Heterogeneous Environment in Cyber Security Research Paper presented at 2015 ASEE Annual Conference and Exposition, Seattle, Washington. 10.18260/p.23776

Cunha, S., Winders, W., Rowe, D. C., & Cornel, C. (2016, September). The untrustables: How underclassmen evolved our approach to student red-teaming. In Proceedings of the 17th Annual Conference on Information Technology Education (pp. 26-30).