Securing the Frontier: Cloud, AI, and National Security.
John Lake | TS/SCI Cleared | Senior Cybersecurity Consultant & Emerging Technology
Bridging the gap between mission-critical defense and the future of AI security.
Based in Washington, D.C. — Available Remotely.
Executive Summary
I'm a security leader and engineer dedicated to defending the infrastructure that powers our future. With a decade of experience spanning Army Cyber Command, AWS, and Mandiant (Google Public Sector), I specialize in building resilient security programs for the most sensitive environments on earth.
My approach combines the rigor of national security with the agility of modern cloud-native engineering. Whether it's securing frontier AI models, architecting multi-cloud zero-trust environments, or leading $3M digital transformations, I focus on one thing: reducing the attack surface without slowing down the mission.
Core Competencies
Strategic Leadership
Cloud & Infrastructure
Defense & AI Security
Selected Impact
$3M Defense Industrial Base Security Overhaul
- Led end-to-end IT/OT and SCADA transformation for a DIB client
- Built comprehensive Splunk Cloud SIEM covering IT and OT networks
- Managed SOC as MSSP across VMware Cloud, CrowdStrike, Okta, AWS, Azure, Fortinet, Nozomi, Gigamon
Securing AI/ML Infrastructure for Government
- Led ATO workstreams for AWS SageMaker (AI/ML) into classified environments
- Produced full RMF/NIST 800-53 body of evidence including CONOPS, Security Impact Analysis, Critical Control Lists
- Established Secure Research Enclaves (GovCloud) for DIB academic institutions under CMMC 2.0
Government Sector Information Assurance Program
- Built and led Government Sector Information Assurance Team from scratch
- Drove RMF compliance across satellite network infrastructure (NIST 800-53, CMMC, ISO 27001, STIGs)
- Led classified systems strategy: Cross Domain Solutions, TRANSEC, S/TS/GOV Clouds, FedRAMP, DOD IL5
Counter Infiltration & Zero Trust Deployment
- Led Discovery and Counter Infiltration (DCI) efforts validating detections on partner networks
- Re-engineered network architecture to implement zero-trust, isolating adversary presence
- Deployed distributed IDS solutions (Security Onion, ELK SIEM, Endgame) across multi-state operations
Experience
Mandiant · Google Public Sector
Emerging Technology Cybersecurity Consultant
APR 2024 – PRESENT
Reston, VA
- Led $3M IT/OT and SCADA transformation initiative for Defense Industrial Base client
- Conducted multiple AWS Security Assessments and Active Directory Security assessments
- Delivered specialized security assessments including Ransomware Defense and Validated Architecture Review (VADR)
- Performed comprehensive Security Program Assessments: Zero Trust, IAM, Change Management, Vulnerability Management
- Developed cloud mapping tool aligning SLED Cybersecurity Requirements with IaC pilot (GCP)
- Spearheaded enterprise-wide AI security initiatives, successfully integrating frontier models (Claude Enterprise, Gemini for Government) while establishing governance and security controls to drive safe AI adoption
Amazon Web Services
Information Systems Security Manager (ISSM)
SEP 2023 – APR 2024
Herndon, VA
- Built and led Government Sector Information Assurance Team
- Conducted Risk Mitigation Framework (RMF) across satellite network infrastructure
- Led classified systems strategy: Cross Domain Solutions, TRANSEC, S/TS/GOV Clouds
- Drove compliance roadmaps: FedRAMP, FISMA, DOD IL5, CMMC
Amazon Web Services
Cloud Security Consultant
JUN 2022 – AUG 2023
Herndon, VA
- Conducted dozens of Deliverable Security Reviews across all AWS services
- Led multiple ATO engagements: WorkSpaces, Direct Connect, SageMaker, Cross-Domain Solutions
- Led Landing Zone Accelerator deployment for DIB Academic Institution (CMMC 2.0)
- Conducted Engagement Security Assessments across data handling and endpoint protection
United States Army
Senior Cyber Network Defense Program Manager / Technical PM
OCT 2016 – MAY 2022
Multiple Locations
- PM for red/blue simulation exercises; managed cross-functional geographically dispersed teams
- Led Discovery and Counter Infiltration (DCI) efforts on partner networks
- Implemented zero-trust via VRF network segmentation
- Deployed distributed IDS (Security Onion, ELK, Endgame)
- Authored TTPs and SOPs organization-wide
Education & Certifications
Education
M.S. Homeland Security, concentration Cybersecurity
University of the District of Columbia
B.S. Computer Information Systems
Virginia Commonwealth University
Certifications
How I Work
Security as an Enabler
I build security programs that accelerate the mission, not slow it down.
Threat-Informed Defense
Every control I implement is mapped to real adversary TTPs, not checkbox compliance.
Bridge Builder
I translate between the boardroom, the SOC, and the engineering team — fluently.
Let's Secure What Matters.
Open to CISO, Cybersecurity Manager, and Practice Manager roles.
Washington D.C. + Remote.
© 2026 John Lake. All rights reserved.