Open to the right conversations Cincinnati, OH Senior Manager, IT · Procter & Gamble

Security that lets the company say yes to AI.

I'm 26, a Senior Manager in P&G's tech-innovation group. I clear the security and risk path so the company can adopt AI fast — without dropping the guardrails. I came up through cybersecurity (three promotions in three years), and I build AI products on my own time (AJ AI, receptr). So when a new tool lands on my desk, I've usually built one like it.

Open the case file Get in touch
01

Profile

I work between innovation and risk at P&G: I clear the risk path — third-party risk, iRisk, governance — so scouted AI tools and startups can actually start POCs and scale. My foundation is cybersecurity (iRisk, third-party risk, threat and data protection), and I automate the work where I can. The InfoSec agents started as me trying to automate my own job — I couldn't run that data through a public tool, so I built it in Copilot Studio. I build AI products on my own time too, so I'm not guessing about the tech I review. The numbers below open if you want the proof.

50+ iRisk and 500+ third-party-risk assessments (including ~40 CyberVadis), maintaining ~97% iRisk compliance across the application portfolio. As App SPOC, drove the application-compliance backlog from 41 non-compliant assets down to 1.
I built a Copilot Studio InfoSec assistant to automate my own risk-clearance work — routine policy and review questions — and paired it with Python automations across reporting and assessments, taking roughly 10 hours of repetitive work off my week. That prototype fed the multi-agent system (AskInfoSec) the team later built.
AJ AI is a ~34,000-line Python system I built and maintain, with 1,668 automated tests. It runs an audited classify → route → execute loop across models — a human on every irreversible call, plus a doomloop detector and hard budget caps that stop a runaway agent before it spends. The engine behind receptr and the rest of my work.
02

Experience

Jun 2026 — Present
Senior Manager, IT — Innovation Activation & Risk Enablement Lead
Procter & Gamble · Cincinnati, OH
  • Clear the risk path — third-party risk, iRisk, CDAs, governance — so scouted AI tools and startups can actually start proofs-of-concept and scale, without dropping the guardrails.
  • Led an enterprise evaluation of AI model-routing and gateway platforms and authored the leadership-facing market recommendation — landscape, build-vs-buy, and a 6–12 month outlook.
  • Align AI-vendor and POC clearance to enterprise AI-risk standards (NIST AI RMF, ISO/IEC 42001, EU AI Act, GDPR), turning the requirements into playbooks and decision frameworks teams can actually follow.
  • Bring shadow-AI and AI-inventory discipline to adoption — knowing which AI tools and assets are in use, and keeping them governed as they scale.
  • Assessed dozens of AI startups and ran market landscape reviews across agent platforms, security tooling, and creative AI.
  • Run hands-on enablement — teaching colleagues to build their own AI assistants in Copilot Studio — so adoption scales beyond a single team.
AI governanceNIST AI RMF / ISO 42001model & vendor evaluationrisk enablementenablement & teachingexecutive comms
2022 — Jun 2026
Technical Information Security Leader, NA Market Operations
Procter & Gamble · Cincinnati, OH
The middle of three promotions in three years: Associate → Technical Information Security Leader → Senior Manager.
  • Built , then contributed to the team's multi-agent successor. My single-agent assistant handled routine policy and review questions to scale my own work — it validated the idea and surfaced where it hit context limits. That fed the multi-agent system (AskInfoSec) the team built on top of it: a front-door triage agent plus domain agents for third-party risk, iRisk, policy, application/asset compliance, and IT/OT.
  • Ran , keeping compliance high across the portfolio. Including roughly 40 CyberVadis assessments, while maintaining ~97% iRisk compliance across the application portfolio. As App SPOC, drove the application-compliance backlog from 41 non-compliant assets to 1.
  • Built practical security automations — vulnerability-remediation email drafting, MFA-compliance and asset-governance scripts — and packaged one as a reusable tutorial other security leaders adopted.
  • Analyzed detections, indicators of compromise, and emerging threats; coordinated response.
  • Designed and ran a quarterly Cyber Security Champion program.
iRiskthird-party riskCopilot Studiothreat & IOCITAM
Aug 2020 — 2022
IT Systems Administrator
ITI, a Wipro Company · Milford, OH
  • Administered Windows and Linux endpoints, virtual machines, servers, and ticketing workflows in a fast-paced environment.
  • Built, imaged, and maintained laptops, desktops, and lab/server environments; supported endpoint configuration and operational security controls.
Windows / Linuxendpoint securityimaging
Aug 2019 — Jun 2020
IT Co-op
CareStar · Cincinnati, OH
  • Managed Azure Portal and Active Directory for account access and end-user support across a 1,000+ employee environment.
  • Led a company-wide laptop refresh — deployment, setup, documentation, and transition.
Azure ADActive Directoryend-user support
03

What I build

The reason I can tell whether a tool is safe and whether it actually works: I build the same kind of thing. At work and on my own.

receptr

Live

An AI receptionist for local businesses. It answers every missed call and text, 24/7, captures the lead, and follows up. Multi-tenant and deployed, handling real conversations.

Call the demo line: (888) 577-7613
Python · Twilio · LLM orchestration · multi-tenant runtime

AJ AI

The engine

An autonomous AI operator I built. One audited loop — classify → route → execute → persist — with a human on every irreversible call. SQLite is audit-only; a markdown vault is the source of truth. A doomloop detector and hard per-model budget caps stop a runaway agent before it spends. It exposes itself over MCP and routes across a local model plus Claude tiers — the same build-vs-buy tradeoffs my day job evaluates, at personal scale.

~34,000
lines of Python
1,668
automated tests
Agents · tiered routing · self-audit · MCP server · local-first memory

InfoSec assistant

My prototype · P&G

On my own initiative, I built a Copilot Studio assistant to automate my own InfoSec risk-clearance work — routine policy and review questions — saving roughly 10 hours a week. It proved the concept that became AskInfoSec.

Copilot Studio · single-agent · InfoSec automation

AskInfoSec

P&G · company-wide

P&G's company-wide multi-agent InfoSec system — a front-door triage agent plus domain agents for third-party risk, iRisk, policy, application compliance, and IT/OT. I contributed to it, building on the prototype I'd shipped.

Copilot Studio · multi-agent · enterprise InfoSec

Market intelligence

Research

A research engine that hunts for a real, defensible market edge. I backtested ~18 strategy families out-of-sample over 16 years, found no durable edge, and published the negative result. The edge is the control, not the signal. Paper-only.

Signals · 16-yr backtest · risk discipline
How I workI use the tools I govern, every day — and I build cost-aware.
0
commits across one repo · multiple shipped products
0
automated tests
0
AI output tokens — ≈ $61K at API rates, run on flat-rate plans
0
ChatGPT conversations / 12 mo
04

Education

MBA — Lindner College of Business
University of Cincinnati · 2022
GPA 3.6 · Dean's List
B.S. Information Technology
University of Cincinnati · Cybersecurity Track · 2022
GPA 3.8 · Dean's List
St. Xavier High School
Cincinnati, OH · Jesuit college prep
Computer Science Club Leader

// Completed an accelerated BSIT + MBA in four years. · Cyber@UC / OWASP · INTERalliance of Greater Cincinnati

05

Capabilities

Security & risk
Cybersecurity governanceInfoSec risk managementiRisk & third-party riskApplication governance / ITAMData protectionThreat & IOC analysisUser risk & phishingIT continuity
AI governance & risk
AI governanceNIST AI RMFISO/IEC 42001EU AI Act & GDPRAI risk & innovation enablementShadow AI & AI inventoryVendor & model evaluationEnterprise AI adoption
Build & automate
Python automationLLM & agent systemsGuardrails & evalsGitHub Copilot & AI toolingCloud AI platforms
Platforms & leadership
Azure AD / Active DirectoryMicrosoft 365Cloud & SaaS governanceExecutive communication
06

Ask AJ

I built an assistant on top of my own background. Ask it about my experience, my security work, or what I've shipped.

This assistant answers only from a vetted set of facts about me, and it declines anything it can't ground — the same standard I hold the AI vendors I review to. Try the dashed question to watch the guardrail work.
>

Grounded in AJ's real background. For anything it won't answer, reach out directly.

07 — Contact

Let's talk.

Hiring, partnering, or comparing notes on security and enterprise AI — I'm easy to reach.

landsaj12345@gmail.com513-417-7433
Theme