Shaun A. Marshall

Leading the design, deployment, and orchestration of advanced cognitive AI systems across multiple sectors, prioritizing local-first data privacy and compliance standards.

• Agentic Engineering Framework Orchestration: Developing autonomous agentic workflows (including the C.A.R.S.O.N. architecture), utilizing memory architecture, MCP Gateways, and dynamic routing to specialized local models.
• Healthcare AI EHS & LUMI Integration: Architecting 'Lumi', a highly secure, microservices-based AI system for the EHS (Electronic Health System). Orchestrating HIPAA-compliant, local-first execution for medical records.
• Cyber Automation Agent JEFFREY: Created and integrated 'JEFFREY', a specialized autonomous agent responsible for secure operational tasks, including DevOps responsibilities, A2A communication, and systems auditing.
• Infrastructure Florida Armored Combat (FAC): Directing the AI and IT strategy for FAC, deploying secure local LLMs and knowledge agents to assist in creating a rulebook, policy, and modern knowledge systems to multiply organizational productivity in a secure system.
• Strategic Vision Future Plans: Pioneering the next phase of localized Agentic OS environments, driving towards fully autonomous, self-healing DevOps pipelines, continuous learning integrations, and multi-agent collaborative swarms.

Pioneering the integration of cognitive AI agents into secure, compliant enterprise environments, acting as the primary orchestrator for complex system deployments.

• CISSP Domain 8 Secure Software Ecosystems: Designed the technical architecture for 'Lumi', a sophisticated, microservices-based Electronic Medical Record (EMR) system. Orchestrated FastA2A communication between localized AI nodes (Rust/NestJS/Python) ensuring HIPAA-compliant execution.
• CCISO Domain 2 Data Privacy & Local-First Execution: Developed secure data ingestion pipelines for highly sensitive tax and healthcare documents, utilizing Qdrant vector databases and offline reasoning models to prevent PII leakage to public cloud endpoints.
• CISSP Domain 7 Operational Excellence: Created "ready-to-run" AI pilot kits and autonomous DevOps scripts (e.g., anti-hang wrappers, dynamic model routers) to professionalize workflows and reduce operational risk across distributed tech stacks.

Lead the technological and operational strategy for a 501c3 sports organization, architecting the entire digital infrastructure from the ground up with a "Security First" mandate.

• CISSP Domain 3 Virtualization & Cloud Infrastructure: Architected and deployed bare-metal Type 1 hypervisor environments (ProxMox) scaling to robust cloud infrastructure platforms utilizing LAMP/LEMP stacks.
• CCISO Domain 3 AI Productivity & Agentic Engineering: Deployed and governed local LLMs (llama.cpp) to ensure data privacy. Engineered Jr.-level agentic automation workflows (utilizing the C.A.R.S.O.N. framework) to handle secure email processing, Discord bot knowledge bases (Rulebook & Policy Bot), and routine administration tasks.
• CISSP Domain 5 Identity & Access Governance: Enforced least-privileged access through OAuth2 integrations, Google Workspace/Groups provisioning, and continuous seat utilization reviews for distributed personnel.
• CISSP Domain 4 Network & Communications Security: Configured VPS perimeters, Fail2Ban, and advanced email account security (DKIM, SPF, DMARC) to guarantee deliverability and prevent spoofing. Administered secure communication platforms including NextCloud.
• CCISO Domain 5 Strategic Management & Enablement: Led requirements meetings, directed software/hardware procurement, and established comprehensive digital security requirements. Acted as an organizational force-multiplier by teaching interns basic agentic engineering and automation techniques to accelerate workflows.

Provide dedicated technical advisory and complex systems administration for Executives (VP level and above), acting as the crucial liaison between leadership and Global Information Security.

• CCISO Domain 1 Governance & Policy: Advised on the modernization of BYOD policies and partnered with WDW Legal and eDiscovery to preserve digital evidence and enforce data retention utilizing NetDocuments.
• CISSP Domain 7 Access & Integrations: Coordinated with internal teams to configure enterprise app integrations (SSO/SCIM) across Active Directory/Azure, Exchange Online, SCCM, and major VTC platforms (Zoom, BlueJeans).
• CCISO Domain 4 Risk Mitigation: Proposed and executed reviews of Digital Assets utilizing the CIA Triad principles; developed and executed advanced training protocols to counter targeted spear-phishing campaigns.
• Rapid Deployment: Devised solutions to rapidly transition executives to remote work environments during crisis periods (COVID-19), securing home networks and deploying 2FA/Citrix architectures.

• CISSP Domain 7 Digital Forensics & Recovery: Provide basic digital forensics, data recovery, and incident response services for small businesses, recovering critical business records from failing arrays and compromised systems.
• CISSP Domain 3 Infrastructure Architect: Design and deploy segmented, secured networks with robust remote access. Author tailored policies for Business Operations, Disaster Recovery (DR), and Business Information Security.

• Resolved critical infrastructure and software issues for legal end-users utilizing Citrix and WestLaw, administering Active Directory for user account and security group management.

• CCISO Domain 4 Forensic Investigation: Assisted DoD Information Assurance (IA) personnel with critical forensic investigations on the Navy/Marine Corps Intranet (NMCI), ensuring the chain of custody and adherence to federal evidentiary laws.
• Enterprise Support: Provided hardware/software support for over 1,100 clients, utilizing Active Directory, SMS, and Tivoli for widespread software deployment and role-based access control.
• Project Leadership: Led research remediation teams to resolve major software deployment issues, preventing costly SLA penalties. Received Command Master Chief Award for Excellent Service.

• Pioneered the first digital Nursing electronics lab. Designed, assembled, and administered a network of 28 workstations and Virtual IV simulation stations.
• Championed and authored the transition to Computer Based Training (CBT) and established SOPs via the "Best Practices & Lab Maintenance" guide.

• Safety Engineer - Pressure Vessels and Systems (PV/S). Performed audits on contracting companies responsible for specific safety requirements for their respective PV/S. Directly inspected PV/S to ensure compliance and safety.
• Developed and maintained the first comprehensive Pressure Vessels & Systems (PV/S) tracking database within Safety & Mission Assurance, building a secure web portal for DoD contractors to verify system integrity.
• Shuttle Upgrades Project: Conducted crucial feasibility studies and specific impulse analysis for the Liquid FlyBack Booster (LFBB) project to assess reusable KerOx engine viability.