About John Schoonover
As Director of Engineering — Cybersecurity (SIEM), I lead the multidisciplinary team behind our security telemetry platform—spanning ingestion, enrichment, storage, and access. I architect adaptable patterns, align detection and response initiatives to enterprise risk objectives, and evolve infrastructure so the Cyber Fusion Center can move with confidence.
I'm expanding that remit toward broader Cyber Fusion Center engineering leadership, doubling down as a dedicated contributor and mentor who raises the bar for resilient security outcomes.
Recent invention themes span Parse-failure resilience patterns, Fingerprinting for intelligent drop control, UID-based drop control for high-throughput pipelines, and JSON schema + field validation combinations to reinforce parse resilience and intelligent drop control.
Outside of work, I tinker with a self-hosted Synology RackStation home lab, experiment with generative-AI tooling, and co-create tabletop/D&D helpers. If you are building something in that orbit, let's compare notes.
Leadership philosophy
Platform-minded strategy, visible telemetry, and empowered teams turn cybersecurity programs into durable products.
Values
Platform mindset
Treating SIEM capabilities as products keeps teams aligned on user outcomes and resilience.
Operational visibility
Reliable telemetry and instrumentation create the confidence to act quickly and safely.
Collaborative leadership
Cross-functional alignment and clear objectives unlock scalable cybersecurity engineering.