SQL Server Security Assessments focused on real risks
I help organizations uncover real attack paths, excessive privileges, and hidden risks – not just surface-level findings.
Short intro call to understand your environment
Former Microsoft Program Manager for SQL Server security
One of seven Microsoft Certified Solutions Masters: Data Platform worldwide
What I typically help with
- Identify privilege escalation paths (including undocumented ones)
- Reduce excessive permissions (least privilege redesign)
- Detect data exfiltration risks
- Prepare for audits and compliance reviews
- Assess hybrid SQL environments (on-prem + Azure, Google Cloud, AWS)
How my approach differs
Most tools and audits focus on surface-level checks.
My work focuses on:
- real attack paths instead of theoretical risks
- practical misconfigurations seen in real environments
- actionable findings instead of noisy alerts
- and includes OS- and Environment-level checks
Extending beyond security
Many security issues are rooted in architectural decisions.
That’s why I also help with improving resilience and efficiency:
- High availability and disaster recovery architecture
- Server consolidation and platform modernization
- Migration strategies (on-prem → cloud / hybrid)
- Cost optimization and licensing efficiency
Need an independent view on your SQL Server security posture?
Short intro call to understand your environment
Note: The MCSM should not be confused with the “Charter Member” version, which was essentially a complimentary designation granted to existing SQL Server 2008 Masters (MCM) as a parting gesture when the program was retired. (I had also previously earned the MCM certification.) [Read more in this blog article.]
