Devsecops Engineer
Melbourne, Victoria, Australia
• Implemented AWS Infrastructure as code using Terraform in CI/CD pipelines across multiple teams.• Managed Databricks workspaces and AWS infrastructure across multiple regions using CDKTF.• Automated repetitive tasks to speed up the deployment process for clients.• Collaborated with Data Engineers to ensure ETL jobs ran smoothly.• Controlled AWS costs across multiple accounts, managing client services and data.• Identified and addressed security/network vulnerabilities across PII client data.• Brought down AWS costs by identifying cost spikes by usage/service/client.• Managed SOC 2 audits and compliance to maintain certification.• Reviewed compliance and security certifications and became certified.• Worked directly with external security penetration testing partner quarterly to review.• Created an internal penetration testing framework and provided security recommendations.• Established a robust system for ingesting data from diverse sources, prioritizing security considerations.• Set up and maintained automated security tools, including vulnerability scans.• Conducted weekly security reviews with the infrastructure team and Senior Leadership.• Utilized GuardDuty to review service access reports and enhance automated alerts.• Assumed the role of the security protector, monitoring, alerting, and reviewing security alerts.• Reviewed pull requests daily, collaborating with DataOps and Operations teams.• Conducted regular security tests on BuildKite and CI/CD pipelines.• Collaborated with developers to solve complex problems and provided mentorship.• Actively contributed to 2-3 projects monthly, offering security advice and guidance.• Served as the final reviewer for 2-3 projects monthly, conducting thorough security testing.Key Achievements- Implemented a framework to identify anomalous costs across multiple AWS accounts- Fixed network bottleneck causing unnecessary NAT data transfer costing tens of thousands of $$