John Vennard Email & Phone Number

Evergreen, CO, US

Denver, Colorado, US

Woonsocket, RI, US

• Member of agile shared services team responsible for supporting 4000+ developers and infrastructure engineers across 100+ applications and microservices
• Technical lead responsible for interviews, planning roadmaps, distributing and reviewing work, and training new hires for both the Platform Security and DevSecOps teams
• Admin of the security departments 3 AWS accounts in charge of monitoring, maintenance, managing access, and setting up default and shared resources
• Designed, implemented, and tested cloud architecture as reusable terraform modules that supported security scanning, account profiles, and multi-account deployments
• Owned and managed a cloud security guardrail vendor solution for 11 AWS accounts across 3 departments and supported testing and onboarding for GCP projects
• Designed, helped build, and deployed the ownership mapping, event ingestion, and OpenSearch analytics components of a custom DevSecOps vulnerability management and tracking system

Hartford, Connecticut, US

• Planned, implemented, and managed a cloud security guardrail vendor solution for 8 AWS accounts across 2 departments with policies aligned to the CIS AWS Foundations Benchmark
• Designed AWS architecture to help establish baselines for environment specific resources
• Implemented a terraform deployment pipeline for all rule changes to cloud security policies
• Designed application architecture for a vulnerability management and tracking system for the DevSecOps team
• Standardized collection of ownership and project details through automation and integration with Github by distributing, collecting, and validating a metadata file in every repository
• Helped create documentation and technical guides for cloud, development, and pipeline security requirements and tool setup

Hartford, Connecticut, US

• Member of agile shared services team responsible for assisting 600+ developers with their pipeline security and automation needs
• Automated OWASP Zap proxy security scanning for web applications within both a CircleCI and Jenkins pipeline
• Created docker images, documentation, and CICD workflows based on Google’s distroless images in order to transition teams to a more secure base image for their microservices
• Helped manage and create reusable security scanning code for pipelines through CircleCI orb publishing and a shared Jenkins library
• Responsible for resolving internal vulnerabilities flagged by security scanning tools
• Helped maintain and build features for a custom application providing automated tickets for security vulnerabilities

• Helped design and deploy AWS infrastructure to support a security application utilizing S3, Lambda, DynamoDB, CloudFormation, EC2, CloudWatch, and various other services
• Developed cloud solutions to support new features following the AWS Serverless Application Model
• Programmed new features and helped debug issues for the front-end utilizing React, bootstrap, and other JavaScript libraries
• Developed a customer chat experience utilizing Lex and other AWS services

Denver, Colorado, US

• Managed internal Cloud Infrastructure (in AWS) including organization layout, security policies (IAM), and EC2 deployments for both production and internal development use
• Managed SIEM (Splunk and AlienVault) and Web Application Firewall (ModSecurity) deployments including setup, updates, upgrades, rule tunes, and other infrastructure related tasks
• Created infrastructure improvements through automation and documentation by utilizing Ansible, Python, and Bash
• Worked with Splunk front-end to create dashboards, optimize performance, search on metadata, and monitor internal metrics

Denver, CO, US

Cybersecurity bootcamp with expansive coverage and aimed towards (as a bonus) CISSP and Security+ Certifications.

Verona, Wisconsin, US

• Conducted environmental testing on 14 products (Intel, PowerPC, and various router cards) including thermal testing, vibration and drop testing, and others in order to ensure conformance to MIL-STD-810G or other.
• Developed scripts in Linux (using Bash, Python, and C primarily) in order to fully stress products while undergoing environmental testing.
• Ensured tested products were correctly programmed and conforming to all mechanical assembly requirements.
• Created detailed reports and technical documentation about the environmental tests which were used directly by customers and the sales team.

Verona, Wisconsin, US

• Designed programs and test procedures for 35+ products, including custom and low-volume products, improving automation where ever possible using Bash scripts and TeraTerm macros.
• Maintained, updated, and organized 300+ schematic templates in company library.
• Collaborated with manufacturing department to debug problems with new and existing tests to ensure timely delivery to clients.
• Analyzed and resolved specific customer issues, including developing custom scripts for customer use.

• Developed Android application for start-up enabling users to give presentations wirelessly from their mobile device via screen mirroring technology.
• Promoted business through exhibitions and presentations to venture capitalists.

Bachelor Of Science (B.S.), Computer Engineering

Cybersecurity