• Member of agile shared services team responsible for supporting 4000+ developers and infrastructure engineers across 100+ applications and microservices • Technical lead responsible for interviews, planning roadmaps, distributing and reviewing work, and training new hires for both the Platform Security and DevSecOps teams• Admin of the security departments 3 AWS accounts in charge of monitoring, maintenance, managing access, and setting up default and shared resources• Designed, implemented, and tested cloud architecture as reusable terraform modules that supported security scanning, account profiles, and multi-account deployments• Owned and managed a cloud security guardrail vendor solution for 11 AWS accounts across 3 departments and supported testing and onboarding for GCP projects• Designed, helped build, and deployed the ownership mapping, event ingestion, and OpenSearch analytics components of a custom DevSecOps vulnerability management and tracking system• Designed infrastructure and helped program normalization, aggregation, and ticket integration systems for a DevSecOps vulnerability management and tracking system• Helped communicate between vendors, internal security teams, and infrastructure departments to resolve security events, start new initiatives, and do product rollouts• Performed security reviews for cloud infrastructure, network changes, application releases, new features, and vendor tooling• Reviewed and tracked GRC controls in Archer in order to align cloud security policies to HIPAA, GDPR, NIST and many other governance frameworks• Provided technical assistance and evidence for audit and GRC teams• Helped investigate, respond, and perform forensics on security incidents

• Planned, implemented, and managed a cloud security guardrail vendor solution for 8 AWS accounts across 2 departments with policies aligned to the CIS AWS Foundations Benchmark• Designed AWS architecture to help establish baselines for environment specific resources• Implemented a terraform deployment pipeline for all rule changes to cloud security policies• Designed application architecture for a vulnerability management and tracking system for the DevSecOps team• Standardized collection of ownership and project details through automation and integration with Github by distributing, collecting, and validating a metadata file in every repository• Helped create documentation and technical guides for cloud, development, and pipeline security requirements and tool setup

• Member of agile shared services team responsible for assisting 600+ developers with their pipeline security and automation needs• Automated OWASP Zap proxy security scanning for web applications within both a CircleCI and Jenkins pipeline• Created docker images, documentation, and CICD workflows based on Google’s distroless images in order to transition teams to a more secure base image for their microservices• Helped manage and create reusable security scanning code for pipelines through CircleCI orb publishing and a shared Jenkins library• Responsible for resolving internal vulnerabilities flagged by security scanning tools• Helped maintain and build features for a custom application providing automated tickets for security vulnerabilities• Assisted development teams with resolving vulnerabilities, setting up scanning tools, and general security questions

• Helped design and deploy AWS infrastructure to support a security application utilizing S3, Lambda, DynamoDB, CloudFormation, EC2, CloudWatch, and various other services• Developed cloud solutions to support new features following the AWS Serverless Application Model• Programmed new features and helped debug issues for the front-end utilizing React, bootstrap, and other JavaScript libraries• Developed a customer chat experience utilizing Lex and other AWS services

• Managed internal Cloud Infrastructure (in AWS) including organization layout, security policies (IAM), and EC2 deployments for both production and internal development use• Managed SIEM (Splunk and AlienVault) and Web Application Firewall (ModSecurity) deployments including setup, updates, upgrades, rule tunes, and other infrastructure related tasks• Created infrastructure improvements through automation and documentation by utilizing Ansible, Python, and Bash• Worked with Splunk front-end to create dashboards, optimize performance, search on metadata, and monitor internal metrics

Cybersecurity bootcamp with expansive coverage and aimed towards (as a bonus) CISSP and Security+ Certifications.

• Conducted environmental testing on 14 products (Intel, PowerPC, and various router cards) including thermal testing, vibration and drop testing, and others in order to ensure conformance to MIL-STD-810G or other specific customer requirements.• Developed scripts in Linux (using Bash, Python, and C primarily) in order to fully stress products while undergoing environmental testing.• Ensured tested products were correctly programmed and conforming to all mechanical assembly requirements.• Created detailed reports and technical documentation about the environmental tests which were used directly by customers and the sales team.

• Designed programs and test procedures for 35+ products, including custom and low-volume products, improving automation where ever possible using Bash scripts and TeraTerm macros.• Maintained, updated, and organized 300+ schematic templates in company library.• Collaborated with manufacturing department to debug problems with new and existing tests to ensure timely delivery to clients.• Analyzed and resolved specific customer issues, including developing custom scripts for customer use.

• Developed Android application for start-up enabling users to give presentations wirelessly from their mobile device via screen mirroring technology.• Promoted business through exhibitions and presentations to venture capitalists.