Product Cloud Security Engineer Ii
CurrentPart of the product security engineering team focused on cloud securityCloud Security-------------------- Lead CNAPP rollout and adoption across multiple cloud engineering teams- Developed internal processes for tracking, remediating and keeping metrics for cloud security issues- Detection and incident response for cloud environments- Partner with engineering teams to add defense in depth to cloud applications / environment. (ex. WAFs, EKS runtime sensor, cloud native security tools, etc..)- Manage product security infrastructure with IaCSecurity Automation-------------------- Automate exporting of vulnerabilities from embedded Linux builds- Created a tool to aggregate Yocto ‘create-spdx’ and ‘cve_check’ outputs into digestible information- Created a tool and accompanying docker image to generate SAST scan reports in CI/CD pipelines- Created Tenable integration script and accompanything CI/CD pipeline to initiate scans on critical SaaS apps and report results- Created a threat IP Lambda function to pull malicious IPs from various sources and add them to the GuardDuty blacklist. - Created a CI/CD pipeline to deploy code from source control to Lambda