Cloud Security Tech Lead
CurrentCloud Security Platform Implementation• Configuring Wiz Cloud Security Platform product to work with Azure and AWS• Implementing Wiz CLI to scan Azure functions, AWS Lambda and Docker images• Implement continuous container image scanning with Wiz CLI on a Podman container to test effect of high scan load on Wiz Cloud Security Platform. Application Security Testing Tools• Establishing a working SaaS solution for Dynamic Application Security Testing (DAST)• Enabling application security team to migrate from on-prem DAST to SaaS DAST• Incorporating DAST scanning in application deployment pipelines.Azure Policy for Compliance Enforcement • Operationalize Git repository and CI/CD pipelines to deploy Azure Policy (Policy-as-Code)• Identify deny Azure policies and code terraform scripts to test if they are working as designed.• Working with Microsoft team to define RACI and federate Azure policy initiatives within U.S. Bank teams responsible for the specific area of cloud infrastructure.AWS Account Creation Automation• Analyze AWS account creation process and identify areas for improvement.• Analyze AWS account decommission process and implement automation.• Deploy standard IAM policies to allow for windows update to all Windows EC2 instances. • Explore and implement an alerting mechanism for changes to AWS management account.