Steven Li Email & Phone Number

Charlotte, North Carolina, US

• Led a cohort of cybersecurity champions across cross-functional teams, fostering a culture of security awareness and accountability throughout the product development lifecycle.
• Empowered security advocates with knowledge and resources to promote cybersecurity best practices within their respective teams, driving adoption of secure coding principles and proactive risk mitigation strategies.
• Collaborated closely with product managers, engineers, and quality assurance specialists to embed security considerations into product requirements, design specifications, and testing protocols.
• Facilitated regular security training sessions and workshops for development teams, equipping them with the skills and tools needed to identify and address security vulnerabilities early in the development process.
• Championed the adoption of security tools and technologies to automate security testing and monitoring, enhancing the efficiency and effectiveness of security practices across product teams.
• Conducted regular security reviews and assessments, working closely with security champions to identify areas for improvement and implement targeted security enhancements.

Baltimore, MD, US

• Secure and enhance AWS and other cloud platforms and services
• Defining cloud security standards and implementing security tools, controls, policies, and processes
• Automate security controls, data, and processes to provide better operational support.
• Document security processes, procedures, policies, and standards
• Handle all escalated security issues from support or other operations team.

Tokyo, Japan, JP

• Running Security Champions program to instill security on developers and engineers (Start Left)
• Create and implement policies, standards, and procedures for Product and cloud security.
• Identify and Secure AWS cloud, CI/CD, DevOps, and all virtualization
• Secure SDLC by implementing monitoring and scanning for vulnerable dependencies, vulnerable code,vulnerable containers, and misconfigurations in the cloud.
• Secure DevOps tools like Github, Docker, CircleCI, Terraform, etc.
• Work with software development teams to perform code reviews, DAST/SAST, vulnerability scanningagainst OWASP Top 10, and more

• Responsible for the Security and Infrastructure of the company’s enterprise and cloud environments.
• Hire, manage and train the Security and Infrastructure team
• Assist with hiring and buildout of Development, DevOps, and Cloud team.
• Create and implement policies, standards, and procedures for enterprise IT, AWS Cloud, and SDLC.
• Design and secure AWS cloud infrastructure including planning for DR, backup, and cloud agility
• Identify, plan and coordinate security projects for continuous improvement of the company’s security posture

Sunnyvale, CA, US

• Ensure end-to-end security of the Mercedes Me Connect environment.
• Help Devops and IT Operations team maintain and improve application security.
• Security and auditing systems, and collaborating with operations maintaining secure deployment.
• Designing and developing processes, tools, and systems securing all systems & applications.
• Coordinate & conduct security penetration testing and regular vulnerability assessments.
• Document information security policies, procedures, and tests.

Boston, Massachusetts, US

• Provide SME Support for Rapid7 products (Nexpose, Metasploit, Insight Platforms & more).
• Work on technical cases and collaborating with development on root cause analysis.
• Troubleshooting & understanding of network architecture, administering multiple Operating systems (Linux, Windows, Mac OS…etc.), security, and vulnerability management.
• Advanced Knowledge & skills of different protocols such as TCP/IP, OSI, VLAN, DNS, NMAP, LDAP.
• Demonstrate good social skills and a passion to solve customer's issues. Communicate with customers as required: keeping them informed of case progress, updated workaround, and remediation.
• Perform security & vulnerability assessments for customer environments. Respond to, and remediate, security alerts generated from the Rapid7 products.

Tokyo, JP

• Maintenance & monitoring all environments including responding to alerts & troubleshooting issues that arise.
• Work as a team to gather information and remediate problems while keeping communication lines updated.
• Supporting systems in a fast-paced enterprise running both Microsoft and UNIX based OS.
• Support server and network environments, including but not limited to VOIP, Monitoring software, routers and firewalls/switches

New York, NY, US

• Install, configure, upgrade and troubleshoot servers & networking equipment.
• Plan, run, connect, & test LAN and SAN network cabling & hardware. (Fiber & Copper)
• Experience in Windows and UNIX-based systems, LAN switching and routing technologies, SAN connectivity, and good troubleshooting techniques.
• Work with vendors such as Cisco, Juniper, HP, SUN, IBM, Brocade and more to resolve RMA issues
• Analyzing & monitoring system logs files to determine hardware, software & performance issues.

Queens, NY, US

• Working with customers/employees to identify computer problems and advising on the solution.
• Resolve technical problems with Local Area Networks (LAN), Wide Area Networks (WAN), and other systems.
• Install, modify, and repair computer hardware and software.

Washington, DC, US

• Examine vehicles, compile estimates of repair costs, and secure customers' approval to perform repairs.
• Troubleshoot and repair defective parts and schedule preventive maintenance of up to 100 vehicles weekly.
• Accountability of over $1million in tools, parts, and vehicles.
• Plan and conduct the routine and day-to-day unit operation within the policies established by my senior officers.

Master Of Information And Cybersecurity, Information And Cybersecurity

Bachelor'S Degree, Computer Systems Networking And Telecommunications