Guiding Statement

I believe that my success is a direct result of taking the things I learn and then applying them to improve my skills and abilities. I have a strong desire to learn and adapt to accomplish the goals I have made for my personal and working life. I feel information security is the core of an IT organization, allowing a company to control their assets and to prevent any type of data loss. I believe that being security-minded is imperative to everyone in a company and uniting security and business will help each other thrive. I have extensive experience with a wide variety of security tools and multiple cloud providers. I have worked with all major public and private cloud platforms (AWS, Azure, GCP, VMWare) all major brands of firewall/IPS, I am familiar with all major consumer and server OS. In addition, I have experience troubleshooting issues that exist in complex environments including in critical outage situations.

I have experience working in large enterprises with extensive resources and in smaller organizations where resources are limited and providing maximum value is critical. I have worked in mergers and acquisitions, getting organizations with very different ways of working to adjust and move forward in a mutually beneficial way. I have some experience with Python coding, CI/CD pipelines can write BASH scripts. I have experience designing, implementing, and securing workloads on-premises, hybrid, and cloud-only environments. I hold current CISSP, CISM, CCSP and AWS Security specialist certifications. I strive to maintain my knowledge in a professional setting as well as developing my skills. With my combination of formal education, professional training, personal experience, and passionate drive, I am seeking continued success in my career as a cloud-focused security professional.

Cox Automotive Information Security Advisor - Mobility

August 2019 - Present

I worked in the automotive mobility space, focused on securing the infrastructure of recently acquired businesses focused on emerging technology in the automotive industry. This included vehicle subscription, maintenance service appointments, telematics, fleet services, and vehicle imaging. My role was to integrate and improve the security of these businesses while adding the security services and programs from Cox Automotive.

  • Integrate recently acquired businesses into corporate information security processes and programs.
  • Review due diligence for potential acquisition targets and provide recommendation for security.
  • Develop secure coding program to assist developers in API management, encryption key management, and application security testing (SAST, DAST, and IAST)
  • Lead SOC 1 and 2, ISO 27001, and GDPR compliance effort, answering audit controls and managing findings
  • Direct engineering teams to design and implement security in hybrid and cloud-first deployments
  • Implement security controls on container and serverless infrastructure
  • Lead incident management and disaster recovery efforts when needed, focusing on stopping an attack, containing spread and repairing affected platforms
  • Lead efforts on disaster recovery, business continuity, and incident response testing plans
  • Present security risks to senior management and recommend places to focus efforts and resources.

Integra Connect Senior Cloud Security Engineer

January 2019 - August 2019

  • Create and document cloud security controls and audit their successful implementation
  • Design and implement comprehensive vulnerability management program using Nessus scanning software and RSA archer for audit and compliance.
  • Participate with SOC 2 and HIPAA audits, answering audit controls and managing findings
  • Audit on-premises firewalls for security best practices and prioritize changes.
  • Audit 100+ client VPNs to improve security and redundancy
  • Design and implement changes to Palo Alto firewalls in a distributed multi-site implementation.
  • Administer and maintain CyberArk password management and endpoint privilege management

Primerica Financial Services - Security Engineer

March 2018 - January 2019

  • Design cloud security controls for projects using Microsoft Azure cloud infrastructure.
  • Consult with developers on secure development practices and SDLC guidelines.
  • Implement improvements found during application vulnerability scans and penetration testing.
  • Perform annual third-party security assessments for vendors including vulnerability assessments.
  • Design and maintain endpoint security with Carbon Black and Extrahop
  • Ensure maintenance of SOC 2, PCI DSS and FINRA compliance metrics.
  • Configure and maintain QRadar SEIM deployment in hybrid on-premises and cloud deployment
  • Implement improvements to disaster recovery and business continuity plans.

Equifax - Information Security Analyst – US Information Systems

September 2017 - March 2018

  • Ensure corporate compliance with government and industry standards such as FINRA, PCI DSS, GLBA, SOX, SOC 2, and GDPR
  • Provide security guidance to new applications coming to the environment.
  • Triage critical security incidents and prioritize the response including vulnerability management
  • Review and approve security policy exceptions and provide alternate methods when needed.
  • Provide security consultation for public (AWS) and private cloud (VMware) initiatives.
  • Work with security teams to develop policies and standards for the organization.
  • Assist in large-scale project to secure data on IBM z/OS mainframe.
  • Configure next-gen API platform using Apigee cloud WAF to protect internet assets.
  • Provide advisements to CISO for security posture of new and existing applications
  • Provide recommendations for up-to-date encryption and hashing standards including symmetric and asymmetric key management systems (Hashicorp and CyberArk)
  • Ensure proper infrastructure is in place protecting new applications including traditional firewalls, WAF (Imperva) and intelligence-driven application-aware security appliances.
  • Monitor trends in vulnerability and risk for applications and recommend improvement methods.
  • Present security awareness training to new hire employees and develop security training.

Cox Communications

Cloud Security Engineer – On Demand Infrastructure (2016-2017)

  • Design and implement distributed private cloud network infrastructure using Enterprise Hybrid Cloud (EHC) and VMware VBlock and VXRail for 2000+ virtual machines
  • Design and implement public cloud network design for AWS and Azure service offerings.
  • Design and maintain VMWare NSX security deployment including automation of security policies for distributed firewall services.
  • Maintain service catalog for network and security services within private cloud infrastructure.
  • Test failure scenarios in private cloud infrastructure to provide continuous tenant availability.
  • Troubleshoot VMWare products, including: VRealize Operations (VRA), VRealize automation (VRA), VRealize Network Insight (VRNI), VRealize Operations Manager (VROPS
  • Present design proposals to management and make recommendations based on industry trends.

Security Engineer III – Network Security Operations (2011-2016)

  • Configure and maintain 200+ Juniper, Palo Alto, and Cisco firewalls.
  • Lead troubleshooting for high-visibility customer affecting issues for critical services.
  • Train new team members and to manage a constantly evolving network and security design.
  • Design and implement plans to improve resiliency and security in an existing environment.
  • Triage and resolve security threats, capacity issues, and network redundancy issues.
  • Maintain multiple AAA platforms for user authentication.
  • Operate and maintain IPS/IDP platforms to detect and block various security threats.
  • Compliance testing in order to gain PCI DSS compliance for in-scope network areas.