History


Confidential

Title : Lead Security Engineer at Confidential

Time Period : From 10/09/2023 - To Current

Responsibilities :

  • Developed, Implemented & Maintain the Vulnerability Management Program.
  • Develop solutions to enable and enhance security of StudyTeam SaaS applications, associated data transfers, and infrastructure (AWS).
  • Play a key role in the selection, design, configuration and use of additional vulnerability scanning technologies (e.g., container scanning, SCA/SBOM, SAST, DAST, IAST, RASP).
  • Serve as a technical leader on incident response for web applications and infrastructure.
  • Author, and when appropriate delegate to team members, formal technical risk assessments documenting security findings and outlining required mitigating controls.

Confidential

Title : Principal Security Engineer at Confidential

Time Period : From 01/13/2023 - To 09/29/2023

Responsibilities :

  • Respond to, remediate, and document information security incidents
  • Support vulnerability mitigation and remediation activities
  • Implement, configure, manage, and document security tools used by Confidential including Firewalls, VPNs, IAM, SIEM, vulnerability scanners, email protection services, network security, end-point security, patch management and other security products
  • Assist in development and execution of information security plans and policies
  • Assist in development or implementation of scripts and tools to automate threat detection
  • Assist in the development and testing of Disaster Recovery / Business Continuity Plans
  • Establish requirements and make recommendations on the appropriate infrastructure protection tools, methods, and technologies
  • Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior
  • Perform security gap assessments and penetration tests, generate comprehensive reports and recommendations on the security risks and vulnerabilities discovered
  • Keep abreast of latest security advisories, alerts and vulnerabilities pertaining to Confidential and its mission. Assists with periodic threat exercises and makes recommendations to technology management on the need for policy changes
  • Work closely with business analysts and DevOps team on existing and new deployments to ensure that best practices are followed
  • Assist with development and implementation of Security Awareness Training for entire organization

Confidential

Title : Senior Security Engineer at Confidential

Time Period : From 11/08/2021 - To 01/13/2023

Responsibilities :

  • Respond to, remediate, and document information security incidents
  • Support vulnerability mitigation and remediation activities
  • Implement, configure, manage, and document security tools used by Confidential including Firewalls, VPNs, IAM, SIEM, vulnerability scanners, email protection services, network security, end-point security, patch management and other security products
  • Assist in development and execution of information security plans and policies
  • Assist in development or implementation of scripts and tools to automate threat detection
  • Assist in the development and testing of Disaster Recovery / Business Continuity Plans
  • Establish requirements and make recommendations on the appropriate infrastructure protection tools, methods, and technologies
  • Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior
  • Perform security gap assessments and penetration tests, generate comprehensive reports and recommendations on the security risks and vulnerabilities discovered
  • Keep abreast of latest security advisories, alerts and vulnerabilities pertaining to Confidential and its mission. Assists with periodic threat exercises and makes recommendations to technology management on the need for policy changes
  • Work closely with business analysts and DevOps team on existing and new deployments to ensure that best practices are followed
  • Assist with development and implementation of Security Awareness Training for entire organization

Confidential

Title : Team Lead - Senior Security Engineer at Confidential

Time Period : From 02/01/2021 - To 11/05/2021

Responsibilities :

  • Communicate across org to drive security tools adoption (4 out of 4 tools)
  • Installation and configuration of Cloud Security tooling
  • Identify vulnerabilities and work with Engineering to resolution
  • Work on risk, compliance and information security policies
  • Key stake holder in the company department audits (PCI-DSS, SOC2)

Kount

Title : Senior Security Engineer at Kount

Time Period : From 10/10/2020 - To 02/01/2021

Responsibilities :

  • Serve as part of the security incident response team
  • Perform penetration testing of the products and systems
  • Conduct security reviews of cloud-based infrastructure, identify security issues, and provide remediation recommendations.
  • Evaluate new systems, technologies, and frameworks; work with development and operations teams to ensure these are deployed and utilized in a secure manner
  • Help ensure systems and processes are in place to provide defense in depth (e.g., code scanning, WAF, IDS/IPS, etc.)
  • Static and Dynamic Application Pentesting

Mission Cloud

Title : Senior Cloud Operations Engineer & Security Engineer

Time Period : From 02/28/2019 - To 10/10/2020

Responsibilities :

  • Automation of Major Incident workflow from Ticket creation to Ticket Close. All steps fully automated.
  • Mentoring and assisting lower tier engineers in technology related tasks
  • Lead business in technical projects as well as timeline a delivery of large scale projects
  • Security research and debugging within cloud networks
  • Escalation point for a set of customers and/or Tier 2 Engineers from a technical standpoint
  • Identify security solutions and implement a multi-layered defense to protect the networks.
  • Follow ITIL processes (Incident, Change and Problem Management)
  • Lead Problem Management efforts to ensure 100% uptime without manual intervention
  • Adhere to strict Change Management policies and lead daily Change Advisory Board (CAB) reviews
  • Participate in recruiting efforts for open positions under the Cloud Operations team
  • Automate customer and business processes using internal and external API's

Rackspace

Title : DevOps Engineer - Fanatical Support for AWS at Rackspace

Time Period : From 03/01/2017 - To 02/28/2019

Responsibilities :

  • AWS Certified Solutions Architect - Associate
  • Automating workloads across multiple public cloud providers
  • Resolve single points of failure and non-redundant systems
  • Developing AWS Infrastructure using CloudFormation Templates
  • Building distributed, highly available and scaleable infrastructure
  • Pro-actively seek opportunities to review solution architecture then put forward and implement proposals for improvement
  • Mentor and assist in the development of other technical staff

Rackspace

Title : Critical Application Support Engineer

Time Period : From 03/01/2016 - To 03/01/2017

Responsibilities :

  • Act as a consultative resource for customers to assist them in achieving their business objectives
  • Pro-actively seek opportunities to review solution architecture then put forward and implement proposals for improvement
  • Engages with the Account Team to ensure Critical Application Services client expectations are being fulfilled
  • Respond to support requests and coordinate Customer support teams where appropriate
  • Ensure appropriate technical documentation is in place for customer solutions
  • Attend and participate in all customer service review meetings
  • Identify opportunities for growth and advancement of the Service offering
  • Mentor and assist in the development of other technical staff
  • Engagement of every customer within portfolio at a minimum once per month
  • Ensure customers realize the value of Customer Service through pro-active architecture reviews and consultancy work

Blueacorn

Title : Senior DevOps Engineer

Time Period : From 08/01/2015 - To 03/01/2016

Responsibilities :

  • Responsible for production support including bug triage, diagnosis, and resolution.
  • Release management including version control (Git) and deployments.
  • Quality control including code reviews and static diagnostics (Jenkins).
  • Infrastructure design & support for IT, internal development initiatives.
  • Technical leadership, consultation, and architecture.

Kering

Title : Director of Technology and Development

Time Period : From 11/01/204 - To 08/01/2015

Responsibilities :

  • Working with multiple Brands to own and operate their ecommerce systems
  • Manage third party integrations (WMS, CRM, Analytics, OMS)
  • Architect and administer the infrastructure
  • Manage deployments and code control of 4 brands
  • Lead team of engineers along the full lifecycle of tickets
  • Set-up and manage ticketing system

Volcom

Title : Global Lead of Technology and Development

Time Period : From 01/01/2014 - To 11/01/2014

Responsibilities :

  • Experience enterprise-level developer and infrastructure architect
  • Oversee global code deployment and development
  • Manage infrastructure and applications used for daily communication and project management
  • First point of contact for external system integrators
  • Built, deploy and manage automated tool set for global site testing
  • Managing a team of 6-8 people

Quiksilver

Title : Web Developer

Time Period : From 01/01/2009 - To 12/01/2011

Responsibilities :

  • Design and develop User Interfaces for complex web applications including the design and implementation of web pages templates
  • EZ-Publish CMS
  • Converted outdated .NET/static html sites into Wordpress MU CMS sites
  • Built marketing and eCommerce sites on a LAMP stack using PHP5 and OSX Servers
  • Maintained and created a large number of web sites using PHP5/MySQL
  • Kept multiple sites and multiple languages versioned using GIT and SVN
  • Define the UI design, user interaction for new and existing product features
  • Develop early high-level and detailed prototypes to effectively communicate design ideas and user interactions
  • Worked with video and web technologies including video capture, encoding, delivery, viewer presentation of video and other digital content

Volcom

Title : Sr. Ecommerce Web Developer

Time Period : From 01/01/2012 - To 01/01/2014

Responsibilities :

  • Working within the demandware e-commerce platform to build, stylize and customize the shopping experience.
  • Hand built a product information management tool to interface with the demand where business manager.
  • Closely working with the VP of sales and COO to build and modify budgets according to our e-commerce roadmap.
  • Running a small team (4) people.
  • Increased revenue month over month for the last four months.
  • Decrease load times on our site over 30%.
  • Integrated PayPal checkout experience into the demandware platform.
  • Integrated social aspects into the product landing pages.
  • Wrote and customize a pay per click initiative with outside vendors.
  • Integrated conditional pixel logic within the demandware platform.
  • Customized exact target e-mail platform to fit our emailing needs.
  • Created an RMA application within demandware for customer service.