Senior Cloud Security Engineer resume example with 9+ years of experience
JessicaClaire
, , 100 Montgomery St. 10th Floor(555) 432-1000, resumesample@example.com
Professional Summary
Seasoned Cloud Security thought leader, cloud security evangelist, Cloud Security professional committed to formulating innovative solutions to challenges while optimizing processes.
AWS Certified Solutions Architect Professional - (In-View)
AWS Certified Security Specialty - Certified
Scrum Certified (CSM) - Certified
ITIL Foundation - Certified
Skills
Deep expertise in AWS services for managing data at speed and scale (e.g. Kinesis, S3, Athena, Glue, EMR, Redshift, Step Functions), MySQL, NOSQL/DynamoDB, Strong time management skills, Excellent communication, both verbal and written.
Ability to influence without authority and work in a matrix organizational environment. Amazon Web Services (EC2, EBS, S3, IAM, AMI, VPC, VPC Peering, NACL, Security Groups, Route53, Auto Scaling Group, ELB, SNS, CloudWatch and Cloud Formation) AWS Inspector, AWS Shield, Macie, Guard Duty, Cloud Passage, F5, Barracuda Guardian Angel, Antivirus for Amazon S3, Trend Micro Cloud One.
Work History
01/2019 to 11/2021Senior Cloud Security EngineerXylem Inc. | West Palm Beach, FL,
Worked with cloud architect to generate assessments and develop and implement actionable recommendations based on results and reviews.
Partnered with infrastructure teams on evaluation and feasibility assessments of new systems and technologies.
Designed, installed and configured email encryption gateways with data loss prevention.
Provided technical leadership and delivered innovative products and services to address customer specific requirements.
Created policies and procedures for emerging security technologies and proposals.
Assigned to primary Azure IaaS team in a leading business services company, determined storage tiering best practices to protect data while providing maximum performance, developed and implemented an automated tiering policy to ensure data is not stored in unproductive storage tiers.
Designed, implemented and managed firewall, IDS/IPS, load balancer, and VPN solutions for over 500 enterprise customers.
Responsible for managing and growing a team of Cloud Security Engineers.
Critically reviewed and filed security incidents, which led to resolution and prevention of potential threats.
Developed an API to allow the company to integrate with their existing security platforms.
Developed a comprehensive threat model for cloud environments, created data protection strategy for cloud based applications and developed high speed encryption algorithms for email and data encryption.
Defined cloud security policy, designed and implemented secure cloud architecture and solution, and integrated security controls for multiple systems.
ASG cloud security team has been a key driver for growth and revenue for the last 6 years.
Designed, setup, and managed cloud based web application firewall, created and implemented security models, trained security staff and reviewed firewall logs.
Provided strategic direction and implementation of cybersecurity controls to the development and operations teams.
Developed an application security policy and managed its implementation.
Managed an incident response team, gathered and analyzed data, provided trending data and advice to client.
Assisted in mitigating security risks on multiple web applications including Amazon AWS, Google Apps, and Azure.
Monitored, responded to, and acted on security alerts, threats and compliance issues.
Created and led a security project to migrate all security assets to an SaaS based solution.
Worked with a multi-divisional team to implement a cloud-based solution to help reduce the risk of data breaches.
Maintained and ran a team of cybersecurity analysts and developers to audit and harden our cloud environment, developed automation to remove security weak points and ensure compliance for our cloud environment.
Built and managed a team of six security engineers across multiple geographic locations, built a custom web application for managing security policy, and coordinated the implementation of security policies across all locations.
02/2015 to 12/2018Cloud Security ConsultantAmazon.Com, Inc. | Boulder, CO,
Helped defend and strengthen network perimeter against security threats and breaches.
Assessed and reported on security vulnerabilities and risks.
Researched the latest threats, vulnerabilities and exploits for cloud computing and developed recommendations for implementing a cloud security program.
Provided technical guidance and feedback to client to ensure their cloud applications were secure and up to date with the latest security patches.
Built security training programs for AWS and Azure, applied security training to raise awareness of phishing and other security threats, built and managed security training for over 15,000 employees and created a security training course for security awareness training.
Created a work-in-progress dashboard for monitoring the security posture of cloud services.
Reported company data to the appropriate security team for action, built an automated tool for the security team to use to collect passwords, created and maintained a security team blog, and wrote white papers.
Used open source tools, including OpenStack, to build, deploy, manage and secure a private cloud infrastructure.
Serviced over 100 customers; created a custom website portal to monitor the progress of customers' data and applications in the cloud.
Designed, implemented and managed a new cloud security infrastructure that included threat intelligence feeds, honeypots, threat intelligence correlation and remediation.
Performed complex network vulnerability assessments of web and client facing applications, manually and through automated tools.
Created a comprehensive security strategy to mitigate threats while maintaining our mission critical infrastructure.
Designed and developed a secure data storage solution for a hosting company, designed and implemented a real-time threat detection system based on Open Source technologies to help detect and prevent hacking.
Analyzed and documented vulnerabilities in our cloud environment.
Worked with product engineers and project managers to design and build a robust, scalable product.
Provides technical solutions for unique issues related to security, operations and infrastructure.
Developed reasonable and cost effective recommendations for security improvement.
Assessed security compliance, security program organization, policies and procedures, general risks and vulnerabilities.
05/2012 to 12/2014IT Security AnalystLeidos | Aurora, CO,
Responsible for planning, supporting, and consulting on production systems for the company's IT security programs.
Designed and implemented a complete security program for new business development and existing customer relationships.
Responsible for all aspects of the Information Security program at the company.
Conducted penetration testing of Microsoft and Oracle databases, identified vulnerabilities and documented findings for remediation.
Developed and implemented a secure solution to address an issue identified in a large enterprise.
Built out a strategy and roadmap to improve security posture and share threat intelligence with stakeholders across business units.
Defined and implemented the company's security policy and compliance framework.
Conducted technical analysis of network infrastructure and applications, developed comprehensive security plans, provided on-site and remote support to IT staff.
Built and installed a new web-based firewall/router/ wireless access point, set up and configured a network using Cisco and Juniper equipment, and provided IT security training to new employees.
Designed and analyzed security solutions for security management solutions, including: patch management and remediation tools, OS hardening, network security and firewall, web application security (WAS), network security, and intrusion detection systems.
Reviewed violations of computer security procedures and developed mitigation plans.
Monitored computer virus reports to determine when to update virus protection systems.
Performed risk analyses to identify appropriate security countermeasures.
Developed plans to safeguard computer files against modification, destruction or disclosure.
Education
Expected in 12/2023Bachelor of Science | Cloud And System EngineeringWGU, Online, GPA:
Any information uploaded, such as a resume, or input by the user is owned solely by the user, not LiveCareer. For further information, please visit our Terms of Use.