Senior Cloud Security Engineer resume example with 8+ years of experience
- Montgomery Street, San Francisco, CA 94105 609 Johnson Ave., 49204, Tulsa, OK
- (555) 432-1000
- resumesample@example.com
Technical and highly knowledgeable AWS Certified Information Systems professional offering extensive years of IT project management, Information Security, Cloud Computing, DevOps, and technology-based program management.
Web Security Web App Fingerprinting, Cross-Site Scripting SQL Injection, Session Hijacking, and Fixation Cross-Site Req Forgery/Files and Resources Vulnerability Information Security Information Gathering,Scanning Vulnerability Assessment and Exploitation,DNS,Cryptography Enumeration,Sniffing and MITM Attacks,SNMP Analysis,Active Directory,OSI Layer | DevOps AWS Code Pipeline, Code Build, Code Deploy, Incident Response: Automated alerting, Cloud trail Logging and Monitoring: Cloud Trail, VPC Flow Log, DNS Query Log, Agent for EC2, S3 Access Logs, CloudWatch Events, Logs, AWS Config, AWS Inspector Infrastructure Security: Cloud front, Cloud front Geo restriction,S3 Cross Region Replication. WAF, AWS Shield, Security Groups, NACL, VPC Peering, VPC Endpoints, Serverless Security, NAT Gateway, Bastion Hosts, Host Proxy Server, Host based IDS /IPS, Hypervisor security, System Manager, Packet Capture on EC2 Identity and Access Management: IAM Policy, S3 Bucket Policy, KMS Key policy, Identify Federation, AWS System Manager Data Protection: KMS, Certificate Manager, S3 Client-Side Encryption |
- Project Management Professional - PMP (Certified)
- Certified Information System Security Professional -CISSP (In Progress)
- ITIL V3 (Certified)
- CompTIA Security +(Certified)
- Certified Ethical Hacker(Certified)
- Certified Scrum Master (Certified)
- AWS Solutions Architect-Professional (Certified)
- AWS Security Certified (Certified)
Maryville University of St. Louis - ,
Texas A&M University - ,
Northwest Vista College - ,
Bank Of America Corporation – Plano, TX,
- Worked closely with CISO governance board to provide best practice cloud security architecture solutions.
- Solutions include security architecture patterns for a hybrid architecture that supports Single Sign-On (SSO), cloud integrated Security Information and Event Monitoring (SEIM), enterprise & cloud integrated Encryption Key Management, data-at-rest & data-in-transit architecture patterns for regulated data.
- Ensuring compliance to industry best practices such as ISO 27001/27002, relevant data protection laws and regulations e.g.
- EU Directives and GDPR, CCPA in US or other similar legislation.
- Participating in the implementation and management of security platforms such as endpoint protection, encryption, SIEM and more.
- Defined enterprise processes and best practices and tailored enterprise processes for applications.
- Set up and conduct phishing campaigns to simulate the gaining of access to sensitive information.
- Reviewed and updated system categorization using CVE Framework, FIPS 199, Initial Risk Assessment, E-authentication, SSP, ATO's, POA&M, contingency plans (CP), and contingency plan tests (CPT), privacy impact assessments (PIA) and risk assessment (RA) documents per NIST 800 guidelines.
- Quickly and independently recognize, respond to, and mitigate security threats and incidents Administered Active Directory Domain with DHCP, DNS, and File services.
- Write IDS and signatures based on threat intel feeds to defend against emerging threats.
- Web Application Firewall configuration, VPC, Subnets, ELB, Auto Scaling, Security Groups, NACL, AWS Config.
- Patch Management, Vulnerability Management and Penetration Testing Strategies.
- Fraud detection, monitoring and alerting solution.
- Log and event forwarding (System logs, CloudWatch, CloudTrail, AWS Config), aggregation to AlienVault SIEM Platform.
- Designing and configuring the AWS Secure Notification Service (SNS) and Secure Email Service (SES) architecture of the solution and working with client.
- Created monitors, alarms, and notifications for EC2 hosts using Cloud Watch.
- Continuous analysis of internal security posture both infrastructure and applications through regular penetration testing and vulnerability scanning and following up on the remediation actions on the issues identified.
- Performing regular gap analysis, and providing remediation for all identified issues.
- Providing incident response to potentially malicious or anomalous activity based on event data (log files and data outputs) from a wide range of IT systems components, including IDS/IPS, Firewalls, Web Access Security and DLP systems, and other sources.
- Participate in security incident investigations and perform initial forensic analysis.
- Generating security reports and internal security documentation.
Hitachi Data Systems – Irvine, CA,
- Hosted the new system on AWS using tools like Shell & Ruby Scripting, IAM, S3, CloudFront, RDS, ElastiCache, Application Load Balancers, Route53, Docker, ECS, ECR, CloudWatch, GitHub Actions, Terraform and EC2.Wrote scripts to migrate an old MySQL database to an Amazon RDS for PostgreSQL.
- Built and revamped a 10-year-old Ruby on Rails application while working closely with the client and coming up with a required system architecture for the new app.
- Designed and tweaked global AWS infrastructure, including nodes in 12 regions and 52 sub-regions.
- Led cloud migration development initiative as Subject Matter Expert and primary point-of-contact for project management staff.
- Establish communication channel with key stakeholders to manage expectations and resolve issues.
- Helped migrate the old system from In-House/On-Premise servers to AWS cloud servers.
- Collaborated with cross-functional development team members to analyze potential system solutions based on evolving client requirements.
Accenture Contractor Jobs – Culver City, CA,
- Designing and implementation of public and private facing applications on AWS Cloud
- Spearheaded the migration of data from On-Premise Infrastructure to AWS Cloud.
- Set up and managed various AWS Services including EC2, RDS, VPC, S3, Glacier, Cloud Watch, Cloud Front, and Route 53 etc
- Built AMIs for mission critical production servers for backup.
- Deployed Docker Engines in Virtualized Platforms for containerization of multiple apps.
- Created the Micro-service strategy from monolith pattern to Docker containers.
- Defined authentication and authorization patterns using SAML, OpenID and STS
- Installed, configured OpenSSL and managed SSL certificates for authentication.
By clicking Customize This Resume, you agree to our Terms of Use and Privacy Policy
Your data is safe with us
Any information uploaded, such as a resume, or input by the user is owned solely by the user, not LiveCareer. For further information, please visit our Terms of Use.
Resume Overview
School Attended
- Maryville University of St. Louis
- Texas A&M University
- Northwest Vista College
Job Titles Held:
- Senior Cloud Security Engineer
- AWS Cloud Solutions Architect
- AWS Solutions Architect
Degrees
- Master of Science
- Bachelor of Applied Arts & Sciences
- Associates of Applied Science
By clicking Customize This Resume, you agree to our Terms of Use and Privacy Policy