# Caroline Desouza

> Senior Security Engineer

Location: Greater Boston, United States
Profile: https://flows.cv/carolinedesouza

Senior Software Engineer with 8+ years of backend development experience, now driving impact as a Security Engineer. I apply deep development expertise to securing applications and infrastructure through STIG-based hardening, NIST- and RMF-aligned baselines, and vulnerability management. An advocate for integrating security into the development lifecycle, I’ve introduced tools and practices that embed security at every stage of delivery. Recognized by leadership and clients for consistently taking initiative across domains—often stepping into unfamiliar areas to bridge gaps—I bring both technical depth and adaptability to building resilient, compliant systems.

## Work Experience
### Senior Security Engineer @ eSimplicity
Jan 2025 – Present | United States
Security Engineer specializing in stabilizing and securing complex, high-visibility systems. I blend a strong software engineering background with hands-on security execution—hardening applications and infrastructure, closing critical security gaps, and translating abstract requirements into practical, automated controls. I routinely step into unfamiliar security domains, deliver end-to-end solutions with minimal guidance, and am trusted for thoroughness, clarity, and results under pressure.

### Senior Software Engineer @ eSimplicity
Jan 2023 – Present
🔹 Security Engineering & Infrastructure
- Drive STIG-based hardening and secure configuration baselines across Linux, web, and database  
   environments
- Lead migration of staging/production to DISA-managed RHEL servers, coordinating uptime and 
   compliance needs
- Build and secure core infrastructure, enforcing DISA STIG compliance for resilient deployments
- Authored technical documentation to support system sustainability and knowledge transfer

🔹 Development & Secure Engineering
- Developed and maintained legacy Java/JSP applications with PostgreSQL back end, streamlining 
   workflows to meet user needs
- Integrated Snyk into the codebase and led code reviews, embedding security visibility into the 
   development lifecycle
- Introduced Agile/Scrum practices, creating structure, cohesion, and accountability within the 
   engineering team

🔹 Risk Management and Compliance Expertise
- Lead technical/compliance efforts for Navy system ATO under NIST RMF (SP 800-37)
- Conduct STIG-based security assessments and translate findings into actionable POA&Ms with 
   verifiable artifacts
- Re-baselined and validated NIST SP 800-53 controls for accuracy and applicability
- Security liaison across Navy stakeholders, DISA, and engineering, driving risk-informed decision-
   making
- Operationalize evolving standards (DISA, NIST, DoD, vendor advisories) into configuration, control, and 
   patch actions

### Senior Software Engineer @ Wellframe
Jan 2021 – Jan 2023 | Boston, Massachusetts, United States

### Software Engineer @ MIT Lincoln Laboratory
Jan 2019 – Jan 2021 | Lexington, MA

### Software Engineer @ BAE Systems
Jan 2018 – Jan 2019 | Burlington, Massachusetts
Refactored multi-source data fusion software component into 3 new modules for increased cohesion and decreased coupling (Java)

Designed and implemented 2 new components: an incoming message handler, and a module to assess the busyness level of this handler (Java)

Implemented Consul’s Service Discovery tool to manage health and availability of multiple instances of message handler module (Java)

Implemented 2 new message serialization features into existing tracking & fusion framework (C++)

Wrote Python scripts to implement customer test scenarios into a simulator

Implemented code coverage on existing codebase & identified 11% of code not being executed in automated tests

Setup a Jenkins server to build and run automated tests nightly

### Software Engineering Intern @ Belcan Engineering
Jan 2017 – Jan 2017 | West Palm Beach, Florida
First developer to test full functionality of innovative software tool that will automate current jet engine diagnostics tests

Examined previously recorded test results and logic diagrams to assess the automation framework’s  accuracy

Train team of 5 to utilize engine test framework

### Administrative Assistant @ Sabal Insurance Group
Jan 2013 – Jan 2015 | Miami/Fort Lauderdale Area
o	Assisted insurance agents with policy proposals for 200+ clients
o	Trained new hires

### Marketing Manager @ Steven Greenwald Designs, Inc.
Jan 2012 – Jan 2013 | Miami/Fort Lauderdale Area
o	Design Assistant to Marketing Manager in < 1 year
o	Implemented company re-branding, social media exposure


## Education
### Master’s Degree in Computer Engineering
Florida Atlantic University

### Bachelor of Science - BS in Business Administration
Nova Southeastern University

### Medical Laboratory Technology
Keiser College


## Contact & Social
- LinkedIn: https://linkedin.com/in/caroline-desouza-316356102

---
Source: https://flows.cv/carolinedesouza
JSON Resume: https://flows.cv/carolinedesouza/resume.json
Last updated: 2026-03-31