With over twelve years of experience in the cybersecurity field, I am a passionate and skilled cloud security engineer who strives to protect and empower organizations with innovative and robust solutions.
Utah, United States
Built golang/pulumi based AWS account creation tooling to handle creation of dozens of accounts each quarter spanning commercial and govcloud environments. This tool expedited account provisioning from days to hours.
Primary contributor and architect of terraform driven cloudformation templates in a delegated administration pattern to deploy global roles for our PAM tool across 4 different AWS Organizations deploying to 250+ accounts
Owner and automator of AWS SCP deployment tooling across 4 AWS Organizations to help meet both standard commercial and FedRamp related guardrails
Identity Squad lead, handling initiatives related to IAM components in AWS and Azure. Supporting teams with deployment, configuration, and consultation regarding identity security best practices in cloud native environments.
Architected and implemented an Azure and AWS AuthN/Z framework for Github Actions automation of CI/CD workloads to migrate deployment of over 20 different repositories.
Built automation infrastructure for provisioning Management Groups, Azure AD Security Groups, Enterprise Applications, and Service Principles. This automation helped to seamlessly integrate AD groups into Application Roles across 4 different internally facing applications.
Utah, United States
Lead implementation, testing and planning of leveraging Cloudflare for Teams Zero Trust Network Access patterns across 250 engineers
Founded security branch of Dutchies Cloud Center of Excellence and developed 13 unique case studies for secure patterns in AWS
Transformational change of migrating 13 AWS accounts from standalone AWS Organizations to AWS Control Tower environment
Lead triaging and remediation of 3 critical, 2 high, and over a dozen medium/low bug bounty reports.
Primary point of contact for product and application security vendor procurement
Utah
Helping to ensure a nearly 2 Petabyte Data Lake migration for a Global 10 Company was accomplished securely and efficiently
Architected and developed a custom serverless based Redshift Authorization Framework to administer data governance at scale for a 1000+ customer use case
Expertise in navigating custom solutions implemented through Serverless, CDK, and Terrafrom as part of a large enterprise pipeline
Security architecture for a large data lake migration with a large enterprise automotive customer ranging from IAM to IR
Identity and Access Management and Data Protection specialization in multi-account environments
Experience with Attribute based access control ABAC in a large multi-product SaaS environment
Utah, United States
Dogfood the Signal Sciences product to provide actionable security data for our own products
Security vulnerability research and subsequent rules development to protect customers from exotic exploits
Internal security risk and compliance tooling and reporting
Develop quick python scripts to help understand where to focus product development roadmap with regards to the rules platform
Use golang to develop in product features related to template rules and virtual patches including CVE's and other indications of exploit outside of normal protections offered by our product
Work directly with customers to experiment, iterate and deploy features aligned with the goal of our product and the needs of customers
Greater Los Angeles Area
Worked with new customers to deliver implementation services and ensure maximized usage of the Signal Sciences Web Protection Platform product
Developed beginner and intermediate level Signal Sciences training programs including content and interactive lab modules based on OWASP Juice Shop deployed in containers for maximum portability
Developed internal python applications to integrate multiple performance metrics including Signal Sciences Product REST API, Mavenlink, Expensify, and Salesforce
Performed attack analysis and product tuning to react to attack driven responses to protecting unique and complex web applications both customer and internally facing
Developed mentor program for training all new professional services teams and contributed to mentor program for Sales Engineering
Worked to develop Advanced Rules in Golang template language to provide coverage for business logic attacks, CVE Virtual Patching and Other unique Web Protection Platform use cases.
Education
2012 — 2015
Park University
Bachelor of Science (B.S.)
2012 — 2015
2017 — 2017
General Assembly
Data Science
2017 — 2017