*Senior DevOps & Security Engineer*

*SecureTech Solutions, New York, NY*

March 2022 – Present

- Led transformation of deployment pipelines to incorporate security testing stages, reducing vulnerability exposure by 40%.

- Designed and implemented a zero-trust network model using AWS WAF, Security Groups, and IAM policies, significantly enhancing perimeter security.

- Developed automated incident response workflows with PagerDuty, integrating SIEM alerts from Splunk to streamline threat detection.

- Introduced container security best practices, integrating Aqua Security scans into CI/CD pipelines, reducing runtime vulnerabilities by 25%.

- Collaborated with development teams to embed threat modeling and security best practices during product lifecycle.

*DevOps Engineer (Cybersecurity Focus)*

*TechGuard Inc., San Francisco, CA*

June 2019 – February 2022

- Built scalable Kubernetes clusters on AWS EKS with integrated network policies and RBAC, bolstering cluster security posture.

- Orchestrated infrastructure as code with Terraform to automate provisioning of secure cloud environments, achieving 30% faster deployment times.

- Integrated vulnerability scanning tools within CI/CD pipelines, ensuring 100% code passed security audits before deployment.

- Managed compliance audits integrating automated policy enforcement, audit logging, and real-time alerts for deviations.

- Developed custom monitoring dashboards with Prometheus and Grafana focused on security metrics, aiding proactive threat mitigation.

*Junior DevOps & Security Analyst*

*CyberSecure LLC, Austin, TX*

July 2017 – May 2019

- Supported deployment pipelines and security audits for enterprise clients, gaining a strong foundation in security compliance.

- Implemented Logstash and Kibana dashboards to analyze security log data, expediting incident investigations.

- Participated in vulnerability assessments and patch management cycles, reducing known vulnerabilities by 20%.

**Bachelor of Science in Computer Science**

University of California, Berkeley

Graduated: 2017

- **Certified Kubernetes Security Specialist (CKS)** – 2024

- **AWS Certified Security – Specialty** – 2023

- **Certified DevOps Professional (CDP)** – 2022

- **Offensive Security Certified Professional (OSCP)** – 2021

- **Secure Automation Framework:** Developed a comprehensive automation framework using Ansible and Python that secured multi-cloud deployments, enabling rapid recovery from security events and reducing manual intervention by 50%.

- **Threat Detection & Response Platform:** Built a real-time threat detection platform integrating ELK stack, threat intel feeds, and machine learning models, reducing detection time from hours to minutes.

- **Kubernetes Security Audit Tool:** Created an automated security audit tool for Kubernetes clusters, leveraging Open Policy Agent (OPA) policies to enforce security standards across multiple environments.

- CI/CD: Jenkins, GitLab CI, CircleCI, Argo CD

- Cloud: AWS, Azure, GCP

- Containerization: Docker, Kubernetes, OpenShift

- IaC: Terraform, CloudFormation, Ansible

- Security: Aqua Security, Nessus, Qualys, WAF, SIEM, OPA

- Monitoring: Prometheus, Grafana, ELK, Splunk

- Python

- Bash/Shell scripting

- YAML/JSON