This Site
Created this portfolio site to showcase my skills, experience and accomplishments.
VATRION: QR Code and URL Security Scanner
Programmed an API in Python using Flask that inspects decoded urls from QR Codes for malicious intent. Tool provides the ability to configure blocked tlds, domains, file extensions and patterns. It detects Cyrillic characters and also decodes attempts at obfuscation. It also parses AND checks all query parameters to detect redirects from known domains.
SIEMTrax
Seeking to learn SnowFlake and for high fidelity detection engineering I created a SIEM by leveraging the ability to parse files from S3 into a DB then create SQL queries and views to simulate as well as report on use case violations with high fidelity. See my GitHub Repository for some of the tools I created.
SA&A Security Practitioner
Reviewed project artifacts and provided deep expertise in Security Attestation & Accreditation (SA&A) for a government classified project, showcasing skills in Information Security, Security Operations, and Security Control Triage
Security SaaS Services
Championed a world-class SAAS customer experience and driving value realization for clients through strategic client partnerships.
Process Improvement
Played a crucial role in reviewing and enhancing Quality Assurance (QA) processes across the ArcSight ecosystem, contributing to security and quality for an improved end-user experience.
Customer Focus
Guided the team through the successful adoption of ArcSight security solutions contributing to customer satisfaction and value realization.
SaaS Architecture
Spearheaded efforts to architect and evaluate the deployment of ArcSight ESM in Azure to simulate a SaaS service and reported on gaps and limitations in the product along with the changes needed to turn it into a SaaS offering with lean Operating Costs.
SaaS Performance Testing
Setup a full ArcSight clustered stack in Azure and pushed it to incrementally up to 1 Million EPS to identify and report on bottlenecks to product development.
Technical Enablement
As the resident kubernetes and deployment expert, I created a full technical enablement course with videos on building the new ArcSight starting with network services all the way to integration and receiving events.
Technical Writing
Upon noticing hours wasted by support on rebuilds I created a "Tango Down, fix kubernetes P1 in under 5 minutes" document for Customer Support who had little resources or knowledge on troubleshooting and restoring broken kubernetes clusters on Priority 1 incidents back to normal.
Product Improvement
Initiated and led a Performance Testing effort to showcase the benefit of using SSDs instead of 5400RPM drives in the write and read heavy Logger product.
Release Improvement
Following multiple customer complaints about the lack of details of fixes in release notes, I improved processes to ensure developers added more details on each fix in JIRA for the documentation team to publish. This translated in substantial support or inquiry related requests to release note content at each release cycle.
Security Operations Center
Worked with the internal SOC team in capturing event sources to size up a kubernetes based installation of ArcSight for the Corporate SOC and designed a resilient solution to meet the requirements.
Product Innovation
Created a POC for a new ArcSight product to provide PKI services and to automate the certificate exchange process across hundreds of assets like SmartConnectors.
Detection Engineering
Engineered a simulated windows network for event generation and using known data sets to validate ML models as well as use case detection. This ensured that detection quality did not deviate following model or code changes.
Technical Writing
Evaluated technical product documentation, identified gaps that could lead to support/sales inquiries and worked with the documentation teams often being the author to update the documentation to reduce support costs and improve the customer experience.
Customer Focus
Guided the team through the successful adoption of ArcSight security solutions contributing to customer satisfaction and value realization.
Strategic Project / Tiger Teams
Drove key "White Glove" initiatives and played a central role in the success of high-profile accounts, contributing to substantial revenue generation and process improvement.
Risk Reduction
Identified legal liabilities and risks associated with customer production databases loaded in Oracle servers on employee laptops, with no disk encryption. Evaluated security solutions for end-point security and consolidated all databases on laptops into a central database with access control security processes.
Application Performance Testing
Customer responsible for 60% of the company's revenue was having performance issues with the J2EE application. Spearheaded a performance testing effort and built everything required, including updating recorded Jython scripts, for distributed testing to identify product fixes.
Lead Security Architect
Directed efforts in architecting and deploying ArcSight cybersecurity solutions, contributing to cross-functional collaboration and the development of implementation methodologies.
Threat & Vulnerability Assessments
Demonstrated proficiency in security assessments, penetration testing, and comprehensive reporting.
Information Security Program Delivery
Steered InfoSec project initiatives, contributing significantly to process enhancement, security controls, and knowledge transfer.
Security Operations Engineer
Played a pivotal lead role within the Security Operations team on the ETI SaaS email project, contributing to various aspects of the Identity Control Access Management system.
Digital Transformation
Led comprehensive digital transformation initiatives for customers encompassing testing, documentation, training, and system transitions, contributing significantly to company success.
Strategic Security Initiatives
Transformed company dynamics and reduced risks through strategic security initiatives and leadership.
Business Development
Pioneered and drove substantial financial gains, and elevated operational efficiency through a multifaceted approach.
Digital Transformation / Training
Upgraded the financial management system for the Nunavut and North West Territories, and trained their resources on new Standard Operating Procedures to manage the new system.
Network and System Implementation
Computerized the Sierra Leonian Ministry of Finance across 7 floors from received parts and managing local resources. Performed Physical penetration testing and site surveys then implemented mitigations to reduce risks. Trained the locally contracted company on network management and business continuity tasks.
War Zone Contractor
Designed a turn key network with systems to operate the financial management system for Iraq's Ministry of Finance, travelled in-country assess sites and deployed the solution.
Business Continuity
Provided the government of Antigua subject matter expertise in designing a resilient financial database replication strategy as well as other network related challenges.
Disaster Recovery
Travelled into a conflict country for a United Nations project to recover and fix the financial system for the country. Data had reached max configured size and was not growing with 3 months worth of data uncommitted in transaction log files. Rebuilt the database and hacked a process for the engine to import and commit the transactions in the log files.
Not just Solutions, Frameworks
In response to Solution Engineering, I've often had to create custom frameworks to manage new solutions or tools, ensuring attention throughout their lifecycle.
I have a solid track record in getting at the root of issues and engineering solutions not just to address the issue but also bake in detective as well as protective layers to identify them earlier.
Consumer Product Inventor
Designed a product in Autodesk Inventor and 3d printed it. The product is a cabinet door attachment that enabled me to use my elbows or feet to open kitchen cabinets when cooking.