Washington, District of Columbia, United States
As a Senior InfoSec Analyst at MongoDB, I apply my expertise in cloud, cyber, and automation to advance platform, network, and cloud security solutions that minimize risk and enhance user experience. I have over 10 years of experience in the cybersecurity field, working with leading organizations such as Lockheed Martin, Uber, and now MongoDB. I am passionate about developing analyst tools that automate daily processes and triage advanced persistent threats, using Python, Bash, ServiceNow, and Splunk. I also design and implement cloud security controls across AWS, Azure, and GCP. I am always eager to learn new technologies and collaborate with cross-functional teams to deliver successful products that meet customer requirements and expectations.
• Directed a team of 12 engineers to evaluate SOAR vendors, develop a comprehensive migration plan, and successfully execute the transition while ensuring minimal disruption, execution and response improvements, and alignment with business goals • Lead the US/Chile SecOps and Security Investigations team as Technical Lead, championing new security initiatives, and driving large-scale cross-functional projects to enhance enterprise-wide threat detection and response capabilities • Developed tools to reduce meantime to triage, mitigate, and respond to alerts by incorporating GenAI and ML techniques • Managed various high/critical incidents across cloud, internal, and subsidiary customers while developing additional mitigation coverage
• Direct multi-quarter projects for security orchestration, multi-cloud response capabilities, and MDR for subsidiaries • Develop and lead strategic threat hunting across corporation, production, and cloud environments • Mature investigation analysis utilizing Python and Bash to automate daily processes when triaging advanced persistent threats • Managed various high/critical incidents and facilitated change in process as a result of post incident response reviews
• Lead multi-cloud strategy for incident response and service enablement across different business areas • Conduct service evaluations for cloud services and present findings to various security teams to facilitate communication of risk and implementation of security controls • Develop cloud security and endpoint detections relative to threat activity across the corporation
• Advance platform, network, and cloud security solutions to minimize risk (cloud, off-network protections, browser extensions) • Develop analyst tools utilizing Python and Bash to automate daily processes when triaging advanced persistent threats • Develop and maintain cloud security controls across the company, not limited to compliance rules, detections, and integrations • Institute 2 ServiceNow automated applications pertaining to conference tracking and hiring processes • Create AD federated roles for end-users and mapped them with least privilege policies for different project initiatives • Develop customer requirements and implement security groups, CFM, VPC, S3, EC2, SSM, GuardDuty, and KMS services
(2017-2018): Info Assurance Engineer (2018-2019): Cyber Software Engineer (2019-2020): Cyber Intel Analyst • Automation ServiceNow Team SME which includes training/leading a team of developers through various automations within the ServiceNow platform • Develop and maintain cloud security controls through our custom tool, which allows visibility across all accounts and work towards our effort of securing the cloud • Responsible for developing several integrations between on-prem and third-party tools such as Aqua, SonarQube, and Turbot • Support development of root account access strategy, MFA access, security compliance, and KMS encryption policies. • Deploy threat protection management items such as McAfee and ensure proper data integration into Splunk. • Secure External Access Services Lab lead which includes management of several F5’s, servers, switches, and firewalls • Manage security policies through the Web application firewall with responsibilities to create new iRules and security policies • Responsible for conducting RAMP builds through PowerShell scripting and other automation tools such as ServiceNow/Ansible • Develop and maintain EIMS project hosted on EC2 instances to allow executives to examine cost savings for cell service plans
• Coordinate the Customer Service department and answer any questions that customers may have about products