We provide IT Staff Augmentation Services!

Principal Security Architect Resume

PROFESSIONAL EXPERIENCE

Confidential

Principal Security Architect

Responsibilities:

  • Recommended TDD/BDD for auditing purposes to build a checklist to verify against.
  • Lead design of ADA - compliant personas for front-end development to ensure compliance.
  • Designed data models using finite set theory and implemented their respective DDD-based services via TDD.
  • Taught basic principles of AI/ML neural networks, hidden layers, what neurons are, the importance of bias, and how to weight them to engineers.
  • Recommended K-Nearest Neighbor algorithm for Data LakeHouse aggregates for learner recommendation paths.
  • Oversaw aggregate schema tools for disparate databases in a single system to answer: where does this data live, can I trust this data, will I be able to use this data, how do we scrub PII-related data, and can I indirectly access this data?
  • Analyzed enterprise tools for risk and impact level and recommended compensatory controls, where necessary.
  • Recommended log analysis for New Relic such that we didn't accidentally give away WGU secrets in publicly accessible logs.
  • Designed solutions for engineering discretionary budgets for POC's with embedded compensatory security controls for rapid development and deployment to test out theories/ideas with a safe process.
  • Recommended engineers only have access to lower environments and all Production deployments happen via a CI/CD pipeline that had automated promotion through the environments based on CAB results.
  • Designed SSO implementation that utilized token-based access with RBAC implementation that separated concerns between authentication and authorization such that one or more claims could be fetched from the Ping Fed, Okta, or any other identity server because of an implemented abstraction layer with private (internal facing) load balancing.
  • Oversaw new back-end web API services in Java.
  • Designed API gateways in AWS services.
  • Worked with TOGAF framework to implement enterprise-level security concerns for operational software engineering.
  • Utilized UML for all architectural diagrams.
  • Designed shared kernel architecture that utilized Kafka EDA.
  • Used AWS to maintain systems within EC2 instances and in S3 buckets (S3 Glacier for archiving).
  • Oversaw AWS alerts for billing and resource usage with set throttle marks utilizing auto-scaling.
  • Recommended horizontal scaling, first, and then vertical scaling for performance and cost reasons.
  • Designed IAM roles to be utilized by various VPCs that were decoupled via an abstraction layer.
  • Designed and recommended unit, integration, JUNIT, and POSTMAN tests based on test scenarios.
  • Recommended utilization of DDD in message queuing and event driven architecture on a shared kernel.
  • Communicated with the data science team to be able to encrypt data aggregates such that we could anonymously delete sets of PII-related data in accordance with their data affinities “Right to Forget” international policy.
  • Introduced Sketch2Code to speed up the current process for creating wire-frames.
  • Introduced new QA processes for creating test accounts to be utilized by test suites living on test servers for automated testing within a CI/CD pipeline.
  • Recommended utilizing SCRUM best-practices.
  • Recommended best practices for SOLID, DRY, KISS, and FIRST principles.
  • Recommended infrastructure changes to allow for a DR site, blue/green deployments, and canary deployments (as needed).
  • Recommended OWASP Top 10 to be implemented and scanning tools for GitHub to find secrets and credentials.
  • Recommended we embed a “watermark” for an easy scan on the dark-web to find WGU-specific code, in case it ever made it to the dark-web.
  • Utilized SIEM tool Logrhythm.

Environment: Logrhythm, HTML5, CSS3, ReactiOS, JQuery, Java, JavaScript, Maven Packages, NPM, CloudFormation templates CDK, Angular 8.0, RESTful APIs, MS-SQL, Postgres, MongoDB, Redis, AWS lambda, S3, Glacier, EC2, JSON, XML, YAML, IntelliJ, toastr.js, JavaRX, Workday, Jira, Linux CentOS 3-5, and Windows 10.

Confidential

IT Security Architect

Responsibilities:

  • Got the main external facing website bcg.com into compliance with the enterprise architect standards.
  • Wrote new backend web API and microservices in VB.Net.
  • Utilized TDD/BDD for proving the updated application and infrastructure adhered to standards.
  • Used aws to maintain systems within rds instances and both FXs and S3 file systems.
  • Setup alerts for billing and resource usage with set throttle marks.
  • Setup user accounts in IAM for various organizations as well as create EC2 instances.
  • Utilized unit, integration, regression and selenium tests based on test scenarios from scans and penetration tests.
  • Extensive training of DDD in both message queuing and event sourcing.
  • Introduced ways to utilize Artificial Intelligence and machine learning.
  • Introduced Sketch2Code to speed up the current process for creating wire-frames.
  • Introduced new QA processes.
  • Recommended utilizing SCRUM best-practices.
  • Recommended best practices for SOLID, DRY, KISS, and FIRST principles.
  • Recommended infrastructure changes to allow for a DR site.
  • OWASP Top 10 to be implemented.

Environment: HTML5, CSS3, Bootstrap, JQuery, JavaScript, Nuget Packages, MVC, REST, MS-SQL, JSON, Visual Studio, Entity Framework, Code-First Database Migrations, Webforms, Visual Basic .NET, toastr.js, Ext.js, Workfront, TFS, and Windows 10.

Confidential

Solutions Architect

Responsibilities:

  • Prototyping solutions.
  • Managed Engineering discretionary budget for prototyping.
  • Mentoring junior developers.
  • Implementing SCRUM and Agile to the company.
  • Creating and maintaining architectural documentation and guidelines.
  • Implemented OWASP Top 10 to be PHI/PII/PCI compliant.
  • Handled DevOps and DevSecOps for the company.
  • Creating CI/CD pipeline using Jenkins and Octopus Deploy.
  • Creating Proof-Of-Concept with asynchronous RESTful API services, ElasticSearch 6.0 NEST client, and Entity Framework (code-first database migrations).
  • Introduced TDD and best practices for SOLID, DRY, KISS, and FIRST principles.
  • Introduced Jasmine Spec testing for front-end behavior testing via Karma server.
  • Performance optimization of SQL queries in the application layer.
  • Creating flowcharts for current and future state maps.
  • Implemented disaster recovery guidelines

Environment: HTML, CSS, Bootstrap, JQuery, JavaScript, MVC, REST, MS-SQL, JSON, Visual Studio, Jira, Azure Cloud, and Windows Server 2012 virtual machines, VB.NET

Confidential

Senior Software Engineer - Team Lead

Responsibilities:

  • Build web-applications for brokers and researchers.
  • Was TDD “Champion” - Responsible for promoting TDD and helping ensure best practices are met.
  • Blob storage (ElasticSearch) cloud deployments via Microsoft Azure.
  • Assist design, create, and maintain team's CI/CD pipeline (VSTS, TFS, Automated Tests, Azure) for DevOps.
  • Negotiate prices for enterprise software packages with external vendor (Slack).
  • Use .NET Core 2.1 to build Proof-Of-Concept with asynchronous RESTful API services, ElasticSearch 6.0 NEST client, and Entity Framework Core (code-first database migrations).
  • Create coding standards and infrastructure standards.
  • Create tutorials for end users
  • Mentored junior developers.
  • Create flowcharts for current and future state maps.
  • Maintained code-base for existing applications in .NET, console, and SQL Agent Jobs.
  • Assist in cross-team architecture for enterprise messaging system (Kafka).
  • Assisted in interviews.
  • Utilized VB.NET for web development
  • Worked with UX, Marketing, and R & D teams to find solutions to difficult problems.

Environment: HTML, CSS, Jquery, Angular 5, JavaScript/TypeScript, MVC, REST, T-SQL, JSON, Visual Studio, TFS, Kafka, ElasticSearch, Azure Cloud, and Windows Server 2012 virtual machines, VB.NET

Confidential

Sr. Software Engineer

Responsibilities:

  • Build infrastructure for continuous integration and development using Jenkins, Octopus Deploy, GitHub, Identity Server, and Linked Servers between SQL and JDE on an AS/400.
  • SQL and Web application cloud deployments via Microsoft Azure.
  • Recommended OWASP Top 10 weaknesses were covered.
  • Mentored other developers.
  • Designed, created, and maintained chatbots in Azure.
  • Manage Server Certificates and application pools in IIS on virtual servers.
  • Negotiate prices for enterprise software packages with external vendors.
  • Use .NET Core 1.0, 1.1, and 2.0 to build applications and a new platform for E-Commerce solution with RESTful API services and EF Core (code-first database migrations).
  • Create prototypes for software and financial solutions.
  • Designed, created, and maintained CI/CD pipeline.
  • Utilized DevSecOps for security and encryption purposes on an enterprise scale.
  • Maintain PCI-Compliance with updated ciphers, encryption handshake protocols, and certificates.
  • Create flowcharts for current and future state maps.
  • Assisted in JDE back-end upgrade and gave technical recommendations for distributed computing.
  • Maintained code-base for existing applications in .NET, Visual Basic, JDE, and SQL Agent Jobs.
  • Groomed to become future Solutions Architect.

Environment: HTML, CSS, JQuery, JavaScript/TypeScript, Angular 2.0, MVC, REST, T-SQL, WCF/SOAP, JSON, Github, Visual Studio, TFS, Eclipse, and Windows Server 2012 virtual machines.

Hire Now