Work Experience
- Serve as a technical lead for a large enterprise organization in AWS GovCloud, triaging incoming
work and assigning duties to team members based on expertise and capacity. Provide documentation and
hands-on guidance to support team delivery.
- Drive technical strategy and project delivery for FedRAMP and DoD IL5 GovCloud environments. Play
a lead role in audits by providing evidence and NSS controls for security tooling within the
management plane.
- Created and optimized GitLab CI/CD pipelines for continuous deployment of containerized workloads
to EKS clusters. Automated deployment of monitoring tooling including Splunk forwarders, Trend
Micro, and Nessus agents across infrastructure via pipeline.
- Led client workshops evaluating application architecture for FedRAMP Moderate and IL5 High
environments. Developed architecture diagrams in Lucid Charts depicting data flow, security and
access controls, and ports and TCP protocols.
- Collaborated with architects to design and implement scalable, secure systems meeting FedRAMP
requirements. Played a pivotal role in developing company-wide Terraform modules incorporating FIPS
endpoints and security best practices.
- Ensured continuous NIST compliance through automated monitoring and remediation using Ansible.
Enforced STIGs across infrastructure using the latest DISA playbooks and leveraged Packer for AMI
builds incorporating current STIG controls.
- Built and managed AWS cloud infrastructure for McDonald's Managed Services team, supporting
environments across 40,000+ locations worldwide.
- Architected AWS Transit Gateway to securely connect 70+ accounts, replacing legacy VPC peering.
Implemented Amazon Identity Center with role-based access for 1,000+ users.
- Collaborated with architecture team to establish cloud adoption standards, improving deployment
efficiency, patch management, and operational reliability. Built out a company-wide adopted patching
solution leveraging AWS patch baslines and AWS Systems manager scheduled mainteance windows.
- Drove Infrastructure as Code adoption using Terraform and CloudFormation. Deployed Cloud Custodian
for compliance, New Relic for monitoring, Qualys for vulnerability scanning, and SentinelOne for
endpoint security.
- Developed Python scripts and Lambda functions for multi-region resource automation. Built Bash
scripts and Ansible playbooks for consistent Linux configuration management.
- Built and maintained open source infrastructure for 500+ employees across Two Barrels, Registered
Agents, and Corporate Tools with full autonomy over tooling decisions.
- Deployed scalable systems across AWS and on-premises data centers including email servers,
company-wide ticketing systems, and Kubernetes clusters.
- Automated configuration management for 100+ Linux servers using Bash scripts and Ansible
playbooks. Configured NGINX web servers and managed containerized workloads.
- Built real-time VPN monitoring dashboard with Python/Django. Collaborated with developers on
secure AWS infrastructure including VPCs, security groups, and IAM policies.
|