Add TopBuild Principal Security Engineer role; tailor for Director, Detection Engineering & Threat Hunting

- Add TopBuild Corp (Mar 2026-present): SOAR app build, user activity tracker, quarantine automation, team mentorship
- Close Confidential contractor role at 2026-03
- Reframe headline/summary toward detection engineering, threat hunting, leadership
- Add Google SecOps, CrowdStrike, ReliaQuest, Abnormal, Threat Hunting, Custom SOAR to skills

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This commit is contained in:
2026-06-23 21:45:06 -05:00
parent d9625fe0ca
commit c24f40e4f7
2 changed files with 24 additions and 3 deletions

Binary file not shown.

View File

@@ -2,11 +2,11 @@
"$schema": "https://raw.githubusercontent.com/jsonresume/resume-schema/v1.0.0/schema.json",
"basics": {
"name": "Phillip Tarrant",
"label": "Cybersecurity Director | AI & Automation Leader",
"label": "Director, Detection Engineering & Threat Hunting | Security Automation & AI Leader",
"email": "ptarrant@gmail.com",
"phone": "(706) 294-6733",
"url": "https://www.linkedin.com/in/phillip-tarrant-cyber",
"summary": "Accomplished and analytical professional with 20+ years of experience in cybersecurity, server infrastructures, and data-center operations. Proven expertise in Cyber Operations, digital forensics, penetration testing, information system management, malware reversing, threat detection, and threat hunting with and without AI integration. Proactive leader with a proven record of managing multiple large teams and leading the charge to complete project goals. Managed MSSP operations for 50+ large business clients encompassing over 150,000 assets and 1 million+ users. Experienced AI leader with expertise in prompt engineering, LLM integration, AI security and guardrails, and deploying AI solutions in secure, regulated environments.",
"summary": "Security leader with 20+ years of experience building and leading detection engineering, threat hunting, and SOC operations across MSSP and enterprise environments. Proven director-level track record managing multiple large teams, restructuring SOC workflows, and scaling detection and response programs. Deep technical foundation in digital forensics, malware reversing, incident response, and threat hunting with and without AI integration. Led MSSP operations for 50+ business clients encompassing 150,000+ assets and 1 million+ users. Experienced AI and automation leader with expertise in SOAR engineering, prompt engineering, LLM integration, AI security and guardrails, and deploying AI-driven detection solutions in secure, regulated environments.",
"location": {
"city": "Morrison",
"region": "TN",
@@ -21,11 +21,26 @@
]
},
"work": [
{
"name": "TopBuild Corp",
"position": "Principal Security Engineer",
"location": "Remote",
"startDate": "2026-03",
"summary": "Lead engineer owning security automation, AI development, and SIEM/logging strategy for the enterprise security program; drive detection engineering, threat hunting tooling, and analyst enablement while advising leadership on strategic security investments.",
"highlights": [
"Own enterprise security automation, AI development, and SIEM/logging strategy across the security program",
"Architected and built a custom SOAR web application from the ground up — 20+ automated response actions unifying detection, reporting, and response across Microsoft 365, CrowdStrike, Google SecOps, and ReliaQuest data sources",
"Engineered a 'user activity tracker' that accelerates incident triage and proactive threat hunting across enterprise telemetry",
"Automated end-to-end quarantine email release across Microsoft 365 and Abnormal, cutting analyst response time on phishing and malicious mail",
"Mentor 2 junior engineers on a lean 5-person security team in secure coding and cybersecurity-forward AI usage; advise senior leadership on strategic detection engineering and security investments"
]
},
{
"name": "Confidential",
"position": "Senior Information Security Consultant",
"location": "Remote",
"startDate": "2025-01",
"endDate": "2026-03",
"summary": "Contract consulting role providing cybersecurity leadership and technical expertise.",
"highlights": [
"Managing SOC operations for US Defense Space market supplier across multiple Microsoft tenants",
@@ -142,11 +157,15 @@
"Splunk",
"ELK Stack",
"Microsoft Sentinel/Defender",
"Google SecOps (Chronicle)",
"CrowdStrike",
"ReliaQuest",
"Sentinel One",
"Rapid7 IDR",
"Swimlane",
"D3 SOAR",
"Torq",
"Custom SOAR Development",
"Playbook Development"
]
},
@@ -162,6 +181,8 @@
"Malware Analysis",
"Incident Response",
"Detection Engineering",
"Threat Hunting",
"Abnormal Security",
"Metasploit",
"Purple Team"
]
@@ -230,6 +251,6 @@
"meta": {
"theme": "elegant",
"version": "v1.0.0",
"lastModified": "2025-12-08"
"lastModified": "2026-06-23"
}
}