Phillip Tarrant

Contract consulting role providing cybersecurity leadership and technical expertise.

• Develop, design, and review risk assessments and vulnerability scans of client networks and systems

• Developing and implementing robust security controls and countermeasures to mitigate identified risks

• Designing and deploying secure architectures for cloud, on-premises, and hybrid environments

• Providing guidance on compliance with industry regulations (HIPAA, PCI-DSS, GDPR, NIST 800-53)

• Collaborating with clients to develop and implement incident response and disaster recovery plans

• Conducting regular security audits and assessments to ensure ongoing compliance and security posture

• Short-term director role at American Technology Services (ATS) restructuring SOC flow and training

• Managed Vulnerability Management Program for largest fintech client using Qualys

• Currently managing SOC operations for US Defense Space market supplier across multiple Microsoft tenants

Lead the Automation Team to deliver the automation needs of the business.

• Spearheaded new automation processes and procedures including standup of new architecture and infrastructure

• Drove and mentored the team in new Automation workflows using Python, AWS Lambda and SOAR technology

• Developed custom AI processes to handle several key business needs using custom prompts and data

• Built automation handling 3,500 tickets weekly with 47% closed without human involvement

• Designed, programmed, and deployed AI tools, prompts, code, and logic for security automation

Directed Security Operations Center and Red Team operations for MSSP clients.

• Grew SOC client base from 16 to 52 customers over tenure with expansion of services

• Improved SOC profitability from 18% to 52% margin (80% in one quarter) contributing to 15% annual net income growth

• Directly managed team of 17 reports

• Oversaw Red team / Offensive Security Teams and Managed Remediation Service projects

• Managed DFIR engagements, MDR services, Proactive Vulnerability Scanning, Patching, and Pentesting

• Maintained situational awareness reports for advanced threats (APT and FO incidents)

• Part of leadership team with COO/CEO/CFO involved in quarterly strategic planning

Managed SOC Operations and led incident research and engineering teams.

• Authored SOPs and training documentation for SOC team

• Lead Incident Research and mentored SOC Engineers

• Developed threat trend analysis reports and metrics

• Managed SOC Operations and developed SOC playbooks/workflows

• Generated end-of-month reports for managers and customers

• Maintained situational awareness reports for advanced threats

Responsible for security architecture, training programs, and compliance across the organization.

• Formulated and oversaw phishing and developer security training programs

• Developed and maintained cloud security protections and security posture

• Created custom tools to automate attacks against infrastructure and design detections

• Saved $10,000+ through effective vendor/supplier negotiations

• Steered organization through PCI and NIST 800 series audits

• Devised, created, and upgraded cybersecurity related policies and procedures

• Designed and implemented automated security verification and attack programs

Part of the Architecture and Automation Team focused on security data flow and automation.

• Designed and maintained security data flow from network endpoints through aggregation, parsing, and storage

• Created methods, processes, and algorithms to extract knowledge from structured/unstructured data

• Designed custom tools to automate SOC triage and response activities

• Incorporated security into infrastructure CI/CD pipelines including cloud technologies

• Formulated vulnerability and threat hunting dashboard for tracking and mitigation

Part of the Incident Response / Digital Forensics Team as lead investigator.

• Served as lead investigator on critical incidents with thorough investigations

• Created extensive documentation on processes and procedures for the entire IR team

• Served as leader in Malware Analysis in isolated sandboxed environments

• Developed skills of junior agents including custom malware writing through training

• Managed multi-server compromise investigations coordinating across three teams and time zones

Managed IT team supporting 300+ staff members with focus on infrastructure and security.

• Managed team of technicians and developers facilitating 300+ staff members

• Oversaw 8 direct reports with performance management responsibilities

• Conducted vendor/supplier negotiations to minimize costs

• Managed security of entire web presence including network and programming code

• Efficiently managed doubling of server space and usage

• Migrated 3rd party tools to in-house solutions saving $50,000+ yearly

Managed Windows and Linux server environments with focus on infrastructure and automation.

• Designed, managed, and monitored infrastructure systems (LANs, WANs, Security)

• Developed and maintained process automation through scripting and programming

• Administered servers, computers, printers, routers, switches, firewalls, and phones

• Spearheaded performance tuning, hardware upgrades, and resource optimization

Contract role managing network support and infrastructure upgrades.

• Managed network support and upgrades including fiber optic link installation

• Served key role implementing 35 managed switches with several VLANs

• Resolved major data outage in main switch room without assistance

• Completed three-month contract in one month

• Developed automated cloning system to minimize cost and speed deployment

Oversaw IT department budgets and deployment strategies for the school.

• Oversaw budgets and deployment strategies for entire IT department

• Administered servers, desktop computers, printers, routers, switches, firewalls

• Shifted all servers from physical to virtual to save space and minimize costs

• Rolled out wireless for entire campus comprising several acres

• Negotiated and delivered fiber link for the school free of charge

• Managed Linux NAS storage solutions for 200+ workstations

IT expert for hire in block time situations and emergency disaster recovery.

Assisted Tier 2 technicians with customer service issues and tested new developing technologies.