11 KiB
Compuquip Cybersecurity Full-time · 4 yrsFull-time · 4 yrs RemoteRemote Director of Automation Director of Automation Jun 2024 - Dec 2024 · 7 mosJun 2024 to Dec 2024 · 7 mos Doral, Florida, United StatesDoral, Florida, United States Lead the Automation Team to deliver the automation needs of the business.
Spearheaded new automation processes and procedures including standup of new architecture and infrastructure to handle new processes.
Drove and mentored the team in new Automation workflows using Python, AWS Lambda and SOAR technology.
Developed custom AI processes to handle several key business needs using custom prompts and data.
Limited description due to security - Details available upon request. Lead the Automation Team to deliver the automation needs of the business. Spearheaded new automation processes and procedures including standup of new architecture and infrastructure to handle new processes. Drove and mentored the team in new Automation workflows using Python, AWS Lambda and SOAR technology. Developed custom AI processes to handle several key business needs using custom prompts and data. Limited description due to security - Details available upon request.
Skills: Executive Management · Computer Network Operations · Data Engineering · Risk Management · Software Architecture · Software Engineering Practices · Hiring · A/B Testing · Management · Continuous Integration and Continuous Delivery (CI/CD) · Security Operations Center · Team Development · Executive-level Communication · Application Security · Technological Innovation · Strategic Thinking · Open-Source Software · Technical Leadership · Security Information and Event Management (SIEM) · Network Automation · Ansible · Problem Solving · Security Operations · Software Development · Startup Development · Collaborative Leadership · Low-Code Development · Startups · Debian · Network Troubleshooting · Recruiting · Machine Learning · Strategic Planning · Artificial Intelligence (AI) · Team Management · Ticketing Systems · Infrastructure Management · Enterprise Architecture · Large Language Models (LLM) · Engineering Leadership · Technical Specs · Team Leadership · No-Code Development Platforms · Automation · Retrieval-Augmented Generation (RAG) · Linux · Architectural Drawings Skills: Executive Management · Computer Network Operations · Data Engineering · Risk Management · Software Architecture · Software Engineering Practices · Hiring · A/B Testing · Management · Continuous Integration and Continuous Delivery (CI/CD) · Security Operations Center · Team Development · Executive-level Communication · Application Security · Technological Innovation · Strategic Thinking · Open-Source Software · Technical Leadership · Security Information and Event Management (SIEM) · Network Automation · Ansible · Problem Solving · Security Operations · Software Development · Startup Development · Collaborative Leadership · Low-Code Development · Startups · Debian · Network Troubleshooting · Recruiting · Machine Learning · Strategic Planning · Artificial Intelligence (AI) · Team Management · Ticketing Systems · Infrastructure Management · Enterprise Architecture · Large Language Models (LLM) · Engineering Leadership · Technical Specs · Team Leadership · No-Code Development Platforms · Automation · Retrieval-Augmented Generation (RAG) · Linux · Architectural Drawings
SOC Director Mar 2023 - Jun 2024 · 1 yr 4 mos Doral, Florida, United States Oversee Red team / Offensive Security Teams Oversee Managed Remediation Service projects.
Manage SOC Operations and Develop SOC playbooks / workflows. Maintain situational awareness reports for advanced threats such as APT and FO incidents
Support SOC analysis, engineers in handling and response activity. Develop threat trend analysis reports and metrics. Oversee Red team / Offensive Security Teams Oversee Managed Remediation Service projects. Manage SOC Operations and Develop SOC playbooks / workflows. Maintain situational awareness reports for advanced threats such as APT and FO incidents Support SOC analysis, engineers in handling and response activity. Develop threat trend analysis reports and metrics.
Skills: Executive Management · Computer Network Operations · Data Engineering · Risk Management · Software Architecture · Software Engineering Practices · User Behavior · Cyber-security · Information Security Analysis · Data Privacy · Hiring · A/B Testing · Management · Digital Forensics · Continuous Integration and Continuous Delivery (CI/CD) · Security Operations Center · Team Development · Application Security · Technological Innovation · Strategic Thinking · Open-Source Software · Technical Leadership · Security Information and Event Management (SIEM) · EDR · Network Automation · Risk Monitoring · Leadership · Ansible · Problem Solving · Security Operations · Software Development · Startup Development · Collaborative Leadership · Low-Code Development · Startups · Debian · Network Troubleshooting · Recruiting · Machine Learning · Strategic Planning · Artificial Intelligence (AI) · Team Management · Ticketing Systems · Infrastructure Management · Malware Analysis · Enterprise Architecture · Large Language Models (LLM) · Engineering Leadership · Technical Specs · Team Leadership · No-Code Development Platforms · Automation · Retrieval-Augmented Generation (RAG) · Linux · Architectural Drawings Skills: Executive Management · Computer Network Operations · Data Engineering · Risk Management · Software Architecture · Software Engineering Practices · User Behavior · Cyber-security · Information Security Analysis · Data Privacy · Hiring · A/B Testing · Management · Digital Forensics · Continuous Integration and Continuous Delivery (CI/CD) · Security Operations Center · Team Development · Application Security · Technological Innovation · Strategic Thinking · Open-Source Software · Technical Leadership · Security Information and Event Management (SIEM) · EDR · Network Automation · Risk Monitoring · Leadership · Ansible · Problem Solving · Security Operations · Software Development · Startup Development · Collaborative Leadership · Low-Code Development · Startups · Debian · Network Troubleshooting · Recruiting · Machine Learning · Strategic Planning · Artificial Intelligence (AI) · Team Management · Ticketing Systems · Infrastructure Management · Malware Analysis · Enterprise Architecture · Large Language Models (LLM) · Engineering Leadership · Technical Specs · Team Leadership · No-Code Development Platforms · Automation · Retrieval-Augmented Generation (RAG) · Linux · Architectural Drawings
SOC Technical Manager Jan 2021 - Mar 2023 · 2 yrs 3 mos Tampa, Florida, United States
Author SOPs and training documentation. Lead Incident Research and Mentor SOC Engineers. Develop threat trend analysis reports and metrics. Support SOC analysis, handling and response activity. Generates end-of-month reports for managers and customers Manage SOC Operations and Develop SOC playbooks / workflows. Maintain situational awareness reports for advanced threats such as APT and FO incidents Author SOPs and training documentation. Lead Incident Research and Mentor SOC Engineers. Develop threat trend analysis reports and metrics. Support SOC analysis, handling and response activity. Generates end-of-month reports for managers and customers Manage SOC Operations and Develop SOC playbooks / workflows. Maintain situational awareness reports for advanced threats such as APT and FO incidents
Skills: Computer Network Operations · Data Engineering · Risk Management · Software Architecture · Software Engineering Practices · User Behavior · Cyber-security · Information Security Analysis · Data Privacy · Hiring · A/B Testing · Management · Continuous Integration and Continuous Delivery (CI/CD) · Security Operations Center · Team Development · Application Security · Technological Innovation · Strategic Thinking · Open-Source Software · Technical Leadership · Security Information and Event Management (SIEM) · EDR · Network Automation · Risk Monitoring · Ansible · Problem Solving · Security Operations · Software Development · Startup Development · Collaborative Leadership · Low-Code Development · Startups · Debian · Network Troubleshooting · Strategic Planning · Team Management · Ticketing Systems · Infrastructure Management · Enterprise Architecture · Engineering Leadership · Technical Specs · Team Leadership · No-Code Development Platforms · Automation · Linux · Architectural Drawings Skills: Computer Network Operations · Data Engineering · Risk Management · Software Architecture · Software Engineering Practices · User Behavior · Cyber-security · Information Security Analysis · Data Privacy · Hiring · A/B Testing · Management · Continuous Integration and Continuous Delivery (CI/CD) · Security Operations Center · Team Development · Application Security · Technological Innovation · Strategic Thinking · Open-Source Software · Technical Leadership · Security Information and Event Management (SIEM) · EDR · Network Automation · Risk Monitoring · Ansible · Problem Solving · Security Operations · Software Development · Startup Development · Collaborative Leadership · Low-Code Development · Startups · Debian · Network Troubleshooting · Strategic Planning · Team Management · Ticketing Systems · Infrastructure Management · Enterprise Architecture · Engineering Leadership · Technical Specs · Team Leadership · No-Code Development Platforms · Automation · Linux · Architectural Drawings
Additionally, At Compuquip I was directly responsible for the following. Managed a growing soc that Grew from clients from 16 customers to 52 over 4 years with an expantion of services. I was directly responsible for making changes in program vendors and service pricing which lead to the SOC going from an 18% margin to 52% profitability, with one quarter being 80% profitable. This helped our company grow 15% net income each year. Directly managed a team of 17 reports. Managed DFIR Engagements, MDR services, Proactive Vulnerability Scanning, Patching Engagements, and Pentesting Pro-services. I was on the leadership team with the (COO / CEO / CFO) and involved in quarterly meetings to steer the direction of the company. I wrote all the automation for ticket flow and processing that was directly responsible for handling the alert flow from independant systems to a centralized ticket platform. The automation was responsible for handling 3500 tickets a week. The automation also closed 47% of these tickets 100% without any human involvement with custom heuristics, log searches, filtering rulesets, AI, and custom logic / rule engines. I was also directly incharge in the design, programming, and deployment of the AI tools, prompts, code, and logic.