Profiles search

Brandon A.

Cybersecurity Practitioner & Advisor | Technologist | Citizen Activist
Bartlett, IL, United States

Details

Experience: Working directly with senior leadership to modernize and digitally transform the organization's technology infrastructure leveraging public cloud computing, DevOps and Agile methodologies while ensuring adherence to rigorous security and regulatory compliance requirements.

* Consulted on cloud architecture as well as mentoring and advising infrastructure and application development teams on how to securely architect and deploy their applications within commercial cloud providers (including systems designated as systemically important financial market utilities [SIFMU] by US regulators).

* Architecture and implementation consulting of automated detective, preventative, and reactive systems for organization-wide security and compliance, as well as automation of threat intelligence, reporting, and response.

* Architecture and implementation consulting of security, compliance, and auditing systems for distributed ledger technologies leveraged for core capital market business products.

* Architecture and implementation consulting of Hashicorp's Terraform Enterprise and Vault (for infrastructure provisioning, and secrets/identity & access management [IAM], respectively)

* Evangelizing, teaching, and advocating for security engineering best practices.

* Review and development lifecycle of controls and information security policy

2017 : Present

The Depository Trust & Clearing Corporation (DTCC)

Information Security/Risk Management (GRC), Cloud Security Architect, Infosec Subject Matter Expert

Early employee (#14) who collaborated with the organization's lead infrastructure engineer to refactor infrastructure towards the “infrastructure as code” ideal (Ansible, Docker, Packer, Python, Terraform), while continually maintaining and upgrading microservice/monolith infrastructure, data storage systems (Elasticsearch, Memcached, Redis, MySQL, PostgreSQL) and CI/CD automation (Github, Jenkins) in support of rapid user growth, as well as mentoring software engineers on infrastructure architecture/implementation and providing end user technical support to a fully remote global team of ~80 employees.

2014 : 2017

Zapier

Infrastructure Engineer

Architected and implemented cloud (AWS) and on-premise infrastructure to support both a content production workflow (professionally produced and user generated content aggregation, transcoding, and distribution), as well as a highly available web property with associated API services for content distribution via mobile (Android/iOS) applications. Provided training and mentorship to an engineering team to provide ongoing support for production systems.

2013 : 2014

TouchVision TV

VP IT Infrastructure

Collaborated with our CIO and lead application engineer to architect, implement, and provide ongoing support for web platforms serving membership organizations.

2010 : 2013

Website Solutions

Infrastructure Lead

Contributed towards the day to day operations and continual improvement of a high performance computing cluster responsible for the analysis of data from the CMS (Compact Muon Solenoid) detector at the Large Hadron Collider.

2009 : 2010

Fermilab

Infrastructure Engineer, LHC CMS Data Team
Company: The Depository Trust & Clearing Corporation (DTCC)
Years of Experience: 15
Spoken Language: English

Skills

amazon web services (aws), architectures, CISA, cloud computing, crm, css, customer relations, customer service, cyber-security, databases, Data Privacy, disaster recovery, e-commerce, enterprise architecture, financial analysis, financial reporting, html, Information Security Governance, information technology, infrastructure, integration, IT Management, IT Strategy, Leadership, linux, Management, mysql, network security, open source, operating systems, postgresql, project analysis, Project Management, regulatory compliance, scalability, Security, security architecture design, system administration, system architecture, threat & vulnerability management, threat analysis, threat assessment, threat modeling, unix, Vendor Management, virtualization, vmware, web applications, web development, data center, photoshop, javascript, php, microsoft sql server, awstats, Amazon Web Services, openstack, cisco technologies, servers, software engineering, perl, apache, mobile applications, software development, iis

About

Contributing towards impactful information security culture and technology systems while supporting and cultivating effective, passionate security talent; contributing at a financial utility to drive forward their cloud-first engineering aspirations while meeting rigorous security and regulatory compliance requirements.



Please reach out if you or your organization is in need of multi domain technology expertise. I am always seeking challenges to solve (organizational, cultural, technological, or any combination of the above).



Sales folks: Please no unsolicited sales/marketing emails or phone calls.



Recruiters: Always interested in exciting opportunities, please reach out! Remote roles only! No hybrid or on site roles will be considered.



(thoughts and opinions are always my own, and not that of any past, present, or future employer)



Extensive knowledge of PCI-DSS, HIPAA, HITRUST,

SOC1&2, IS027001 and NIST, as well as experience with NYDFS and Fed regulatory requirements; strong experience with both cloud and on prem environments.