Cloud Security Engineering Portfolio

Security Engineering & Zero Ransomware Breaches Operations

Proven cloud security expertise demonstrated through zero ransomware breaches MSP operations serving 30+ clients and current federal cloud security projects. Showcasing real-world security implementation and defense contractor readiness.

Real Security Incident Response - Called When Others Failed

Critical Security Incident Resolution

2020-2023 - The MSP Called After Others Failed

The Pattern: Nearly every client came to us already compromised, already breached, or one click away from disaster. Other providers had failed. We got the calls when businesses faced imminent shutdown from security failures.

Critical Incident #1: Copyright Violation Crisis

  • The Crisis: ISP threatening service termination for repeated copyright violations
  • Discovery: Neighbor using client's unsecured WiFi for BitTorrent piracy downloads
  • NIST Mapping: SC-7 (Boundary Protection) - No network segmentation or guest isolation
  • Solution: WatchGuard firewall, separate Guest VLAN, bandwidth controls, network isolation
  • Result: Business saved from internet service termination, no further violations

Critical Incident #2: Active Compromise - Mouse Moving by Itself

  • The Crisis: Business owner's computer actively controlled by unknown attacker
  • Discovery: 30 employees sharing 2 RDP accounts, password on sticky note on wall
  • NIST Mapping: AC-2 (Account Management), IA-5 (Authenticator Management)
  • Solution: Complete infrastructure rebuild, individual accounts, MFA, network segmentation
  • Result: Zero ransomware breaches for all fully managed clients post-implementation

Critical Incident #3: Accounting Firm Total Compromise

  • The Crisis: Previous provider removed firewall, extensive malware across network
  • Discovery: No antivirus, no patching, financial data completely exposed
  • NIST Mapping: SI-2 (Flaw Remediation), CM-6 (Configuration Settings)
  • Solution: Network firewall, RMM deployment, SOC integration, automated patching
  • Result: Clean network, maintained compliance, zero incidents since

The Zero Ransomware Breaches Achievement:

  • 100% of new clients came to us already compromised or vulnerable
  • Fixed copyright violations, active compromises, and malware infestations
  • Implemented comprehensive security controls that prevented all future incidents
  • Zero successful breaches across 30+ production environments after implementation
  • Implemented security controls aligned with FTC Safeguards Rule for CPA clients and state bar requirements for legal clients

Crisis Technologies: WatchGuard/SonicWall firewalls, Datto RMM, SOC monitoring, VMware security, Office 365 security, MFA implementation, network segmentation

Federal Cloud Resume Challenge

Current Project - AWS Security with RMF Controls

Building serverless resume website on AWS with comprehensive RMF (Risk Management Framework) controls implementation. Demonstrates AWS security services integration and federal compliance automation for defense contractor readiness.

Security Implementation:

  • AWS Security Hub centralized security finding management
  • GuardDuty threat detection and automated incident response
  • CloudTrail comprehensive audit logging and monitoring
  • IAM security with least privilege access controls
  • Infrastructure as Code with Terraform security controls

Federal Compliance Focus:

  • RMF controls implementation and documentation
  • NIST cybersecurity framework alignment
  • Automated compliance monitoring and reporting
  • Security baseline enforcement and validation

Technologies: AWS Security Hub, GuardDuty, CloudTrail, IAM, S3, Lambda, Terraform, Python security automation

Launch School Backend Engineering

Completed 9 Rigorous Courses - Mastery-Based Learning

Completed 9 rigorous backend engineering courses with Launch School's mastery-based methodology, requiring 80%+ scores to advance between courses. Provides strong programming foundation supporting security automation and cloud development.

Programming & Security Foundations:

  • Systematic problem-solving methodologies applicable to security challenges
  • Object-oriented programming principles for security tool development
  • Network programming foundations supporting security automation

Database & Backend Security:

  • SQL and database security principles
  • Secure application development practices
  • Server-side architecture with security considerations

Technical Foundation for Security Engineering:

  • Strong programming foundation enabling security automation scripting
  • Systematic debugging approach applicable to security incident investigation
  • Version control and collaboration skills for security team environments

Technologies: Ruby, Python, PostgreSQL, Git, Shell Scripting, HTTP Protocol, Object-Oriented Programming

Vanderbilt Hospital Enterprise Deployment

2015 - Led 13-Person Team, 5,000+ System Deployment

Managed enterprise-scale technology deployment demonstrating technical leadership and project management capabilities in healthcare environment with strict HIPAA compliance requirements.

Leadership Responsibilities:

  • Led 13-person technical team through complex deployment project
  • Coordinated with clinical staff and hospital administration
  • Ensured HIPAA compliance throughout deployment process
  • Mentored junior technicians and managed daily team activities
  • Delivered project on time and within budget constraints

Project Outcomes:

  • Successfully deployed 5,000+ systems across hospital facilities
  • Delivered on time and on budget
  • Met all compliance and regulatory requirements
  • Positive feedback from clinical and administrative stakeholders

Environment: Windows enterprise systems, Healthcare IT infrastructure, HIPAA compliance protocols

Technical Competencies

MSP Operations

  • Managed services business operations
  • Client relationship management
  • Service delivery excellence
  • Technical project management
  • Vendor relationship coordination

Infrastructure Management

  • Windows/Linux/macOS environments
  • Network design and security
  • Virtualization and storage
  • Backup and disaster recovery
  • HIPAA compliance implementation

Cloud Architecture (Developing)

  • AWS Services and serverless patterns
  • Infrastructure as Code with Terraform
  • CI/CD pipeline development
  • Security and compliance automation
  • Cost optimization strategies

Software Engineering

  • Ruby and Python programming
  • Database design and optimization
  • System design principles
  • Test-driven development
  • Version control and collaboration