Derrick Wingate

Stone Mountain, GA *****

770-***-**** ad4se2@r.postjobfree.com

https://www.linkedin.com/in/derrickwingate/

SECURITY CONSULTANT

Highly skilled and knowledgeable AWS Cloud security consultant, information technology and risk management professional with a solid background in developing and implementing comprehensive cloud native security strategies.

PROFESSIONAL EXPERIENCE

Amazon Web Services, Stone Mountain, GA April 2021 – September 2023

Cloud Security Consultant

Implemented A to Z security solution architectures in AWS cloud for customers nationwide.

Managed Landing Zones with Control Tower using AWS Best Practices and remediating Security Hub findings to increase the overall security score in preparation of an ATO

Focused on building VPCs from scratch and using scripting languages, AWS CloudFormation and Terraform.

Built stable & secure AWS cloud infrastructure/networking/containers using AWS ECS and EKS orchestration, APIs to design, code, test, implement system security plans(SSP) and infrastructure as a code (IaC).

IAM Administrator managing enterprise accounts, identities, resources, Azure Active Directory federated users.

Performed AWS Well-Architected, PCI, CIS, & HIPAA compliance assessments for multiple enterprise customers.

Installing and industry regulation compliance finding that they used as a road map to remediate gaps.

Lead threat modeling for application/ infrastructure pattern deployments and workload assessments using, FedRAMP, NIST 800-53. Remediating gaps and recommending security best practices in preparation for change control review.

Utilized Splunk and similar in-house SIEM tools to monitor log management.

Identified new value-add opportunities for IaaS, PaaS, SaaS, customers and converted those new opportunities to realize value.

Delivered technical solutions that solved for new levels of complexity, scale, and performance, and in turn, enabled breakthrough innovations.

IDC Technologies/ WWT for (Change Healthcare) August 2018 - February 2021

Team Lead - Architect

Directed a team. Migrated over 1000 Site to Site VPN.

New Firepower FTD/FCM HA deployment with AMP and IDS/IPS.

Built policies using Cisco Firepower, Palo Alto and Checkpoint Enterprise Firewalls. Allowing for micro segmentation of the LAN environment.

Built new Remote Access VPN infrastructure during COVID company emergency.

AWS Hybrid Site to Site VPN’s.

Created Security documentation i.e. VPN / CMDB, troubleshooting guides for SOC as part of the statement of work.

Stratix Corporation May 2018 - August 2018

Sr. Security Engineer

Deployed the Firepower Threat Defense Virtual Using VMware ESXi.

Set Up a Firepower Threat Defense Virtual Device Using the CLI.

Registered a Firepower Threat Defense Virtual to a Firepower Management Center.

Deployed firepower management center virtual appliance on VMware.

Deployed on the Microsoft Azure Cloud.

Built Site to Site VPN from Cisco ASA5525 to Azure FTDv.

Deployed Smart Licenses for FTD and FMC.

IBM March 2011 - March 2018

Sr. Security Consultant, State of GA

Lead network refresh changing Cisco PIX, and Juniper Netscreen firewalls to Cisco ASA 5515x, 5525x and Juniper SSG.

Managed Security and Network upgrades for the Gold Dome and Governor's mansion Downtown Atlanta.

Implemented Security and Network best practices.

Designed, implemented and troubleshot site to site Third party VPN's network.

Sr. Escalation Security Consultant, Fannie Mae

Maintained Cisco ASA, FirePower w/ AMP, Checkpoint and Palo Alto Enterprise firewalls.

Executed Nessus Vulnerability scanning, assessments and remediations of Threats, Vulnerability, Risk.

SIEM ArcSight and Splunk, Fireman monitoring tools.

Security Policy, URL filtering Reviews, CAB meetings.

Lead Security Consultant, New Avon

Lead Datacenter migration Security Engineer. Created RunBooks for server and Firewall weekly migrations events.

Managed Cisco ASA, Checkpoint Enterprise Firewalls.

Security Policy, URL filtering Reviews, CAB meetings.

Migrated 40 Site to Site 3rd Party VPN’s. New Remote Access and SSL VPN’s.

SIEM QRadar and ArcSight.

Multi-Factor authentication, Multi-Layer security best practices.

ADDITIONAL RELEVANT EXPERIENCE

Coca Cola Enterprises

Sr. Security Consultant

Headed daily management of Checkpoint, Cisco Enterprise Firewall. Moved all standalone gateways into a HA clustered environment. Renewed license and optimized StartDefense.

Executed daily troubleshooting using SmartView Tracker and monitoring with Smartview Monitor.

Worked on PCI, SOX and ISeC compliance. Firewall, Switch, Router upgrades.

Planned Disaster Recovery and tested at IBM Boulder.

Harland Clarke

Sr. Network Engineer - Primary WAN/SAN

Maintained internal core LAN/WAN Cisco/Nortel networks.

Internal MPLS, External Frame Relay, VPN Site-to-Site and ECOMM WAN networks.

Successful disaster recovery planning and testing at SunGard in Philadelphia, PA.

CERTIFICATES

AWS Certified Cloud Practitioner

AWS Certified Solution Architect – Associate

AWS Certified Security Specialty

Education

Computer Processing Institute (CPI) Certification, Fair Lawn, NJ

Passaic County College, Paterson, NJ – Study: Computer Science

Contact this candidate