Vulnerability Management Security Engineer

Celedonio Piedras

+1-469-***-**** ***********@*****.*** Sachse, Texas

Summary

Seasoned cybersecurity expert with 20+ years of industry experience and a specialized focus on enhancing infrastructure security. Proven track record of implementing advanced cybersecurity measures, including automation, complex orchestration workflows, Zero Trust principles, and DevSecOps frameworks. Adept at fostering a security-conscious culture, aligning cybersecurity strategies with business objectives, and leading cross-functional teams to drive security innovation and application performance enhancements. Seeking to align my security expertise with AI modeling (multi-agent) systems to build augment decision-making, secure development practices by adopting cross-collaboration disciplinary actions, adversarial assessments, behavioral and runtime protection model concepts, ethical and regulatory compliance, continuous monitoring, and emerging technologies.

Work Experience

WWT/Verizon

Principal Cybersecurity Consultant Jul 2023 - Aug 2024

●Spearheaded DevSecOps initiatives that improved security maturity by integrating security practices into the development lifecycle, reducing time-to-market for secure applications by 30%

●Developed and implemented multi-layered ransomware defense strategies, resulting in a 75% reduction in successful attacks and a 60% decrease in data recovery time

●Designed and implemented Ransomware Resiliency Strategy services, reducing client vulnerability to attacks by 65% and improving recovery times by 40% across hybrid cloud environments

●Secure automation standardization with AI systems by adopting ingress shielding, behavioral anomalies, runtime poisoning modeling protection, encryption, input validation

●Orchestrated cross-platform security integration initiatives, enhancing threat detection capabilities by 55% and reducing incident response times by 35%

●Managed cross-functional teams to enhance security posturing, developing comprehensive runbooks and workflows that significantly improved network and security operations

●Architected and optimized CI/CD pipelines for secure, efficient deployment of containerized applications in a Kubernetes ecosystem

Stratascale

Principal Cybersecurity Consultant Jun 2021 - Sep 2022

●Pioneered adaptive cybersecurity measures that enhanced organizational security postures leveraging computational models such as convolutional and recurrent neural networks

●Optimized infrastructure orchestration, resulting in a 35% increase in operational efficiency and enhanced security posture for strategic projects

●Developed security strategies within distributed systems, AI/ML systems, attack surface management, shielding immutable infrastructures and ephemeral environments

●Spearheaded adoption of Zero Trust Principles and DevSecOps practices, reducing security vulnerabilities by 70% in application development lifecycle

●Collaborated with key stakeholders to formulate and execute cybersecurity roadmaps, ensuring seamless integration of security controls with business workflows

●Forged key alliances with security vendors, optimizing enterprise and open-source solutions to enhance security capabilities cost-effectively

MUFG Investor Services

Cybersecurity Compliance Specialist Consultant Jan 2020 - Mar 2021

●Developed and implemented innovative security strategies, resulting in a 40% reduction in security incidents and a 25% improvement in overall operational security posture

●Launched an Enterprise Information Security Phishing Program, increasing employee phishing detection rates by 85% and reducing successful attacks by 70%

●Adoption of AI/ML models for advanced malware detection against zero-day attacks by integrating network traffic analysis with centralized logging capabilities

●Spearheaded risk management initiatives for critical systems, enhancing overall security posture and providing crucial support for compliance programs

●Designed and implemented security awareness programs, resulting in a 70% reduction in user-related security incidents within 12 months

●Facilitated collaboration between diverse teams in Compliance Oversight Committees, driving the successful implementation of unified security measures

Wipro Limited

Sr Security Operations Security Infrastructure Consultant Dec 2018 - Dec 2019

●Developed and maintained robust security operation frameworks, ensuring 100% compliance with SOW requirements through continuous reassessment and adaptation

●Streamlined middleware management processes, reducing system downtime by 60% and improving overall performance across Hypervisors, Databases, and Automation tools

●Fostered strategic alliances with C-level executives, resulting in a 40% increase in security solution adoption and 25% improvement in overall compliance

●Led continuous reassessment initiatives, identifying and addressing 25+ critical security gaps per quarter, enhancing overall organizational resilience

●Designed and executed comprehensive action plans, resulting in a 50% increase in team skill proficiency and 40% improvement in process efficiency

Cybereason

Senior Security Engineer Oct 2017 - Dec 2017

●Streamlined cybersecurity processes across TOLA region, empowering sales teams to deliver advanced security solutions and improve client satisfaction

●Developed comprehensive report on EDR market trends and multi-vendor endpoint solution limitations, enabling data-driven decision-making for sales strategies

●Spearheaded development of behavior analysis and anti-ransomware prevention techniques, resulting in 85% faster identification of potential penetration attacks

●Pioneered client-centric approach through on-site visits and interactive presentations, fostering stronger relationships and improving solutions fit for diverse business needs

McAfee LLC

Field Senior Security Engineer Dec 2015 - Jun 2017

●Architected and deployed robust security infrastructure by integrating multiple platforms, strengthening the company's defense against cyber threats

●Implementation of advanced persistent threats capabilities with deep learning machine learning concepts into neural networks

●Orchestrated the integration of McAfee Data Exchange Layer and Active Response, enabling real-time threat mitigation and improving forensic capabilities by 50%

●Achieved Sales Engineer of the Quarter recognition twice in 2017, exceeding quarterly targets by an average of 30% and securing 5 major enterprise contracts

INTEL SECURITY (aka - McAfee)

Senior Security Engineer Sep 2010 - Nov 2015

●Directed presales strategy for McAfee's security portfolio, resulting in a 30% increase in client engagement and a 25% boost in successful POCs

●Implemented E-Policy Orchestrator platform across 100+ client organizations, resulting in a 40% reduction in security incidents and 25% improvement in threat response time

●Develop Artificial intelligence telemetry with supervised learning of variant malicious anomaly behavior patterns resulting in decreased virus signatures

●Orchestrated the integration of multiple security platforms, resulting in a 50% improvement in threat detection and a 30% reduction in response time for 200+ enterprise clients

MCAFEE, LLC

Senior Security Specialists Mar 1997 - Aug 2010

●Led multi-disciplinary teams in revolutionizing security infrastructures for high-profile clients, enhancing threat detection capabilities and streamlining incident management processes

●Cultivated strategic partnerships with third-party vendors through McAfee's Security Innovation Alliance, expanding client security capabilities by 50% and driving a 30% increase in overall system effectiveness

●Developed customized support frameworks based on comprehensive security landscape analysis, enhancing system efficiency and streamlining issue resolution for enterprise clients

●Revolutionized account management strategies and security implementation processes, significantly enhancing client satisfaction and bolstering overall system protection

Education

University of Phoenix

BS, Information Technology / Information Systems Security, 3.6 GPA

ITT Technical Institute

Associate's degree, Electronic Engineering Technology, 3.7 GPA

Certifications

Certified Ethical Hacker

Certified by: EC-Council

Microsoft Certified Professional

Certified by: Microsoft

McAfee Certified Security Specialist

Certified by: McAfee

Security+

Certified by: CompTIA

Skills

• Cybersecurity Integration

• Containerization

• Zero Trust

• Technical Documentation

• EDR

• Cloud Security

• Risk Management

• GRC

• Configuration Management

• Security Awareness

• SLA

• Security Management

• Threat Modeling

• Security

• Malware Analysis

• Strategic Planning

• Vulnerability Management

• Database Security

• Project Management

• SIEM

• Incident Response

• Infrastructure Modernization

• Documentation

• API Security

• Communication

• Security Frameworks

• Application Security

• SDLC

• Network Security

• Forensics

• Cost Optimization

• Linux

• Kubernetes

• CI/CD

• Capacity Planning

• Infrastructure-as-Code

• DLP

Contact this candidate