Data Scientist
Resume:
Warren White
Phone: (***) ***- **** **************@*****.***
linkedin.com/in/ warrenwhite010
SUMMARY
Experienced Cloud Security Specialist with a robust background. 4 years as a Security Analyst and 5 years as a Security Engineer. Demonstrated proficiency in leading multifaceted initiatives encompassing cloud posture management, rigorous ISO and SOC audits, comprehensive data loss prevention strategies, precise incident analysis, and adept implementation of SIEM solutions. Passionate about fortifying organizational defenses to safeguard both assets and clientele. Skilled in elucidating complex scenarios to foster team collaboration and streamline remedial actions. Committed to staying at the forefront of evolving threats and cutting-edge technologies while striving to drive impactful change within the industry.
CORE COMPETENCIES
4 Years Scripting: Powershell, Python, Bash
4 Years Engineering: Vulnerability Remediation and Mitigation, Audit Compliance, Incident Response, SIEM implementation
4 Years Audits: ISO, SOC, PCI, HIPAA, creating documents per audit format
5 Years Security Tools: SIEM, XDR, EDR, Cloud-Native, Third-party integrations
5 Years Investigation: Incident Response, Log Analysis, Log Forwarding, Monitoring, Creating Alerts
5 Years Cloud: Azure, AWS, GCP Cloud Security Posture Management
6 Years Security: Data Loss Prevention, Networking, Cloud Environments, Access Management
6 Years Risk: Assessment, Threat Modeling, Cyber Kill Chain, SCRUM, CSPM, Runbooks
10+ Years of Personal Skills: Teamwork, Adaptability, Communication, Critical Thinking, Creativity
PROJECTS
20+ Clients: Improved cloud security posture management for multiple Cloud environments
10+ Internal/External Audits: ISO, SOC, PCI, HIPAA, and automating internal audit programs
Complete multiple POV
100K+ Vulnerabilities remediated through project management, change requests, and collaboration
40% Increase improvement for cloud security posture on average per client
Lead Security Meetings with clients, collaborating with executives, managers, developers, engineers
PROFESSIONAL EXPERIENCE
Sr. Security Engineer
Aledade – Healthcare 2024 – 2025 / Current Employer
A full-time employee working with Azure, GCP, and AWS environments.
Implemented and managed SIEM tools within the environment, in multiple clouds.
Performed vulnerability reviews with developers and operational engineers.
Tuned, monitored, and investigated alerts of unauthorized access and other potential threats.
Performed internal Incident Response promptly and addressed client concerns.
Configured WAF firewalls to protect against network attacks or unauthorized access.
Increased productivity by writing Runbooks and other documentation for security operations.
SIEM Tools: Security Hub, Sentinel, Crowdstrike, Zscaler, Sentinel One, Sumo Logic, Code42, Google Workspace., Gem, Wiz
Sr. Security Engineer
2nd Watch – Managed Service Provider 2021 – 2023 / Laid Off
A consultant working with numerous clients securing cloud environments: AWS, Azure, GCP.
Designed, implemented, and maintained SIEM tools, with recommendations.
Performed code reviews to identify and address potential security vulnerabilities.
Automated reporting, alerting, monitoring, and resource deployment.
Tuned, monitored, and investigated alerts of unauthorized access and other potential threats.
Responded promptly to incidents, alerts, and client concerns by following established protocols.
Conducted penetration testing to simulate real-world cyber attacks and assess current security.
Configured WAF firewalls to protect against network attacks or unauthorized access.
Provided guidance and applied Agile and DevOps/DevSecOps practices for reliable operations.
SIEM and SOAR Tools: Splunk Enterprise Security, Alert Logic, Fortra, Armor, Security Hub, Sentinel, Defender, Trend Micro
Sr. Security Engineer
CrossBorder Solutions – FinTech SaaS 2020 – 2021 / Laid Off
Led incident response efforts to quickly mitigate security breaches and minimize impact.
Designed and implemented robust security architecture to protect sensitive data and systems.
Ensured compliance with cloud security standards and regulations through regular audits.
Conducted security risk assessments, vulnerability scans, and recommended mitigation strategies.
Implemented network security measures to prevent unauthorized access and data breaches.
Internal auditor for SOC 2 and ISO 270001 compliance.
Supported static and dynamic application security scans with Veracode and Burp Suite.
Used python and terraform to maintain IaC, create and maintain fully automated processes.
Security Analyst
Hays Consulting – Healthcare 2020 – 2020 / Contract Ended
Used Splunk Enterprise Security to investigate incidents and alerts on endpoints and networks.
Managed proxies, firewalls, access management, encryption keys, SIEM, EDR, DLP, SOAR tools.
Implemented and managed various security tools to protect and monitor network infrastructure.
Performed risk assessments to identify and address potential security threats.
Led incident response efforts to contain and mitigate security breaches.
Conducted in-depth cybersecurity analysis to detect and prevent security incidents.
Ensured security policy compliance across all departments within the organization.
Conducted vulnerability assessments to identify and resolve potential weaknesses in the system.
Security Analyst
Taylor Morrison – FinTech SaaS / Real-estate 2017 – 2019 / Laid Off
Supported internal users with the FinTech Saas, collaborated with developers on fixes.
Reviewed security alerts and incidents to triage the initial findings and escalate as needed.
Used Splunk Enterprise Security to build dashboards, queries, and parse logs.
Troubleshooting: printers, firewalls, networks, Microsoft Virtual Servers, access management
EDUCATION
College: Saint Leo University
Degree: M.S., Cybersecurity – 2016
Contact this candidate