Security Engineer Operations
Resume:
BEN HADDOCK
South Jordan UT
***********@*****.*** / 801-***-****
WWW: linkedin.com/in/ben-haddock-security-engineer PERSONAL SUMMARY
Experienced Security Engineer with over 10 years of expertise in AWS security, system administration, and security operations. Adept at conducting security audits, implementing security measures, and driving compliance in cloud-based and on-premise environments. Proficient in AWS security tools
(IAM, GuardDuty, Inspector), vulnerability scanning, disaster recovery, and automation. Demonstrated success in maintaining ISO27001 certification and enhancing security posture through continuous monitoring and training. Skilled in scripting (Python, Bash), automation (Chef, SaltStack), and developing secure CI/CD pipelines. Certified in AWS Solutions Architect, Security+, Linux+, Network+, and Cisco CCNA, with a strong background in DevOps and cloud infrastructure management.
SKILLS
Security Auditing & Compliance (ISO27001, CIS AWS) AWS Security Engineering & Cloud Security (AWS, Azure) SIEM Implementation & Management (Splunk)
Vulnerability Scanning & Penetration Testing (AWS Inspector, Rapid7)
Incident Response & Remediation
Disaster Recovery & Backup Systems (Bash, CloudFormation) Automation & Infrastructure Management (Chef, SaltStack, Terraform)
Security Training & Awareness
Scripting (Bash, Python)
CI/CD Security & Pipeline Integration (Jenkins, TeamCity) Security Documentation & Policy Development
Network Security & System Administration (Linux, Windows) EXPERIENCE
AWS Security Engineer / Solarwinds - Herriman, UT 07/2021 - 12/2024 Conducted AWS security audits, developed compliance documentation, and evaluated CSPM tools like Orca and Wiz. Reduced high-severity risks and delivered KPI reports to leadership.
AWS Security Audits: Conducted audits on AWS assets, established baselines, applied standards, and reported gaps to relevant teams. Policy & Documentation: Collaborated with GRC to develop and maintain security documentation and compliance procedures. Compliance Assessment: Used CIS AWS Foundations Benchmark v1.4 in SecurityHub to monitor and measure compliance. CSPM Evaluation: Evaluated tools like Orca, Wiz, and Tenable to enhance cloud security posture. Risk Metrics & Mitigation: Delivered KPI reports to leadership and reduced critical AWS alerts using native tools and Orca. Senior Security Operations Engineer / Sharpr/Dynata - Salt Lake City, Ut 08/2018 - 07/2021 AWS Security Oversight: Managed and audited AWS assets to ensure data integrity and regulatory compliance. Employee Cybersecurity Training: Delivered monthly training sessions to reinforce cybersecurity principles and best practices. SIEM Implementation & Monitoring: Deployed Splunk SIEM and enhanced monitoring with Bash scripts for improved threat detection. Infrastructure Hardening: Addressed vulnerabilities identified through penetration tests and AWS Inspector to secure systems. Secure CI/CD Integration: Led Jenkins CI/CD implementation to embed security checks aligned with OWASP standards. External Systems Administrator / Control4 - Draper, UT 02/2014 - 06/2018 AWS Migration & Automation: Led migration of on-prem VMWare systems to AWS EC2; implemented automated deployments using CloudFormation, Chef, and CodeCommit for CI/CD efficiency. Atlassian Systems Integration: Migrated Wiki and Bugzilla platforms to Confluence and Jira; recognized as the in-house Atlassian expert for implementation and support.
Disaster Recovery & Scripting: Developed Bash scripts for system backups and recovery, deploying them across multiple servers to enhance data protection.
Monitoring & Performance Tools: Utilized Datadog, LogicMonitor, Splunk, and NewRelic to monitor infrastructure, ensuring consistent SLA compliance.
Cross-Functional Collaboration: Created internal tools using Apache, PHP, and Bash; supported development teams with TeamCity BH
integration and security alignment; partnered across departments to define and deliver cloud resource needs. EDUCATION CERTIFICATION PROFESSIONAL DEVELOPMENT Cybersecurity Boot Camp: Cybersecurity domains such as Kali Linux, Metasploit, Splunk and readiness for Security University of Utah - Salt Lake City, Ut
Rigorous 24-week boot camp
CERTIFICATIONS
AWS Certified Solutions Architect
CompTIA Security+
CompTIA Network+
CompTIA Linux+
Cisco CCNA
PROJECTS
ISO27001 Certification Implementation
Developed policies to meet ISO27001 standards and trained employees on compliance. Coordinated third-party evaluations and penetration testing for ISO27001 adherence. Used Splunk and AWS to maintain up-to-date SIEM reports and monitor compliance. Server OS Updates and Maintenance
Upgraded Linux servers to Ubuntu 20.04.1 for security and performance. Created upgrade paths and tested systems to ensure smooth production deployment. Automated server updates and code deployment using AWS Auto-scaling, Python, and SaltStack.
Contact this candidate