Sierra Sage Soto
Gilbert, AZ
Security Engineer with over three years of experience ensuring data privacy and robust security infrastructures within cloud-native environments. Strong collaborator with refining security architectures to mitigate emerging threats, vulnerability management and compliance. At Wells Fargo, advanced controls were implemented, and comprehensive risk assessments were conducted while coordinating audit activities. Proficient in security automation, vulnerability scanning, and programming for tool integration, with expertise in modern cryptography and regulatory frameworks. Currently in pursuit: CompTIA Security+ and Certified Identity and Access Manager (CIAM) Skills & Technologies
Languages: Go, JavaScript, C#, TypeScript, FP, OOP Software Frameworks: ASP.NET Core MVC, React, React Native, Redux.js, Node.js Databases And Tools: TablePlus, PostgreSQL, SQL Server Services: Visual Studio, Visual Studio Code, Workday, GitKraken, JIRA, Okta, Active Directory Methodologies/Designs: SCRUM/Agile, Zero Trust, RBAC, Privacy by Design, Secure By Design Knowledge: SDLC, IAM, User Account Management, Data Governance & Risk Mangement, DaaS, iPaaS, SSO Security Expertise: Cloud security, Infrastructure Security, Vulnerability management, Product security architecture, Security testing, Infrastructure-as-Code, Security Assessments Work Experience
Wells Fargo Sep 2022 - May 2025
Security Engineer
• Ensured compliance with Wells Fargo's Data Privacy and Security policies for the Workday HRIS System using a Cloud-Native Architecture and secure by design principles.
• Conducted ad hoc risk assessments, including vulnerability management, auditing, and logging by analyzing system security policies and definitions.
• Determined data classification, user authorization, and managed user identity while applying product security architecture practices.
• Designed, configured, deployed, and managed integration security, domains, reports, and business policies within a multi- layered cloud environment.
• Implemented data encryption and access control based on modern cryptography principles and secure SDLC frameworks. Qwick Dec 2021 – Jun 2022
Full Stack Software Engineer
• Developed full-stack features within established API and web service patterns for business, user, and internal applications.
• Engineered new functionalities for Business Web and Mobile Applications as well as User Mobile Applications.
• Ensured cross-browser compatibility and adherence to accessibility standards in line with the team's coding guidelines. U-Haul International Nov 2020 – Mar 2021
POS Software Engineer
• As a QA analyst transitioning into a software engineer position, I specialized in Enterprise Sales Management, analyzed high- level user requirements and created tasks primarily focused on Back-End Development including RESTful APIs/Microservices/Database Management/Authentication, Authorization and test cases.
• Tested and Debugged new features and functionality that would include interface (UI) components, data models, business processes, product models, application logic that supports large-transaction enterprise quotes.
• Monitored program performance Continuous Integration/Continuous Deployment (CI/CD) after implementation to prevent the recurrence of operating problems and ensure efficiency.
+1-480-***-**** ******.*.****@*****.*** LinkedIn
Summary