Peter FAI
*.*********@*****.***
Missouri City, TX
Cloud security (architect & engineer) expert in threat modeling
AWS Certified Practitioner/Azure DP-300/Cyber Security
Professional Summary:
With 5+ years of experience and a proven track record as a result-driven Cloud Solutions Architect (AWS, AZURE, and GCP) and a seasoned Cloud Security Engineer, I have been designing, implementing, and managing highly scalable and secure cloud-based solutions. I am proficient in various AWS services, including EC2, S3, VPC, RDS, IAM, and more. I have a deep understanding of cloud architecture principles and best practices, and I am recognized for expertise in crafting comprehensive cloud security strategies to safeguard cloud environments and ensure compliance with industry standards such as ISO 27001 and NIST. My experience includes implementing cybersecurity controls, managing identity and access management (IAM), and conducting regular security risk assessments. I am skilled at translating business requirements into technical solutions, with a strong focus on threat detection and response. I am also a strong communicator and team player, and can work effectively with technical and non-technical stakeholders.
Professional Expertise (SKILLS):
Cloud Architecture Design and Implementation: Developed and deployed secure architecture for GCP, AWS, and Azure environments, ensuring alignment with industry best practices and security frameworks.
I have extensive experience managing AWS Identity Center (SSO), including creating and managing permission sets for users, roles, and resources while ensuring least privilege and compliance with security best practices.
Networking: Knowledge of AWS networking services and concepts, including VPC, subnets, route tables, security groups, and Direct Connect.
DevOps Practices, Experience with CI/CD pipelines, automation Tools (e.g., AWS Code Pipeline, Jenkins), and Infrastructure as Code (IaC) tools like CloudFormation or Terraform.
Monitoring and Logging: Proficiency in using AWS monitoring and logging services like CloudWatch, CloudTrail, and AWS Config.
Cybersecurity, Penetration testing & Forensic Tools: Social Engineering Toolkit (SET), Meterpreter, Armitage, Metasploit, Nessus, Acunetix, Burp Suite, OWASP-ZAP, Nmap, Recon-ng, Ettercap, OpenSSL, John the Ripper, X Hydra, SOAR, Brute Force, Email Security, Virtru, SAST, DAST, API Security, No name Akami, FTK Imager, AOEM, KAPE, EnCase, X-Ways, Cellebrite, Sumuri, Digital Forensics, Mobile Forensics, OSINT, Threat Hunting
Compliance and Governance: Demonstrated ability to navigate and implement compliance frameworks, including HIPAA, GDPR, and PCI DSS. Skilled in establishing governance models to enforce best practices.
Troubleshooting and Optimization: Expert troubleshooter with a focus on performance optimization. Proactively identify and resolve issues to ensure seamless cloud operations.
Automation and Process Improvement: Streamlined SOC operations by creating automation scripts and workflows, refining processes, enhancing tools, and mentoring analysts to strengthen incident detection and response capabilities.
Cloud Architecture: AWS CloudFormation, AWS CloudFormation Designer, AWS Service Catalog, AWS Marketplace, AWS Well-Architected Framework, CART, AWS ADS, Cloud Endure, AWS SMS, AWS DMS, AWS SCT, AWS Data Sync, AWS Security Hub, AWS Guard Duty, AWS Secret Manager, AWS Shield, VPC Flow Logs, Security Groups, NACLs
Cloud Migration: AWS Migration Hub, AWS Application Discovery Service, AWS Server Migration Service (SMS), AWS Data Migration Service (DMS), AWS Snowball, AWS Systems Manager, Lifecycle Manager, Autoscaling
Cloud Security: AWS Identity and Access Management (IAM), AWS CloudTrail, AWS CloudWatch, AWS Security Groups, AWS VPC Security Groups, AWS Key Management Service (KMS), AWS Inspector, Trusted Advisor, AWS Control Tower, AWS Single Sign-On, AWS Certificate Manager, AWS KMS, Compliance and Governance. Threat Detection and Incident Response, Security Automation,
Cloud Cost Management: AWS Budgets, AWS Cost Explorer, AWS Cost Allocation Tags, AWS CloudTrail, AWS Config, AWS Savings Plans, CloudFront, AWS Transit Gateway, VPC Endpoint, S3, EC2, EKS, ELB, ACM, RDS, Landing Zone
Cloud Automation and DevOps: AWS Code Pipeline, AWS Code Build, AWS Code Deploy, AWS CloudFormation, AWS CLI, AWS SDKs, AWS Code Deploy, Terraform, AWS CLI, Docker, Kubernetes, AWS Cloud Watch, AWS SNS.
Cloud Networking and Infrastructure: AWS Virtual Private Cloud (VPC), Amazon Virtual Private Cloud (VPC) peering, AWS Transit Gateway, AWS Direct Connect, AWS Route 53, AWS Application Load Balancer (ALB), AWS Network Load Balancer (NLB)
Cloud Application Development and Deployment: AWS Lambda, AWS API Gateway, AWS Amplify, Serverless Framework, Docker, Kubernetes
Communication & Collaboration: Visual Studio Code, IntelliJ IDEA, Git, GitHub
Programming Language: JSON, YAML, Linux Servers
Education:
Bachelor’s degree in IT, Computer Science, Information Technology from Redeemer University, Greenville, Texas, 2022
Associate Degree in Computer Systems Networking.
PROFESSIONAL EXPERIENCE:
JPMorgan Chase
CLOUD SECURITY ENGINEER
Jun 2023 to Present
Role and Responsibilities:
Security Architecture & Compliance: I have designed and implemented secure AWS architectures, ensuring compliance with industry frameworks such as NIST, CIS, SOC 2, and ISO 27001. I have enforced security controls across AWS environments, aligning with regulatory requirements such as PCI-DSS and HIPAA.
Threat Model Development, Security Risk Assessment: Develop and maintain threat models for cloud environments (AWS, Azure, GCP) using the MITRE ATT&CK framework to identify potential attack vectors and risks specific to cloud infrastructure.
Designs and implements security automation, determines requirements, specifications, and designs of cybersecurity solutions, and assists in major system security enhancements.
Implementation of Security Controls: Based on findings from threat models, recommend and implement cloud security controls to mitigate identified risks and enhance the overall security posture.
Threat Detection & Incident Response – I have integrated AWS security services with SIEM solutions like Splunk, enabling real-time threat detection and incident response. I have investigated security incidents, conducted forensic analysis, and led remediation efforts to mitigate threats in cloud environments.
IAM & Zero Trust Security: I have designed and enforced least privilege access controls in AWS using IAM roles, policies, and AWS Organizations SCPs. I have implemented multi-factor authentication (MFA), RBAC, and Zero Trust security models to enhance identity and access management.
Managed and configured Azure AD, leveraging Conditional Access policies and Entra ID Government Platform for enhanced security and compliance in government environments.
Implemented and maintained Role-Based Access Control (RBAC) to ensure appropriate access management and governance across cloud resources.
Remediated security-related vulnerabilities across collaboration workloads, proactively addressing potential risks and ensuring the integrity of cloud-based services.
Empower personnel with essential cybersecurity knowledge and skills through cybersecurity awareness training sessions tailored to their roles and responsibilities.
Collaborate with Security Teams: Work closely with SOC, DevOps, and cloud engineering teams to ensure that threat models are effectively integrated into cloud security monitoring and incident response workflows.
DevSecOps & CI/CD Security: I have embedded security controls into CI/CD pipelines, ensuring secure code deployments using AWS Code Pipeline, GitHub Actions, and container security tools for EKS and ECS. I have worked closely with DevOps teams to integrate security into cloud-native application development.
Cloud Security Operations: I have hands-on experience managing AWS security services, including AWS IAM, Guard Duty, Security Hub, Macie, AWS WAF, and KMS. I have monitored security events, enforced security policies, and conducted security posture assessments across AWS environments.
Security Audits and Compliance: Support security audits by providing insights from threat models and ensuring cloud environments meet compliance requirements such as CIS Benchmarks, ISO 27001, and GDPR.
Infrastructure Security & Automation: I have implemented security best practices in Infrastructure as Code (IaC) using Terraform and AWS CloudFormation, ensuring consistent security controls across cloud deployments
Automation of Threat Detection: Develop and automate threat detection rules and alerts within cloud environments by mapping cloud logs and telemetry data to ATT&CK techniques.
Documentation and Reporting: Create detailed documentation of threat models, security controls, and mitigation strategies, presenting them to leadership for risk management and security investment decisions.
Responded promptly to customer requests related to cybersecurity issues, providing solutions and recommendations for risk mitigation.
Application Security (AppSec). Vulnerability Management: Identifying and addressing security risks through threat modeling, secure coding, and testing methods (SAST, DAST, pentesting).
Cogent Infotech
CLOUD SECURITY ENGINEER
Oct 2022 to Jun 2023
Role and Responsibilities:
Cloud Security Architecture Design and Proof of Concept Implementations. I designed and implemented secure cloud architectures, incorporating best practices in identity and access management (IAM), encryption, and network security to protect sensitive data and ensure robust cloud environments. I developed proof-of-concept implementations to validate architectural decisions, evaluate the functionality of new cloud services, and demonstrate proposed solutions to stakeholders.
Identity and Access Management (IAM): I established and maintained IAM policies, enforced the principle of least privilege, and implemented multi-factor authentication (MFA) and single sign-on (SSO) solutions to strengthen access controls.
Security Operations Center (SOC) Leadership: Established and efficiently managed a Security Operations Center (SOC) to strengthen overall cybersecurity posture. Collaborated with cross-functional teams to enhance security operations and incident response strategies.
Data Encryption and Network Security: I implemented end-to-end encryption strategies using services like AWS Key Management Service (KMS) and Azure Key Vault to secure data at rest, in transit, and during processing. Additionally, I configured security groups, network ACLs, and Virtual Private Clouds (VPCs) to enforce secure network architectures. Incident Response and Vulnerability Management: I led incident response efforts, developed and tested incident response plans, and conducted forensic analyses to identify root causes of incidents. I also established a vulnerability management program, performed regular scans, and collaborated with teams to remediate identified vulnerabilities.
Security Compliance and Automation: I ensured compliance with industry standards and regulations such as GDPR, HIPAA, and PCI DSS through audits and control implementations. Additionally, I developed security automation scripts to enforce policies, monitor events, and integrate security checks into CI/CD pipelines.
Threat Intelligence and Continuous Monitoring: I stayed updated on the latest cybersecurity threats, incorporated threat intelligence into strategies, and implemented threat detection mechanisms. I deployed continuous monitoring solutions using SIEM tools and log analysis to detect and respond to security events in real-time.
L&T
CLOUD ENGINEER
Feb 2020 to Oct 2022
Responsibilities:
Collaborated with cross-functional teams to design, implement, and manage cloud infrastructure solutions, leveraging AWS, Azure, and Google Cloud Platform.
Developed and maintained automation scripts using Python, Bash, and PowerShell, enhancing operational efficiency and streamlining processes.
Implemented infrastructure-as-code using Terraform, CloudFormation, and Azure Resource Manager, ensuring consistent and repeatable deployments across environments.
Orchestrated containerization technologies like Docker and Kubernetes, facilitating efficient application deployment and management.
Collaboration Worked closely with Microsoft security researchers and utilized a suite of Microsoft security products such as Office 365 Security, MCAS, WDATP, ATP, MDI, and Research Studio to enhance cybersecurity measures.
Ensured the security and integrity of cloud infrastructure by implementing networking concepts, including VPNs, load balancers, and firewalls.
Collaborated closely with teams to establish and enforce monitoring and logging practices, ensuring system performance and availability met organizational standards.
Proactively troubleshooted and resolved issues to maintain optimal system functionality, minimizing downtime and disruptions.
Enhanced cybersecurity capabilities by gaining experience in log management and Wi-Fi penetration testing. Applied security best practices to ensure continuous monitoring and quick detection of potential vulnerabilities.
Developed automation scripts using Python, Bash, and PowerShell to streamline processes and enhance operational efficiency.
Designed and implemented robust networking solutions, including VPNs, load balancers, and firewalls to ensure secure cloud environments.
TDCJ, Texas
CLOUD SOLUTIONS ARCHITECT
Aug 2018 to Feb 2020
Responsibilities:
Led the design and architecture of 20+ AWS cloud solutions, ensuring they met performance, security, and scalability requirements.
Reduced infrastructure costs by 15% through the optimization of AWS services and resources.
Established and maintained robust security controls, resulting in zero security breaches during the 2.5 years in the role.
Developed and executed migration strategies for 10+ applications, minimizing downtime and achieving a 30% reduction in operational costs.
Led third-party risk assessments, providing detailed security evaluations and recommending improvements for vendor management processes within NYC OTI's cybersecurity framework.
Implemented AWS Cost Explorer and budget alerts, leading to a 20% reduction in monthly cloud expenditure.
Engage with clients through various channels, including meetings, emails, and phone calls, to understand their needs and concerns, providing tailored solutions and support. Ensure timely and effective communication with customers, addressing inquiries and feedback promptly, and striving to exceed expectations by delivering exceptional service with empathy and professionalism.
Gather customer feedback to identify areas for improvement, collaborating with internal teams to enhance products, services, and processes based on client insights, ultimately fostering strong relationships and driving customer satisfaction.
Automated infrastructure scaling with AWS Lambda and CloudWatch, improving application performance during traffic spikes.
Achieved a disaster recovery RTO of 2 hours and an RPO of 15 minutes, ensuring data integrity and availability.
Configured AWS Transit Gateway to optimize network performance, resulting in a 25% reduction in latency for inter-VPC communication.
Deployed Amazon Route 53 for global load balancing, enhancing web service availability and resilience.
Before 2018, I was involved with other jobs while studying Cloud Computing and working on my certifications.