Cyber Security

WILLIAM J. LOWDERMILK

805-***-**** *******.*.**********@*****.*** linkedin.com/in/william-lowdermilk/ PROFESSIONAL PROFILE

Senior Cybersecurity Engineer and retired Army Chief Warrant Officer 2, recognized as a CompTIA Subject Matter Expert for CySA+ certification development. Expert in incident response, threat hunting, and SIEM automation with Splunk and NetWitness, leveraging Python and PowerShell for scalable detection and response. Designed and deployed multi-layered cyber range environments on PCTE with VMware and Kubernetes, automating deployments to enhance operational resilience. TECHNICAL ECOSYSTEM

• Security Operations: SIEM Rule Development, Incident Response, Threat Hunting, Vulnerability Mitigation, SOAR & SIEM, Operational Metrics Reporting, OWASP, SANS GIAC Certifications

• Security Technologies: FireEye, NetWitness, Symantec DLP, Power BI, Jira, Confluence, Web Security, Cloud Security

• Infrastructure & Networking: VMware, Foundational Kubernetes (Pods/Containers), Hyper-V, KVM, Firewalls, IDS/IPS-

, Networking

• Scripting & OS: Python, PowerShell, Beginning Markdown, Linux, Windows Administration PROFESSIONAL EXPERIENCE

Bylight LLC

Senior Cyber Range SME Remote · Oct 2023 - Present

• Architect cyber training environments on the PCTE platform using VMware to replicate enterprise network topologies, enabling trainees to practice real-world scenarios

• Facilitated deployment of secure, containerized workloads within Kubernetes environments to support training exercises, integrating cloud security best practices.

• Developed technical guides and system documentation utilizing Markdown to ensure standardized team communication and incorporate OWASP secure development practices.

• Engineered automated infrastructure deployments utilizing Python and PowerShell for system configuration and integration with SOAR & SIEM platforms to streamline incident response workflows. Helms Point

Cyber Operations Planner Augusta, GA · Mar 2023 - Oct 2023

• Orchestrated threat mitigation strategies across Army-facing devices to significantly reduce vulnerability exposure.

• Managed real-time Power BI dashboards to provide executive-level situational awareness of infrastructure health and support operational metrics reporting.

• Directed continuous enumeration of IT assets and host-based detections within SIEM to identify anomalies and maintain environment integrity.

PCTE Content Developer Augusta, GA · Mar 2022 - Apr 2023

• Author training objectives and learning outcomes, using Markdown to create clear, structured scenario documentation that improves trainee comprehension

• Integrated adversary TTPs and custom exploits into training environments to simulate realistic cyber warfare conditions.

• Managed a library of virtual machine images and network configurations for Joint-force training exercises. Credence LLC

Persistent Cyber Training Environment Analyst Augusta, GA · Jul 2020 - Mar 2022

•Advised on Cyber Range and Mission Command (MC) training requirements to influence future force doctrine.

•Synthesized inputs from across the Joint forces to develop standardized training methodologies for cyber operations. Unisys

Cyber Security Analyst Augusta, GA · Oct 2019 - May 2020

• Optimize SIEM detection by developing custom Python rules on Splunk that reduce false positives and improve anomaly detection efficiency

• Managed enterprise security infrastructure, including firewalls, IDS/IPS, and VPN Concentrators.

• Led incident response investigations utilizing FireEye and advanced security analytics suites. Amazon

Senior Security Engineer Seattle, WA · Jan 2019 - May 2019

• Identified critical vulnerabilities and potential data exfiltration vectors, maintaining a 95% patching rate across developer environments.

• Manage real-time security events in the proprietary ticketing system, leveraging SIEM alerts and Linux analysis, while participating in a 24/7 on-call rotation, which reduces mean time to detection

• Produced actionable threat intelligence reports for the AWS Information Security team. NSS-Plus

Senior Incident Response Analyst Smyrna, GA · May 2018 - Dec 2018

• Execute daily Cyber Incident Response Team (CIRT) operations using NetWitness, IDS/IPS alerts, and PowerShell scripts on Linux systems, and manage SOC workflows, resulting in faster incident containment and improved detection response

• Mentored a team of 5 cyber specialists, improving team technical efficiency by 10%. United States Army Reserves

Cyber Operation Technician (170A) / Retired Chief Warrant Officer 2 1995 - 2020

• Led crisis response for high-priority cyber events, using NetWitness and SIEM rule development to identify and contain tactical and strategic threats, resulting in successful containment and restoration of operations

• Managed the execution of advanced cyber techniques, including custom scripting and deep network analysis. EDUCATION

University of Phoenix

Master of Business Administration

University of Phoenix

Bachelor of Science, Information Technology

Maric College

Associate of Science, Information Technology

PROFESSIONAL CERTIFICATIONS

•CompTIA Certified Subject Matter Expert (CySA+ Ver 3): Industry Authority

•VMware VCTA–DCV, CASP, GSEC, CEH V7, Network Defense Architect: Cyber & Infrastructure

•Azure Fundamentals, AWS Cloud Practitioner, ITIL, Security+, Network+, A+: Cloud & Foundation

Contact this candidate