Post Job Free
Sign in

Se Security Engineer & Security Architect

Location:
Marietta, GA
Posted:
June 04, 2026

Contact this candidate

Resume:

HENRY CASEIRO, CISSP, HISP, ITILv*

Certifications:

●Certified Information Systems Security Professional (CISSP)

●Holistic Information Security Practitioner (HISP) [ISO 17799, COSO, & COBIT] by eFortressess.com

●IT Infrastructure Library (ITIL) Foundations V2 & 3

●Microsoft Certified Systems Engineer (MCSE)

●Microsoft Certified Professional + Internet (MCP +I) Microsoft Certified Professional (MCP)

●Comptia SecAI+ AI Security Engineer Certification candidate in 2026

Security Experience Summary:

●Security Architecture (System Architect, SABSA,TOGAF) ● Application Security (Burp, Appscan, WebInspect,)● Audit Compliance-GRC *Cloud (AWS, Azure, Google Apps) ● Endpoint Defense Response-EDR (CrowdStrike,FireEye) ● Forensic Investigation (EnCase, Logicube, NTI+) ● Incident Response ●Digital Forensics ● Identity Access Management-IAM, PAM, MFA, SSO (Centrify, CyberArk), ● Network Security(Check Point, Palo Alto Networks, Fortigate) ● Pen Test Application, Networks, Systems ● Security Information Event Manager-SIEM (LogRhythm, McAfee,Splunk) ● Vulnerability Life-cycle Management (Rapid7,Tenable/Nessus, McAfee, Qualys)

PROFESSIONAL EXPERIENCE

Verinext/Arctiq 7/2025 to 5/2026

Managed Service Provider(MSP)

Sr Security Engineer

●Technical hands-on security lead for managed service Cybersecurity projects, including SentinelOne EDR Migration, with management to help desk non-security staff, with Training and increase security acumen for security training for issue resolution resolution. Moving security engineers to lead roles, created run books, policies and procedures

●Perform hands-on Security Engineering Administration with recommendations for the following tools:

●Arctic Wolf Managed Detection and Response (MDR)

●Atlasian/Confluence Documentation Systems

●CrowdStrike Falcon EndPoint Defense & Response (EDR) - Migration

●Cynomi Risk Tracker/Visio

●Jira - Ticketing System

●Lucidchart Diagram Maker

●SentinelOne AI-powered EndPoint Defense & Response (EDR)

●Sandbox File and Threat Intelligence verification project for improving SentinelOne EDR Behavioral Engine accuracy

●Trend Vision by Trend Micro

●Mentored Junior Security Analyst to proficient Security Engineer roles

●Identified Security deficiencies/gaps via risk assessments,and project to resolve issues

●Provided strategic planning for information security, regulatory compliance, audits and other areas

●Respond and discovered security incidents for clients, root cause analysis, provide security best practice recommendation for operational and customer success

Booz Allen Hamilton (Remote) 7/2023 to 4/2025

Sr Security Engineer/Security Architect

Client: National Institute of Health (7/2023 to 3/2025)

●Obtained a Public Trust Security Clearance to Perform a key role under the Health and Human Services (HHS) for the National Institute of Health (NIH)’s Center for Internet Technology (CIT)’s Security Operations Information Security Program (ISP). Performed various Security Engineering and Architecture functions

●Provided Technical design, implementation, deployment, and administrator assistance for key areas

●Provided hands-on technical administrative insulation, modification, and support for a 5-month extended pilot of a Cybersecurity Asset Attack Surface Management (CAASM) tool with asset visibility across source management digital assets with universal Collector Agents for unified information gathering.

●Performed Microsoft Azure Cloud administration and security work for the CAASM Project from the beginning to decommission.

●Provided and reviewed security findings for many tools and the CAASM tool as well as various supporting departments such as cloud, networking, infrastructure, and others and other agencies including SaaS Security Posture Management (SSPM).

●Preformed various security reviews including vendor security architecture viability determination, denoting deficiencies and compensating controls and other factors including various cloud applications working with FEDRAMP certification.

●Researched, reviewed, and provided insight into Artificial Intelligence (AI) policy, design, and long-term pilot of a commercial AI solution.

●First with the AI agent's unauthenticated external access.

●Then, it moved internally authenticated to develop nonproductive access.

●Provided advisement to AI Policy review of then President Biden's Executive Order on AI, NIST, FISMA impacts, and others.

●Review current Post-Quantum Cryptography (PQC) with safer Quantum resistant encryption for Y2Q or Q-Day for the day when current algorithms will be vulnerable to quantum computing attack. This is a stop-gap measure, better solutions will evolve as the market ramps up. Quantum Computing is enchantingly odd and awesome at the same time with such items of Multiverse/Parallel Dimensions functions then coupled with AI is a game changer.

CO-OP Financial (Remote) 1/2021 to 3/2023

Sr Security Engineer/Security Architect

●Work in active partnership with cross-functional architecture and technical teams along with management and executive leaders to achieve Secure Solutions through thought leadership and design ownership with a problem-resolution focus. Discovering security issues and working with the team until resolved or a plan is in place.

●Provide Security Consultation with implementation technical security expertise for projects while applying applicable policies and regulations and better practices of:

●Company Security Policies and Standards

●FFIEC ●NACHA (ACH) ●SOX

●PCI DSS and industry standards

●Regulations - US Federal and State

●Work with cross-functional teams Championing Security and Seeking Security Solutions to new opportunities. Apply strong attention to detail coupled with a high-level architecture view to long-range and tactical impacts.

●Perform Security Architecture governance reviews on High-Level Designs (HLD) on various technologies on-premises and in the in Cloud as well as Vendors SaaS offerings and designs. CO-OP serves Credit Unions via approval-based Enterprise Working Groups (EWG) of various technology.

●Apply the HLD and perform a Security Architecture governance review on the Low-Level Design (LLD) with approved designs and implementations as it moves toward production.

●Microsoft Cloud/Azure Enterprise Skills Initiatives (ESI) Trained

●AZ 900 - Microsoft Azure Fundamentals ● SC-900 Microsoft Security, Compliance, and Identity Fundamentals ● AZ- 104 Azure Administrator ● AZ-500 Microsoft Azure Security Technologies

●Utilize existing architectural solutions and tools for secure methodologies along with frameworks including SABSA and TOGAF to align or create new secure design patterns or services service standards that are compliant.

●Partner closely with Application Development and other groups to find Secure Solutions in existing or new technologies including Secure DevOps, Azure Cloud (IaaS, PaaS & SaaS) as well as vendor SaaS offerings.

●Perform hands-on Security Engineering in technical reviews and apply approved designs to various projects using for the following and other tools.

●F5 ASM WAF ● McAfee DLP ● Splunk

●Microsoft Azure Cloud designs and applications

●Rapid 7 IDR SIEM ● Rapid 7 Vulnerability Management

●Lead security initiatives, assessments, and efforts to drive security more effectively into operations with the adoption of new technologies, platforms, and tools. For example, lead a project for a Static Application Security Testing (SAST)/Interactive Application Security Testing (IAST) vendor replacement including vendor review and selection criteria, purchasing and presenting the design.

●Apply a high level and a long-term view coupled with strong analytical skills to ask key questions to discover potential security challenges in the design or applied solution. Participate on an on-call rotation basis to coverage of security issues as they arise.

●Am a self-motivated person with a “Can Do Attitude” to make things happen. Security is my career that I’m passionate about. Most of all feel very fortunate to work in a field that I love and can help others.

●Utilize Microsoft Visio and PowerPoint for design.

The Select Group (Contract & Remote) for Truist Bank 2/2020 to 12/2020

Security Solution Architecture

●Lead solution architecture design discussions, integration implementation, and evaluations while utilizing the Agile project methodology.

●Provided the leadership, guidance, direction, and alignment of security architecture, including the development and implementation of effective security administration processes for all platforms and environments including:

●AlgoSec Firewall Manager

●Checkpoint Next Generation Firewall (NGFW)

●CrowdStrike Falcon

●Firemon - Firewall Security Review & Monitoring

●Malware Information Sharing Platform (MISP)

●Palo Alto Cortex Xsoar (Demisto)

●Threat Connect

●Zscaler Cloud-Based Web Proxy +

●Defined security infrastructure requirements for complex systems and infrastructure development.

●Utilized my comprehensive experience and skill in Information Security (InfoSec) technology Defense-In-Depth principles and practices necessary to negotiate and persuade technology direction on security principals.

●Aptitude to understand and adapt to newer technologies and with a “Can Do Attitude” to make it happen.

●Perform Application Security Architectural relational design using:

●IBM Rational System Architect (SA)

●Microsoft Visio, PowerPoint, Excel, and Office Suite of tools

●RSA Archer GRC

●Slack Collaboration Hub team site

●Derived security infrastructure solution specifications from business requirements, and designed security solutions that support core organizational functions to assure Confidentiality, Integrity, and High Availability.

●Gained organizational commitment for security infrastructure systems and software plans,

●Defined and evaluated various security technologies based on business and infrastructure requirements and security policies, industry compliance regulation, and merger-related activities for complex systems and infrastructure development.

●Designed and oversaw the development and implementation of end-to-end integrated security infrastructure solutions.

●Provided integrated infrastructure-related technical expertise across the organization, from conceptualization and project planning to the post-implementation.

●Develop solution specifications, in compliance with corporate standards for architecture adherence and performance guidelines by working under limited supervision, with various internal Information Security, Line of Business (LOB) personnel, senior management, external vendors, and internal IT Services personnel including Enterprise Architects, Application & Data Services personnel and other IT Operations Services teams, to develop solution specifications, in compliance with corporate standards for architecture adherence and performance guidelines.

●Document existing solution architecture and technology portfolio; making recommendations for improvements.

●Developed, documented, and communicated needs for investing in infrastructure evolution, including analysis of cost reduction opportunities.

●Created and maintained a system security context and concept of operations and defined baseline system security requirements in accordance with applicable regulations and standards.

●Document reference architectures, patterns, templates, and roadmaps.

●Ensured security product lifecycles are managed proactively.

●Created/maintained domain-specific strategies aligned with business drivers and higher-level strategies.

●Performed security reviews, identified gaps in security architecture, and developed security risk management plans.

●Evaluated existing or emerging technologies to consider factors such as cost, security, compatibility, and usability.

●Applied knowledge of The Open Group Architecture Framework (TOGAF), including infrastructure, data, information security, applications, architectural concepts, and associated disciplines.

●Understood client service models and customer orientation in service delivery.

Apex Systems (Contract) for Carter’s Inc 9/2019 to 10/2019

Security Architecture and Engineer:

●Provided information Security Architecture subject-matter expertise leadership, providing advisory and consulting services to major projects and programs including Infrastructure Application, Networking, Infrastructure, and other areas advised on enterprise technical direction and leadership to resolve critical design or operational issues.

●Performed Architectural reviews with Application Architects (TOGAF), technical teams, and management working with architectural standards enterprise security reference architecture, standard templates, and design patterns matched to business requirements with frameworks such as SABSA.

●Lead solution architecture design discussions, integration, implementation, and evaluations

●Worked on key security technology initiatives:

●Centrify – Privileged Access Management (PAM)/Privilege Access Management Service (PAS)

●Data Loss Prevention (DLP), Multi-Factor Authentication (MFA)

●Single Sign On (SSO) - Okta for Office 365, Centrify PAS/PAM and other applications + Other SSO‘s

●Threat Response - Indicators of Compromise (IOC)

●Application Centric Data Loss Prevention (DLP)

●Achieved security architecture compliance with regulatory requirements, including Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI-DSS), General Data Protection Regulation (GDPR), Federal and State regulations plus others.

ExamWorks – Atlanta, GA 10/2018 to 9/2019

Sr. Security Engineer:

●Applied technical security knowledge along with customer-focused skills to meet company needs including but not limited to systems, network security, authentication, security protocols.

●Key security engineering project review and implementation focused on the design, review, implementation, monitoring systems, and ongoing production operations of:

●Tenable Security Center (SC) - Enterprise-wide vulnerability scanner, Netwrix Auditor - identifies structured/unstructured sensitive data or suspicious events.

●Network Data Loss Prevention (DLP) - engineering review of Data in Motion, Use and at Rest

●Windows and Linux based Appliance - CentOS, Debian, Fedora, RHEL, and others

●Security engineering focused on systems physical and virtual, network security, authentication and security protocols such as TLS, SSL with others an, cryptography PKI asymmetric and symmetric cryptography, and application security.

●Analyzed problems involving multiple interrelated causes, researching to apply complex concepts or methods toward a solution while working with Azure Cloud Services, Imperva Incapsula Cloud WAF, and others.

●Reviewed and responded to security operational systems events and troubleshooting to resolution for the following security technology:

●Genetec Physical Access badges and door access, Check Point Firewalls- security policies with URL Filtration and other Next Generation Firewall components, Cisco: AMP Antivirus (AV) & Trend Micro AV, IronPort Email Gateway, Stealth Watch, Umbrella, Microsoft: Active Directory (AD), Active Directory Federation Services (ADFS), Multi-Factor (MFA), McAfee SIEM and log analysis, Netwrix Auditor, Thycotic Enterprise Password Manager. Firmware Virtual desktops, servers, and infrastructure.

●Vulnerability Management:

●External scanners Tenable.io cloud

●internal scanners Tenable SC

●Tenable Core Nessus/Nessus Pro scanner

●Championing security within the Company and advocating for customer trust while applying the cornerstone security concepts of Confidentiality, Integrity, and Availability.

●Provided advice, training, and technical support for various projects as needed and working in a team-oriented environment.

●Compliance frameworks; SOX, SOC, HIPAA, ISO 27001, NIST, and Hitech

.

Arby's Restaurant Group – Atlanta, GA 04/2017 to 03/2018

Sr. Security Engineer:

●Implemented, Deployed and Administered Centrify Cloud Based Infrastructure Services Identity and Accesses Management (IAM) for Privileged Access Management (PAM/PAS) Infrastructure Administrators utilizing Multi-Factor Authentication (MFA) such methods of Cell text messages, RSA two factor and others with additional controls.

●Implemented, Deployed, and Administered as Operational Lead FireEye Administrator for FireEye including:

●FireEye: as a Service (FaaS), Central Manager (CM), Network Threat Prevention Platform (NX), Host/Endpoint Security (HX) and HX Advanced, Host Agent (Agent), Email Threat Prevention (ETP), Redline Incident Analysis,

●Some Experience with; FireEye Network Forensic Platform (PX), Reviewed FireEye Helix SIEM and the Next Generation CM.

●Linux based Appliance using CentOS, Debian, Fedora, RHEL, and others.

●Administered CrowdStrike cloud-based Falcon Endpoint protection in parallel with FireEye HX. Reviewed Okta SSO and Federated Services.

●Applied key insights on vendor security reviews, vendor selection, and security projects in such areas as:

●LogRhythm SIEM events-expanded threat reduction role-based Security Information and Event Management (SIEM), Secure DNS with Cisco Umbrella (Open DNS), and other areas

●Mentored Junior Security Engineers and assisted them in growing in security concepts and expanding to senior roles.

●Performed gap assessment with key findings with remediation and validation till resolved.

●Performed investigations on devices most successfully using the FireEye Incident Response Tool set, manual evidence gathering, and alerts.

●Championed and mentored Security with Application Security teams via OWASP and others.

●Assisted in Compliance efforts with evidence collection of technical controls, vulnerability scans, screenshots, and compliance tracking utilizing Citrix NetScaler Gateway to access PCI secured systems. Performed Vulnerability and security patching SCCM.

Modis (Contract) for First Data Corp – Marietta, GA 10/2016 to 01/2017

Sr. Security Engineer:

●Implemented, managed, and troubleshot Security solutions for First Data globally in the primary areas of; Intrusion Detection and Intrusion Prevention Services (IDS/IPS) including SourceFire, Checkpoint IPS, and Distributed/Denial of Service(D/DOS) via carrier-based solutions and HoneyNet passive detection tools including Attivo Networks to passively catch intrusions, examine, alert and integrate into SIEM and other technologies using Linux; Debian, CentOS, RHEL, Debian and Unix; HPUX and AIX Windows.

●Worked with Splunk Enterprise to provide key analysis and enhance detection capabilities.

●Mentored Junior Security Engineers and assisted them in growing in security concepts and expanding to senior roles.

●Managed and enhanced Dell Secure Works Managed Security Service Provider (MSSP) for a more accurate global asset inventory, proper monitoring of security event flows with actionable alerts.

CIOX Health – Alpharetta, GA 04/2016 to 10/2016

Sr. Security Engineer:

●Utilized Network Security Engineering Firewall technology including Fortigate, Palo Alto Networks, Juniper, and some Cisco ASA firewalls mainly using Linux, CentOS, Debian, and other Distros and Unix Open BSD. Performed Imperva WAF (Web Application Firewall) administration including Threat Radar, updating the site's profiles, certificates, and others. Performed network security scanning for open port analysis for WAF work.

●Primary role on the Firewall Security Configuration Manager product review from POC to implementation for FireMon Security Manager (FSM) appliances using CentOS Linux to monitor the enterprise firewall configuration changes, network traffic flows, efficiency to reduce security exposures; shadowed rules, complexity, log analysis, and others. Migrated and worked with the Tufin Firewall manager as well.

●Mentored Junior Security Engineers and assisted them in growing in security concepts and expanding to senior roles.

●Championing and mentoring Security with Application Security teams via OWASP and others for secure solutions.

ACI Worldwide Inc. – Norcross, GA 04/2014 to 04/2016

Sr. Security Analyst/Engineer:

●Performed Enterprise Root Cause security investigational technical analysis, delivering specific actionable remediation while responding to all information security incidents & forensic events.

●Lead projects on enterprise-wide Data Loss Prevention (DLP) review with a strong focused risk analysis of enhancing current solutions in accordance with regulations of PCI DSS, FFIEC, HIPAA, and others in accordance with the company's compliance framework.

●Performed administration on Imperva's Web Application Firewalls (WAF) appliances using Linux CentOS from server racking to all administration including site creation, certificate installation, traffic inspection, blocking mode.

●Worked on-call rotation for all security technologies such as IPS/IDS, WAF, Vormetric/Thales Encryption Appliances also running on Linux CentOS or a variant for server-based file and folder encryption, external penetration attempts, company-wide incidents and Google Cloud.

●Lead information security assessments to eliminate or minimize information security vulnerabilities.

●Mentored Junior Security Engineers and assisted them to grow in security concepts and to expand to senior roles.

●Worked closely with Applications Development (Dev Ops) teams on implementation and testing.

●Championed and mentored Security with Application Security teams via OWASP and others.

●Performed Internal Red Team / Pen Test / Vulnerability Scanning activities with “safer” tools while minimizing damage to wireless, systems, and others, including:

●Acunetix (Cloud-Externals) and Rapid 7 Network Vulnerability Scanner, Qualys Network Vulnerability Scanner Appliances, Burp Suite Pro/PortSwigger Web Application Scanner/Pent Tester

●Recommended and implemented changes to improve security policy utilizing knowledge of security technologies, security standards, and frameworks (e.g., ISO 27001/27002, PCI-DSS, PA-DSS, SABSA & TOGAF).

●Created an Enterprise-wide firewall technical security audit program focused on assessments of firewall rules and related vulnerabilities, with reviews of key routers and switches using various technical tools such as; Nipper Studio Firewall Audit/Static Analysis, Algosec, and Firemon firewall monitoring tools.

●Obtained a US Government Public Trust Security Clearance under the Company as an IRS Government Contractor for IRS Financial Data access.

* Additional Information available upon request

Education:

B.S. Degree in Business Administration, Specialization in Finance & Real Estate California State University, Northridge



Contact this candidate