Header Symbol

DevSecOps Candidate

Dev Sec Ops

Summary

Enthusiastic, established IT professional with over 15 years Network, Systems, Multi-Cloud and technology leadership experience in the Enterprise, Financial Services Technology ISP / MSP and Cybersecurity spaces. My strengths and interests include creating a generative culture to nurture innovation; simple, elegant design; reliable automation and data driven decision making which

has assisted in the creation of a proven track record in identifying, driving and delivering solutions to improve customer experience and retention, increasing service relia bility and improving operational and cost efficiencies, such as:

  • Design and build of a new DevSecOps function within the industries most complete pure-play security services provider
  • Definition and measurement of reliability targets for production Cloud Web Application Firewall services
  • Redesign of a companywide Root Cause Analysis initiative to introduce and drive process maturity in a Saas subsidiary, growing from startup roots • Design and implementation of a plug-and-play, on-prem Saas pod for government entities
  • Design and implementation of a Google Cloud Platform (GCP) and Arista hybrid cloud platform
  • Managed Service Provider global firewall migration from Checkpoint to Fortinet
  • Futures and Options Exchange global switching infrastructure upgrade / refresh of Cisco active network devices
  • Stock Exchange global IP Address Management (IPAM) platform migration from QIP to Infoblox
  • Design & implementation of a Windows Server 2008 hosting platform
  • Installation of the largest HP demo-centre in Ireland (Circa 2006)

 

I have a strong interest in facilitating the growth of an organisation who wish to leverage the power of microservices, best-of-breed, secure multi / hybrid cloud services deployment and best practice architecture to use innovative ideas to increase their customer base and revenue.

 

Specialities

Cloud Native Architecture I Migrations: AWS I GCP I Vault I Consul Orchestration I DSC: Terraform I Ansible I Salt

CI I CD: Jenkins I Rundeck I Git

Dev I Scripting: Python I Go I PowerShell

Containers I Orchestration: Docker I k8s I Nomad

OS I Web: Windows Server I Linux I NGINX I Apache I IIS I Flask

Virtualisation: VMware ICitrix I Hyper-V I Vagrant

Database: MSSQL I MySQL I PostgreSQL

Monitoring:  Prometheus I Zabbix  I Nagios I MRTG I Cacti

Network: Cisco I Juniper I Arista - WAN I Datacenter Routing & Switching

IPAM: VitalQIP  I Infoblox

Load-balancing:  F5  I NetScaler Collaboration: IronPort  I MS Exchange  Traffic shaping:  NetEnforcer  I  PacketShaper

Security: Threat & Vuln Mgt I GRC  I Pen-test I Checkpoint  I Cisco ASA  I Juniper

Storage: HP I LeftHand

Server Hardware:  HP I IBM I Dell

 

Employment

April 2019 - Present Date

DevSecOps Tech Lead

Technical sponsor and designer for Impervas DevSecOps initiative. Proponent of the 'Shi Le' initiative to increase reliability via improved code quality and enhance feature release velocity. Automation of CI Pipeline security testing.

Infrastructure observability improvements with Tenable, PrismaCloud / Twistlock & LightSpin. Update & patching automation. Threat & vulnerability management. Selection of and education for SAST (Coverity), DAST, (Gauntlet & Burpsuite) and SCA (Blackduck) tooling. Primary liaison between DevOps team and Product Development / InfoSec / Customer Success for security issues. Incident response. Contribution to white papers and RFPs. Inaugural member of the Imperva Security Champions group. Inaugural member of the Imperva  D, E & ICouncil.

DevOps Engineer

Focal point for multiple teams DevOps related functions. CI / CD / CR with SVN, GitLab, Jenkins, Artifactory, AWS, Vault, Terraform, SaltStack, k8s, Kafka, etc. Definition and documentation of SLOs for Cloud WAF Saas platfoms. Incident & Problem management consultancy. Inaugural member of the Imperva  D, E & ICouncil.

SRE

Advocate for SRE principles and DevOps philosophy. Design and implementation of AWS and PoP monitoring for scale and reliability. Capacity planning for  PoPs and L7 services.  Design & implementation of companywide Incident Mgmt & RCA processes. Mentoring and training for the same. Assistance in the maintenance of, and writing modules for a Python batch processing framework. Assistance in the maintenance and deployment of an internal monitoring tool written using JavaScript and YAML. Using OOP and Clean Architecture principles to create glue utilities for ETL tasks such as parsing IaC JSON files to generate and maintain Pingdom checks or populate DCIM / !PAM platforms via concurrent REST API calls. Utilising Terraform Desired State Configuration while following the pillars of the AWS

Well-Architected framework to build and deploy fault-tolerant application monitoring architectures utilising ThousandEyes, CatchPoint and Blackbox Exporter containers on ECS to target on-prem installations and CloudWatch for AWS telemetry. Participation in trade shows and coordination of industry meet-up groups  and social  events. Inaugural  member of the Imperva D, E & I Council.

 

 

October 2017 - March 2019

Cloud Network Architect

Design and implementation of a hybrid cloud (GCP & Arista) platform for the automated deployment of S4/HANA in a politically sensitive environment.

Design of new Cloud-ready DC architecture to accommodate multiple Lines of business and a multi-cloud (AWS, GCP, Azure & Alibaba) strategy. Regional primary network resource for infrastructure projects, technical documentation, vendor management, peer training & staffing duties. Writing Python scripts for AWS Route53 zone creation and maintenance, DCIM / !PAM platform population and in conjunction with JINJA2 templates for Arista CloudVision configuration management. Proposal of a CI / CD pipeline for Enterprise Architecture planning and documentation using Bitbucket & Jenkins with a basic Flask CMS.

 

November 2015 - October 2017

Senior Network Engineer

R&D / engineering of public cloud (AWS & GCP), Datacenter, WAN, Co-Lo & corporate environments for Financial services MSP. Configuration & support of Arista & Cisco switches. Fortinet & Checkpoint firewalls. Providing technical leadership for Network Support staff globally. Principal Engineer for global firewall migration, network automation / DevOps initiative and bringing analytics / visibility into the global WAN with enhanced monitoring platforms. Regional primary resource for projects, technical documentation, vendor management and recruitment duties. Planning and deployment of customer AWS VPCs, VPN GWs and associated SGs. Python scripting for network device snapshots, diffs and config deployment. Participated in the SOC2 certification process for Options IT infrastructure. Security Incident response.

 

December 2012 - November 2015

Lead Network Engineer

Design & engineering of Datacenter, WAN & corporate environments. Configuration & support of Cisco, Juniper & Arista routers / switches. F5 load balancers. Cisco, Checkpoint & Juniper firewalls. Providing technical leadership to and being an escalation point for Network Operations & Network Support staff outside the domestic US. Principal Engineer for Infoblox !PAM platform,  UK / Singapore NextGen environments & scripting / automation initiative.

Provisioning  & facilitating  Global  internet connectivity.  Primary Global  Regional Internet Registry  (RIR) contact.  Utilisation of Corvi I / Netscout / Simena monitoring  platforms.  Regional  primary  resource  for  projects, technical documentation,  industry  events  & staffing  duties.  Python  scripting  for  DDI rollout and maintenance with Infoblox. Member of the Next-Gen architecture & BCP tech teams ensuring network designs met defined standards and quarterly failover tests met RTO & RPO to ensure SOC2 compliance. SOX compliant environment. Security Incident response.

 

February 2012 - December 2012

Network Support Analyst

Managing, monitoring & maintaining Juniper, ForcelO, Cisco network infrastructure, Radware load balancers & Juniper & Checkpoint firewalls across the global Secure Financial Transactions Infrastructure (SFTI) & multiple PoPs. SME for DNS, DHCP & !PAM platforms and Corvil Latency Management platforms. Shift leader responsible for handling escalations, governance & Duty Manager role in the event of a SFTI outage. ITIL Process / Change / Incident / Asset management. Network / protocol analysis. Liaising with vendors. SOC2 & SOX compliant environment.

 

June 2010 - February 2012

Windows/Systems Support Engineer

Enterprise Administrator solely responsible for the design & implementation of a new EU Infoblox DDI (DNS/DHCP/I PAM) platform. Also responsible for the

installation, configuration & maintenance of European DNS Services (Microso, VitalQIP), Microsoft platforms (Windows Server 2000, Windows Server 2003, Windows Server 2008, AD DS, Terminal Services, File & Print Services, SCOM, SCCM, WDS & WSUS) & maintenance of HP servers (Hardware updates, breakfix & SIM). Tech lead for VitalQIP to Infoblox migration. VBScript / WSH and Perl scripting for OS management, monitoring and DNS synchronisation between disparate platforms (Infoblox, QIP & Windows Server). SOC2 & SOX compliant environment.

 

October 2007 - April 2010

Infrastructure Engineer

ISP Hosting Centre Microsoft Specialist in IIS, Active Directory and Systems Management. Responsible for rolling out new projects including the early adoption of Windows Server 2008, IIS 7 virtual hosting & hosted Exchange 2010. Lead the conceptualisation, design and implementation for a companywide virtualisation project utilising Virtual Iron Enterprise Edition and subsequent migration to Citrix XenServer when Oracle acquired and retired the Virtual Iron product. My day to day duties included maintaining the UTV

Internet server room, Windows based LAN/WAN, IP traffic shaping, installing/managing SQL Server and offering co-lo Network Services. During my time in UTVi, Ialso assumed the responsibility for the maintenance & configuration of our core network infrastructure comprising redundant 6500s with Sup720s & Firewall Service Modules and assisted in the design & deployment of a new DSL PoP at LINX. Bash, Perl and WSH VbScripting administration tasks. Contributed to IS027001 compliance application.

 

December 2006 - October 2007

Network Operations Centre Engineer

NOC Engineer providing managed services to SMEs on behalf of Redstone Technology's Professional Services. Responsibilities included Proactive monitoring of clients' networks, hardware break fix, intermediate software support, AV updates, Remote Support/Troubleshooting, User / Mail Account Management, Patch Management, DR site replication verification, reporting and analysis. Pre-sales Technical Consultancy for HP servers and storage: providing technology demos and presentations for potential customers aer building one of the largest HP demo centers in Ireland. Planning, implementation and testing of a major domain and Exchange 2003 to Exchange 2007 migration project.

 

March 2006 - November 2006

Server Specialist

Server product specialist support for PowerEdge, PowerVault and PowerConnect product lines. Responsible for hardware support and fault tolerance technologies. Liaising with engineers. Providing the very highest level of customer service in the marketplace. Providing phone based resolution for advanced server hardware issues (RAID, SCSI, TBU, and Intermittent Errors). Actively supporting the customer during the escalation process in all aspects through problem resolution by taking total ownership of all incident reports.

Engaging necessary support  staff to  resolve escalations  in as short a timeframe as possible.  Working  knowledge of:  Clustering,  storage  hardware  (including Fibre channel). Working knowledge of systems management

 

January 2004 - March 2006

MIS Application Specialist

Promoted through first, second and third level support roles as the final point of contact for 3000+ employees using Work Force Management System (WFMS):

a proprietary application utilising DB2 and Oracle databases, MS Exchange, MS Outlook, Client/Server C# .NET software, Wintel boxes and Service Power vendor software. Also served as the primary liaison between customers, the helpdesk and the product development team.

 

Professional Certifications

  • AWS Certified Cloud Practitioner
  • KT Byers Python / Ansible certification course
  • CCIE Routing & Switching (Written exam - 350-001)
  • CCNP TSHOOT (642-832 - CCNP certified)
  • Implementing and Maintaining Cisco Technologies Using IOS XR (IMTXR 644-906)
  • CCNP ROUTE (642-902)
  • Infoblox CICA (Certified Infoblox Core Administrator)
  • JNCIA (Juniper Certified Internet Associate)
  • CCNP SWITCH (642-813)
  • MCTS (70-501 Windows Server 2003 Hosting)
  • MCITP 2008 Server Administrator
  • MCSA 2003
  • CCNA (640-816)
  • CCENT (640-822)
  • Audinate Dante Audio Networking (Ll, L2 & L3)
  • HP Accredited Presales Professional in Enterprise Storage Solutions (HP APP-ESS)
  • Dell Certified Systems Expert (DCSE v8)

Request call back

Upload your CV

Contact us