Antonio Leon
Senior DevSecOps Engineer
Seattle,WA
Summary
Experienced, confident, security-focused and data driven Senior DevSecOps Engineer certified in Machine Learning and Solution Architecture through Amazon and Security Engineering with Advanced Digital Forensics & Threat through SANS. Skilled at integrating into a team's needs and maintaining scalable, reliable, and high-performance systems in a variety of environments. Proven ability to wear many hats, troubleshoot complex technical issues and work effectively in team settings.
Overview
8
8
years of professional experience
10
10
years of post-secondary education
4
4
Certifications
Work History
Cloud Security Architect
Fred Hutchinson Cancer Research Center
03.2024 - Current
- Maintained up-to-date knowledge on emerging threats and attack vectors relevant to cloud environments, proactively adapting strategies as needed.
- Conducted thorough vulnerability assessments for cloud applications, recommending necessary updates and patches to maintain secure environments.
- Developed secure cloud architecture designs, ensuring compliance with industry standards and best practices.
- Collaborated with cross-functional teams to identify and remediate potential security risks within our cloud environment.
- Streamlined incident response processes by automating threat detection and mitigation efforts in our cloud infrastructure
- Established comprehensive risk management policies, reducing exposure to cyber threats in organization's cloud infrastructure.
- Optimized network security by configuring firewalls, load balancers, and intrusion prevention systems within cloud environment.
- Collaborated closely with vendors to assess their products'' compatibility with organizational security guidelines before implementation into company''s IT ecosystem.
DevSecOps - Contract
Hic Sunt Leones Consulting, LLC
01.2024 - Current
- Conducted rigorous quality assurance tests, identifying areas of improvement for product optimization.
- Spearheaded continuous improvement initiatives resulting in increased operational efficiency across multiple departments.
- Contracted, Onboarded, and designed company's Datadog integration and alarming structure through Kubernetes and Helm Charts.
- Developed CI/CD pipeline structure in both GitLab and Azure Pipelines.
Senior DevSecOps Engineer - Contract
HYAS INFOSEC
03.2023 - 09.2023
- Sole owner of company's entire cloud stack, from provisions, migrations, scalability, reporting, networking, and application hooks.
- Conducted research to test and analyze feasibility, design, operation and performance of equipment, components, and systems. Able to reduce cloud upkeep cost by $140k USD while maintaining current performance goals, with room to grow.
- Implemented Docker for containerization and Kubernetes for orchestration, enhancing application portability and scalability.
- Onboarded and built out full Azure architecture and monitoring via Datadog. Increasing insight into company fleet of resources by over 350% while integrating new monitoring metrics for additional view into application stability and vulnerabilities.
- Developed planning criteria for integrating and enabling new technologies such as Kubernetes, Docker containers, Datadog monitoring, and SonarQube for highly scalable systems, focused on micro-architecture and security principles.
- Established end-to-end CI/CD pipelines using Azure DevOps, integrating security checks and automated testing to accelerate software delivery while maintaining high security standards.
- Spearheaded the incorporation of security practices into the DevOps workflow, implementing tools such as SonarQube for continuous code quality and vulnerability scanning.
- Implemented Azure Security Center for threat detection, security posture management, and advanced cloud defense. Also building out our Incident Management and Response system.
- Pioneered the use of Terraform for cross-cloud infrastructure provisioning, ensuring consistency across multi-cloud environments and reducing manual errors.
Senior Site Reliability Engineer - Contract
Dataworks-FedEx
05.2022 - 10.2022
- Architected, implemented, and managed a security-first minded AWS cloud infrastructure.
- Implemented Terraform for infrastructure provisioning and management, allowing for consistent and reproducible infrastructure deployments across different environments.
- Lead the development and maintenance of end-to-end CI/CD pipelines using Jenkins and AWS CodePipeline, integrating automated testing and deployment processes to accelerate the delivery of data science models.
- Implemented Docker for containerization and Amazon ECS for container orchestration, optimizing the deployment and scaling of their data science applications.
- Integrated AWS CloudWatch for real-time monitoring, logging, and alerting, ensuring proactive identification and resolution of potential issues within our infrastructure.
- Successfully managed a team of four full-time employees, fostering a collaborative and innovative environment for site reliability engineering within the data science team.
- Effectively coordinated and supervised contractors, ensuring alignment with project goals and timelines.
- Collaborated with data scientists and other cross-functional teams to understand infrastructure requirements and provided documentation for best practices in site reliability engineering.
DevOps / Security Certifier
Amazon, Information Security
12.2018 - 10.2021
- Acted as a primary point of contact for customer troubleshooting, addressing and resolving issues promptly to ensure a seamless experience for clients and stakeholders.
- Orchestrated end-to-end CI/CD pipelines using CodeDeploy, CodePipelines,, automating the build, test, and deployment processes to enhance the efficiency of software delivery across development teams through scripting for 22 separate services.
- Provided detailed documentation for monitoring configurations, pipeline automation, and security best practices, fostering a culture of knowledge-sharing and continuous improvement.
- Conducted thorough security architecture reviews and internal PenTesting. Utilizing security playbooks to ensure new PII touching applications mee the security bar. Collaborating with cross-functional teams to identify and address potential vulnerabilities, ensuring the organization's systems adhere to the highest security standards.
- Leveraged a diverse set of tools including ELK stack (Elasticsearch, Logstash, Kibana) for log management, Docker for containerization, and AWS IAM and Turtle for secrets management to enhance security and operational efficiency.
- Developed and taught a comprehensive data science course every Tuesday/Thursday to internal teams, empowering colleagues with the skills and knowledge necessary to leverage data science techniques within the organization.
- Implemented and configured monitoring solutions, using internal Amazon tooling, to provide real-time insights into system performance, ensuring rapid identification and resolution of potential issues.
- Drove 2 security review lifespans from concept to final rollout in Agile style.
Support Engineer II
Amazon, Global Security Operations
11.2016 - 12.2018
- Acted as the go-to expert for Lenel-based physical security solutions, providing comprehensive support for access control systems, video management, and security integration.
- Created automated SQL reports with dashboards for metrics
- Increased global team headcount 400% through metrics from tickets, TTLs, and work load.
- Wrote authoritative engineering specifications to clarify specifications for hundreds of in-field vendors regarding design parameters or functions
- Responded promptly to support tickets, identifying and resolving hardware and software issues related to the physical security infrastructure, minimizing downtime and potential risks.
- Administered Windows Server environments, managing user accounts, permissions, and group policies to maintain a secure and efficient security infrastructure.
Education
Bachelor of Arts - Music Performance
Troy University
Troy, AL 08.2011 - 05.2016
Bachelor of Science - Physics
Troy University
Troy, AL 08.2011 - 05.2016
Skills
Pandas, Sci-kit, Numpy, Keras, Seaborn, MatplotLib
PostgreSQL
BASH
AWS, Azure, GCP
Wireshark
Python
Security PenTest/Review
CI/CD Pipelines
Risk mitigation strategies
Security logging
NIST
Data security, analysis, validation, and visualization
TCP/IP protocol
Service-Oriented Architecture Design
Ansible
DataDog
Technical documentation
Project oversight
Staff Management
Critical design review
Project Management
Incident Management
Terraform
System Monitoring
Critical Design Review
Go
JavaScript
React
HTML
CSS
Certification
Lenel Certification
Timeline
Cloud Security Architect
Fred Hutchinson Cancer Research Center
03.2024 - Current
DevSecOps - Contract
Hic Sunt Leones Consulting, LLC
01.2024 - Current
Senior DevSecOps Engineer - Contract
HYAS INFOSEC
03.2023 - 09.2023
Senior Site Reliability Engineer - Contract
Dataworks-FedEx
05.2022 - 10.2022
SANS GCFA
04-2021
SANS GSEC
05-2019
DevOps / Security Certifier
Amazon, Information Security
12.2018 - 10.2021
AWS - Solutions Architect (Associate)
10-2018
Lenel Certification
08-2018
Support Engineer II
Amazon, Global Security Operations
11.2016 - 12.2018
Bachelor of Arts - Music Performance
Troy University
08.2011 - 05.2016
Bachelor of Science - Physics
Troy University
08.2011 - 05.2016
Similar Profiles
Muhubo YusufMuhubo Yusuf
Patient Care Coordinator at Fred Hutchinson Cancer Research Center, FhcrcPatient Care Coordinator at Fred Hutchinson Cancer Research Center, Fhcrc
Sophia Jarussi-SmithSophia Jarussi-Smith
Patient Care Coordinator at Fred Hutchinson Cancer Research CenterPatient Care Coordinator at Fred Hutchinson Cancer Research Center
Elizabeth SharrardElizabeth Sharrard
Clinical Technologist II, PK Lab at Fred Hutchinson Cancer Research CenterClinical Technologist II, PK Lab at Fred Hutchinson Cancer Research Center