JONATHAN SULDO
Dallas,Texas
Summary
Proactive Job Title adept at predicting and disrupting intrusion attempts. Pioneers novel network security measures to combat emerging threats. Maintains proven track record of utilizing both education and technological solutions to fortify companies against malicious exploitation and data breaches.
Overview
25
25
years of professional experience
1
1
Certification
Work History
Penetration Testing & DevSecOps Engineer
Iron Wood Cyber
- Ran MDR Integrations - Using CrowdStrike as a fully automated Security Posture Solution
- Responsible for strategic financial planning within assigned Security Product Portfolio, including budgeting, forecasting, and financial planning of new and existing Security Products & Services
- Own all aspects of cloud security product definition including vendor integration, platform integration and monitoring for cloud platforms including but not limited to AWS, Azure and Google Cloud
- Performed Vulnerability Management and Remediation utilizing Nessus and Qualys Guard
- Developed and maintained CI/CD pipelines for security applications
- Proficient with container systems and orchestration tools, ensuring robust security in cloud deployments
- Developed and implemented advanced network security measures to prevent unauthorized access and data breaches, reducing incidents by 30%
- Used Kubernetes to orchestrate the deployment, scaling and management of Docker Containers
- Utilized SIEM, EDR, NTA technologies such as SumoLogic, AlertLogic, Alien Vault, and Palo Alto.
Project Manager and Vulnerability Analyst SME
Bank of America
- Established new process and infrastructure, overseeing the build out of new programs for all vulnerabilities identification processes outside of port scanning identification processes for mainframe, container, etc
- Oversaw the development of new programs related to vulnerability identification
- Focused on identifying vulnerabilities beyond traditional port scanning (e.g., mainframe, container vulnerabilities)
- Leveraged the MITRE ATT&CK framework to recognize threat surfaces related to vulnerable code in both production and cloud infrastructure
- Led a team of security administrators, analysts, and IT professionals, focusing on endpoint proxy and data loss prevention with tools like Forcepoint
- Managed endpoint protection using Microsoft Endpoint (Intune) administration, ensuring compliance with security policies and reducing endpoint vulnerabilities by 20%
- Conducted security audits, vulnerability assessments, and threat management using SIEM tools, with an emphasis on protecting sensitive data
- Developed strategies to enhance IT project security and reliability, incorporating advanced web proxy tools and data security solutions
- Managed vulnerabilities within cloud and hybrid networks
- This likely involved identifying, assessing, and mitigating vulnerabilities across various systems
- Provided a critical role in developing Vulnerability, Patch Management and ICR
- Implemented controls using process to control frameworks inline with COBIT STRIVE- OCTAVE- CIS 20.
Cyber Security Engineer
CloudElligent
- Provided leadership, guidance, and training to a team of security administrators, analysts, and IT professionals
- Reviewed, implemented, and documented information security policies and procedures for client-facing GAP and risk assessments
- Led and advised Risk Management and CyberSecurity Office leadership regarding implementation and documentation of security policies and procedures for client-facing risk assessments
- Managed security audits, vulnerability assessments, and threat management using SIEM tools
- Created and executed strategies to enhance IT project security and reliability
- Responded to security incidents and performed thorough post-event analyses
- Utilized tools such as OSSEC, LogRhythm, and Splunk for comprehensive security monitoring
- Developed, maintained, and communicated the vision of the Cloud Security Product Portfolio communication of those requirements to the business, engineering, security.
Cyber Security Domain Coach
Nissan Financial - TMCS
- Current
- Determined security needs by assessing business strategies, exploring information security standards, performing application security and vulnerability analysis
- Designed and implemented security systems, including firewalls, email protection, IDS/IPS, malware protection, authentication systems, log management, and encryption protocols
- Conducted regular vulnerability assessments and penetration tests to identify and address security vulnerabilities
- Collaborated with development and IT teams to remediate identified vulnerabilities and integrate security best practices into the DevSecOps process
- Developed and maintained an incident response plan, ensuring readiness to handle security incidents effectively
- Enforced security policies, standards, and procedures, ensuring compliance with NIST and Internal regulations
- Provided security training and awareness programs to employees, promoting a security-conscious culture
- Monitored security logs and alerts, responding to and investigating security incidents in coordination with the SOC
- Prepared and presented comprehensive security reports to management, communicating security risks and solutions to non-technical stakeholders
- Evaluated and recommended new security technologies, tools, and methodologies to enhance the organization's security posture
- Determined security needs by assessing business strategies, exploring information security standards, performing application security and vulnerability analysis, with a focus on Cloud DLP
- Analyzed application/system architectures to design security requirements that enforce Information Security policies and standards, ensuring data loss prevention
- Collaborated with business units, application teams, architectural teams, and third-party vendors to ensure comprehensive security controls, focusing on data security tools and endpoint proxy solutions.
Senior Security Analyst
Celanese
04.2020 - 06.2021
- Malware Analysis using COD tools - Rapid7, BitDefender, FireEye (Helix), Carbon Black-Response
- Lightweight plugin and scripting to augment any critical Threat Intel scraping, parsing, and SIEM ingestion
- SDWAN conversion of multinational network using Rapid7 sensors
- Experienced in designing, implementing, and troubleshooting network infrastructure and security
- Vulnerability assessment, Design review, and Code review on Oil and Gas Asset management systems
- Developed and implemented IRAM RISK assessment program SIEM, EDR, NTA COD Technologies
- Led a team of security administrators, analysts, and IT professionals, focusing on endpoint proxy and data loss prevention with tools like Forcepoint
- Conducted security audits, vulnerability assessments, and threat management using SIEM tools, with an emphasis on protecting sensitive data
- Developed strategies to enhance IT project security and reliability, incorporating advanced web proxy tools and data security solutions
- Technologies Utilized: Microsoft Azure Information Protection, LogRhythm, DLP.
Senior Information Security Analyst
Upwork, Corporate.
11.2017 - 04.2020
- Lead for pilot Vulnerability Management and AWS Migrations from on-premise to cloud
- Created documentation related to policies, procedures, and controls
- Successfully piloted stakeholder training alongside another on-site contractor
- Maintained an adjunct consultant role to provide ongoing support and training
- SME for migration of current technology stack to relevant Cloud computing stack within AWS
- Analyzed and understood the overarching threat landscape and developed strategies to deliver efficient, comprehensive solutions to satisfy those needs in an objective manner
- Interpreted business goals and communicated them to engineering and operations teams and helped identify opportunities for the assigned Cloud Security Product Portfolio to achieve results
- Collaborated with cross-functional teams to define requirements and implement best practices for endpoint and IAM solutions
- Engineered System Management process integration involving and with Systems Management: Group Policy, WSUS, Automation Services API and Web Services Configuration.
IT Risk Manager & Compliance & Senior Information Security Analyst & Lead Penetration Tester
Arma-Net, Labs LLC(Clients)
05.2014 - 11.2017
- Performed Web Application Security, Logging and Alerting, Security Design, Penetration Testing, Secure Coding, Mobile Application Security, Application Security Controls and Validation, Risk Assessments, Regulatory Compliance, and Secure Software Development Life Cycle (secureSDLC)
- Hands-on experience in developing threat models, security controls, threat analysis, creation of risk control matrices, and risk mitigation strategies
- Led hands-on Penetration Testing on-premise and cloud environments to provide a comprehensive adversarial perspective on hardening against attackers
- Conducted Security Risk Assessments in accordance with NIST and FFIEC frameworks
- Performed regular vulnerability assessment and penetration testing using various tools like Burp Suite, Dir-Buster, OWASP ZAP proxy, Accunetix, NMAP, Nessus, Nikto, web scanner, w3af, HP Fortify, IBM App Scan enterprise, Kali Linux
- Worked with global security teams performing application and IT infrastructure security assessments
- In-depth knowledge of penetration testing for web and mobile (iOS and Android) applications
- Developed Strategic Detections and mitigation on Web Application-based attacks to include Denial-of-service attacks, MITM attacks, Local file inclusion (LFI), Remote file inclusion (RFI), and Buffer overflow
- Performed security design and architecture reviews for web and mobile applications
- Security assessment based on OSSTMM methodology and OWASP framework
- Worked with Cloud-compliant and web application security using Qualys Guard
- Gained working knowledge of concepts of OWASP Top 10 and SANS Top 25 software guidelines, Federal Financial Institutions Examination Council's (FFIEC) regulations, including Payment Card Industry (PCI-DSS), HIPAA/HITECH, and Sarbanes-Oxley (SOX), CIS20, ISO 27000 series
- Implemented a Security Incident and Event Management System (SIEM) using HP ArcSight
- Regulated SIEM systems help monitor and respond to security events across an organization.
Technical Project Engineer
DATA SYSTEMS
01.2014 - 05.2015
- Lead projects that involved coordinating technical projects to non-technical clients
- Coordinating projects between clients and Technical Specialists
- Experience with implementing telecommunication in various offshore and corporate environments
- Regulated the budget and invoicing throughout project life cycles
- Responded to technical issues concerning V-Sat and Cisco Systems.
Command Section
ARMY NATIONAL GUARD
01.2000 - 01.2008
- Spent a year and a half overseas fighting in Operation Iraqi Freedom
- Received over 12 accommodations, including the Purple Heart
- Attached to the 'Command Section' assigned to aid and protect the General and 4 other major officers for the 256th Tiger Brigade.
Education
Pursuing Master's Program at Sans Institute of Technology -
Bachelor OF SCIENCE in Business, Major in Marketing with a focus in Technology -
University of Louisiana at Lafayette
CISSP -
01.2019
CompTIA A -
01.2018
CompTIA Network -
01.2018
CERTIFIED ETHICAL HACKER -
01.2018
COMPTIA Security -
01.2018
Python for Penetration Testing (SPSE) -
01.2017
Skills
- Management Cross-Functional Team
- Network Security Auditing
- Information Assurance
- SIEM & UTM
- Penetration Testing & Incident Response & Process Improvement
- Network Administrator & Technical Writing & Vulnerability Evaluations
- Competitive Market Research & Analysis
- Consultative & Solution Selling & Problem Resolution & GAP Analysis
- Risk analysis
- Project Management
- Security Ops tools integration
- Vulnerability Scanning/Management
- O365 Security (Preferably design/implementation)
- DLP Solutions End Point Protection
- Risk Assessment & SIEM Management & Baselines
- Coding Skills: Python, C, C, GoLang
- Standards & Framework: ISO27000, SOC2, OWASP, OSSTMM, PCIDSS, NIST, HIPPA
- Enterprise Application Scanners: Appscan, Checkmarks, Veracode, HP Fortify, Qualys, Nessus
- Network Security Tools: Keli Top 10, Private Scripted Tools, Netcat, Nmap, Metasploit, nping
- Application Proxy Scanners: Burp Suite, Web scarab, Wireshark, Dir-Buster
- Operating Systems: Windows, RHEL, Kali Linux, Debian, Ubuntu
- Cloud Platforms: AWS, Azure, Google Cloud
- Cloud Security: AWS, AzureAD, Sentinel, Defender
Affiliations
- USENIX Member
- U.S. Army NCO - Leadership in Combat
- ISACA Member
- OWASP-Web Application Code Review-Member
- Active - Infraguard Member
- United States Army-Disabled Veterans Society
Personal Information
Title: Senior Cyber Security Engineer- Senior Cyber Security Architect - Senior SOC Analyst
Certification
- Area of certification Training - Timeframe
Timeline
Senior Security Analyst
Celanese
04.2020 - 06.2021
Senior Information Security Analyst
Upwork, Corporate.
11.2017 - 04.2020
IT Risk Manager & Compliance & Senior Information Security Analyst & Lead Penetration Tester
Arma-Net, Labs LLC(Clients)
05.2014 - 11.2017
Technical Project Engineer
DATA SYSTEMS
01.2014 - 05.2015
Command Section
ARMY NATIONAL GUARD
01.2000 - 01.2008
Penetration Testing & DevSecOps Engineer
Iron Wood Cyber
Project Manager and Vulnerability Analyst SME
Bank of America
Cyber Security Engineer
CloudElligent
Cyber Security Domain Coach
Nissan Financial - TMCS
- Current
Pursuing Master's Program at Sans Institute of Technology -
Bachelor OF SCIENCE in Business, Major in Marketing with a focus in Technology -
University of Louisiana at Lafayette