HERBERT TABUNG
Alexandria,VA
Summary
I am a dedicated and experienced cloud security engineer with over 6+ years of experience with the passion for ensuring the integrity and protection of digital assets in cloud environments. As an AWS CLOUD SECURITY ENGINEER, with an extensive knowledge of cloud technologies, I excel in designing, implementing, and maintaining robust security solutions. My expertise includes threat detection and mitigation, access control, encryption, and compliance enforcement across diverse cloud platforms. I am committed to staying updated with the latest security trends and best practices to safeguard sensitive data and uphold the trust of stakeholders. My proactive approach and attention to detail allow me to effectively assess risks and develop strategies to fortify cloud infrastructures against emerging threats. I thrive in dynamic environments where I can leverage my technical skills and collaborate with cross-functional teams to deliver innovative security solutions that align with business objectives.
Overview
7
7
years of professional experience
1
1
Certification
Work History
AWS Security Engineer
T-Mobile
03.2022 - Current
- Security Architecture and Design: Secure Cloud Architecture: Design and implement secure AWS architectures, ensuring adherence to security best practices and frameworks
- Security by Design: Integrate security into all phases of cloud solution development, from initial design to deployment
- Identity and Access Management (IAM): Manage IAM Policies: Develop and enforce IAM policies to control access to AWS resources
- Role-Based Access Control (RBAC): Implement RBAC to ensure that users and applications have the minimum necessary permissions
- Network Security: Configure Security Groups and NACLs: Set up and manage security groups and network ACLs to control traffic to and from AWS resources
- Virtual Private Cloud (VPC) Security: Design and maintain secure VPC architectures, including subnets, route tables, and VPN connections
- Data Protection: Encryption: Implement data encryption at rest and in transit using AWS services like KMS (Key Management Service) and AWS Certificate Manager
- Data Loss Prevention: Deploy measures to prevent data breaches and ensure data integrity
- Monitoring and Incident Response: Continuous Monitoring: Set up continuous monitoring and logging of AWS environments using CloudWatch, CloudTrail, and other AWS monitoring tools
- Incident Detection and Response: Develop and execute incident response plans for security breaches and incidents
- Compliance and Governance: Ensure Compliance: Ensure that AWS infrastructure complies with industry standards and regulations, such as GDPR, HIPAA, and PCI-DSS
- Security Audits: Conduct regular security audits and assessments to identify and mitigate risks
- Threat Detection and Management: Intrusion Detection Systems: Implement and manage intrusion detection and prevention systems (IDS/IPS)
- Vulnerability Management: Regularly scan for vulnerabilities and apply patches or mitigations
- Automation and Scripting: Security Automation: Develop scripts and automation tools to enforce security policies and automate routine security tasks
- Infrastructure as Code: Use tools like AWS CloudFormation or Terraform to automate the provisioning and management of secure infrastructure
- Security Training and Awareness: Educate Teams: Conduct security training and awareness programs for development and operations teams
- Promote Best Practices: Advocate for security best practices across the organization
- Documentation and Reporting: Document Security Procedures: Maintain comprehensive documentation of security policies, procedures, and incidents
- Security Reporting: Generate and present security reports to management and stakeholders
- Staying Current: Research and Development: Stay up to date with the latest security threats, trends, and AWS security services
- Continuously improve security measures and adapt to new threats and vulnerabilities.
AWS Cloud Architect
Wells Fargo
01.2019 - 03.2022
- Designing Cloud Architecture: Develop and design cloud-based solutions tailored to the organization's requirements
- Ensuring that the architecture is scalable, reliable, and secure
- Implementation and Deployment: Oversee the deployment of cloud solutions, ensuring they are implemented correctly
- Work closely with IT teams to migrate existing applications and data to the cloud
- Cost Management: Optimize cloud solutions to ensure cost-effectiveness
- Monitor cloud usage and implement strategies to reduce costs where possible
- Security and Compliance: Ensure that cloud solutions adhere to security best practices and compliance requirements
- Implement security measures such as encryption, access controls, and identity management
- Performance Monitoring: Set up monitoring and logging to track the performance of cloud solutions
- Troubleshoot and resolve issues related to cloud infrastructure and applications
- Innovation and Continuous Improvement: Stay updated with the latest cloud technologies and best practices
- Continuously seek ways to improve the performance, reliability, and efficiency of cloud solutions.
AWS Engineer
Johnson & Johnson
01.2017 - 12.2018
- Cloud Infrastructure Design and Architecture: Create scalable, reliable, and secure cloud architecture using AWS services
- Analyze technical requirements to determine appropriate cloud infrastructure solutions
- Design and implement solutions that meet specific business needs, ensuring high availability and disaster recovery
- Deployment and Management: Automate the deployment of applications in the AWS cloud
- Infrastructure as Code (IaC), Use tools like AWS CloudFormation, Terraform, or AWS CDK to manage infrastructure
- Implement and manage CI/CD pipelines using AWS tools like Code Pipeline, Code Build, and Code Deploy
- Monitoring and Optimization: Set up monitoring and alerting for cloud infrastructure using AWS CloudWatch and other monitoring tools
- Continuously evaluate and optimize AWS resource usage to manage costs effectively
- Performance Tuning: Analyze and tune the performance of cloud-based applications and services
- Security and Compliance: Implement Security Best Practices, ensuring security best practices are followed, including the use of IAM policies, security groups, and encryption
- Ensure the infrastructure complies with industry standards and regulations
- Develop and implement strategies for incident detection, response, and resolution
- Troubleshooting and Support: Identify, diagnose, and resolve technical issues related to cloud infrastructure
- Provide support to development teams regarding cloud infrastructure and deployment processes
- Implement and manage disaster recovery plans to ensure data and application resilience
- Automation and Scripting: Automate Tasks Develop scripts and automation tools to streamline processes and reduce manual effort
- Using configuration management tools like Ansible, Puppet, or Chef to manage infrastructure configurations.
Education
Bachelor's in computer science -
Skills
- Cloud AWS, Azure, Google
- Operating System Windows OS, Ubuntu, Amazon, Linux
- CICD CloudFormation, Terraform
- Scripting Python, AWS CLI, Bash, JSON
- Project Management/Methodologies Agile, Scrum
- Networking VPC, SG, TCP/IP, NACL, LB(ALB/NLB), RDP, SSH, API, IAM, SSO, Route53, Transit Gateway, VPN, EC2, ELB, SNS, CloudFront, AWS Auto Scaling, AWS Shield, AWS Firewall Manager, AWS Inspector, AWS Systems Manager, AWS Config Rules, AWS KMS, SCP
- Monitoring And Logging Cloud Watch, Cloud Trail, AWS Security Hub, VPC Flow Logs, Trusted Advisor, AWS Control Tower, Active Directory, Snapshot Lifecyle Manager, Guard Duty
- Security AWS Certificate Manager, Parameter Store, AWS Secrets Manager, AWS Organization
Certification
AWS Certified Solutions Architect Associate
Timeline
AWS Security Engineer
T-Mobile
03.2022 - Current
AWS Cloud Architect
Wells Fargo
01.2019 - 03.2022
AWS Engineer
Johnson & Johnson
01.2017 - 12.2018
Bachelor's in computer science -
Similar Profiles
DeShawn MurphyDeShawn Murphy
Account Expert at T-MobileAccount Expert at T-Mobile
Basem ShadadBasem Shadad
Mobile Expert at T-MobileMobile Expert at T-Mobile
Joshua PachecoJoshua Pacheco
Sales Representative at T-MobileSales Representative at T-Mobile
Heather BradleyHeather Bradley
Sr. SDET at T-MobileSr. SDET at T-Mobile
Shihan AhmedShihan Ahmed
Lead Pharmacy Technician at CVSLead Pharmacy Technician at CVS