Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Ifeanyi Williams Agbedo

Katy,TX

Summary

Certified Cloud Security Engineer and Security Architect with over Five (5)+ years experience workings as a Cloud Security Engineer, Information Security Specialist with passion for aligning security architecture plans and processes with security standards and business goals. Extensive experience developing and testing security framework for cloud-based software. Versed in robust network defense strategies helping several customers managing servers and data center operations. Building scalable, highly-available and fault tolerant cloud security infrastructure across multiple platforms (Windows, Linux, Amazon Linux).

Overview

8
8
years of professional experience
1
1
Certification

Work History

Sr Network Security Engineer

Core Infrastructure Services, ECIO USAA
11.2022 - Current
  • Responsible for verifying and updating firewall configuration on multiple vendor equipment in the environment.
  • Responsible for setting up monitoring and syslog on multiple security devices in the environment.
  • Responsible for verifying failover configurations, creating change control requests and testing failover across firewalls across multiple datacenters.
  • Responsible for assessing, modifying, and implementing firewall rules on Palo Alto Firewalls.
  • Responsible for migrating Cisco, ASAs, Checkpoint and SonicWall firewalls to Palo Alto (Panorama) environment.
  • Responsible for maintaining device configuration standards.
  • Responsible for creating and executing project plans to migrate ACLs on converted firewalls to APP-ID rules.
  • Responsible for minimizing outages caused by ongoing projects and resolving any issues.
  • Responsible for providing project status updates to stakeholders.
  • Responsible for analyzing, diagnosing, and resolving time-critical issues caused by ongoing project changes
  • Identity and Access Management Monitoring/Alerting.

Cloud Security Engineer

Summit Electric Construction Inc.
04.2020 - 09.2022
  • Develop, implement and Operate controls to secure cloud-based systems.
  • Collaborated with the appropriate departments to assess and recommend technologies that support company organizational needs.
  • Participated in the creation and maintenance of development, test, and production environments with a goal of high availability, fault-tolerance, and scalability.
  • Responsible for creating, configuring, and utilizing AWS VPC to host clients computing services, virtual networking devices, database (RDS) environment and security configuration.
  • Responsible for configuration and spin-up of AWS compute, storage, and messaging services such as EC2, S3, EBS, EFS and SNS.
  • Presentation skills with a high degree of comfort speaking with executives, IT Management, and developers; strong communication skills with an ability to right level conversations.
  • Assisted with launching new start up programs working closely with personnel to perform suitability reviews by learning and implementing protocols and engaging client awareness.
  • Enabled CloudTrail log file validation so that any changes made to the log file itself after it has been delivered to the S3 bucket is trackable to ensure log file integrity.
  • Turned on Redshift audit logging in order to support auditing and post-incident forensic investigations for a given database.
  • Worked on EC2, VPC, S3, IAM, Volume and Snapshot, RDS, SNS, CloudWatch, CloudTrail and other services.
  • Worked on High availability solutions in AWS Cloud Infrastructure using Route 53, ELB Service and worked on server related task like managed EC2 instances, creating AMI, snapshots, changing instance type, Key Pairs, creating new instance from AMI.
  • Worked on network related task like setup of VPC, subnet both public and private, route table, internet gateway, enable DNS hostname's, security groups, elastic IP.
  • Monitored related task like Creating alarms in CloudWatch for real time alerting.
  • Worked on Database related task like changing instance type of RDS, monitoring, and backing up of RDS, storage task such as disk addition, increase & decrease of existing disk using EBS volume and, S3 bucket to store object like data.
  • Created several AWS Data Migration jobs ordering AWS Snowball edge and moving data from data center of customer into AWS leveraging AWS S3 bucket in a secured manner, data encrypted in transit and at rest.
  • Operational experience with network security appliances with a clear understanding of the architecture behind secure networks, DMZ's, NAT's, rule placement, VPN setup, and system maintenance.
  • Led root cause analysis, debugging, support, and postmortem analysis for security incidents and service interruptions.
  • Enabled Cloud Trail across all geographic regions and AWS services to prevent activity monitoring gaps.
  • Enabled Cloud Trail log file validation so that any changes made to the log file itself after it has been delivered to the S3 bucket is trackable to ensure log file integrity.
  • Enabled access logging for Cloud Trail S3 bucket so that you can track access requests and identify potentially unauthorized or unwarranted access attempts.
  • Assisted in the build, deploy and tune process of scalable systems that automate security event detection, response, and repeatable tasks.
  • Kept up to date on emerging vulnerability, response, mitigation, threat landscape trends and use this knowledge to drive proactive threat monitoring.
  • Participated in creating innovative ways to use a wide range of security event data to advance detection methods.
  • Conducted large scale projects and research through all stages: concept formulation, definition of metrics, determination of appropriate methodology, research evaluation and final research report.
  • Provided expertise to client's early adoption strategy such as end user training, evangelizing cloud solutions, bringing experience and best-practice in the AWS cloud ecosystem.
  • Proactively monitor resources and applications using AWS Cloud Watch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS and configured notifications for the alarms generated based on events defined.
  • Established the appropriate monitoring and alerting of solution events related to performance, scalability, availability, and reliability.
  • Experience in deploying and monitoring applications on various platforms using Elastic Beanstalk, setting up the life cycle policies to back the data from AWS S3 to AWS Glacier.

Cloud Solutions Architect

Grayco Communications
03.2017 - 09.2019


  • Optimized cloud resources for cost reduction by analyzing usage patterns and adjusting configurations accordingly.
  • Leveraged GCP tools to redesign data infrastructure, increasing data processing speed by 25%.
  • Utilize Cloud-based API's when appropriate to write network/system level tools for securing cloud environments.
  • Proactively identified security risks while migrating to the cloud and implemented appropriate solutions, preventing potential data breaches.
  • Setup Alerting and Monitoring using Stark driver in GCP.
  • Experienced in GCP features which include Google Compute engine, Google storage, VPC, Cloud Load balancing, IAM.
  • Ensured business continuity by creating disaster recovery strategies, backup procedures, and failover plans for critical applications in the cloud environment.
  • Increased cloud infrastructure efficiency by designing and implementing scalable solutions.
  • Collaborated with vendors to evaluate potential products or services that would enhance the organization''s cloud computing capabilities.
  • Developed customized automation scripts for streamlined management of cloud resources and services.
  • Conducted thorough audits on implemented solutions to ensure alignment with enterprise policies, standards, regulatory compliance requirements.
  • Provided expert guidance during migration projects from legacy systems to modernized cloud-based environments without compromising functionality or security requirements.
  • Delivered comprehensive documentation on architecture designs, processes, guidelines, and operational procedures for both internal team members and clients.
  • Enhanced security measures by conducting vulnerability assessments and implementing best practices for cloud architecture.
  • Assisted in developing robust data storage solutions that maintained high availability while ensuring data integrity across multiple regions within the public cloud infrastructure.
  • Promoted adoption of DevOps practices within the organization, resulting in faster delivery times and improved collaboration between development and operations teams.

Soc Tier 1

Grayco Communications
04.2016 - 02.2017
  • Monitored computer virus reports to determine when to update virus protection systems.
  • Encrypted data and erected firewalls to protect confidential information.
  • Developed plans to safeguard computer files against modification, destruction or disclosure.
  • Reviewed violations of computer security procedures and developed mitigation plans.
  • Monitored use of data files and regulated access to protect secure information.
  • Performed risk analyses to identify appropriate security countermeasures.
  • Conducted security audits to identify vulnerabilities.
  • Participated in creation of device hardening techniques and protocols.
  • Created cybersecurity best practice communications to educate staff against known threats and potential vectors of attack.
  • Use Spiceworks ticketing Software to log inventory, monitor, update ticket, report and Troubleshoot issues experienced by our faculties, staffs, and students.
  • Installed, repaired, maintained, and upgraded Windows desktop and Windows notebook computers.
  • Responsible for assessing projects for compliance with Cybersecurity Policies and, analyze risk of assessment results.
  • Identified and recommended functional, technological and/or control solutions.
  • Worked on multiple projects as part of a Cybersecurity Risk Management team to include enterprise initiatives and minor efforts.
  • Acted as a subject matter expert (SME) for one or more risk management areas for consultation.
  • Consulted with other Cybersecurity teams to ensure compliant solutions are delivered for implementation.
  • Actively contributed to the administration, maintenance and improvements of Common Spirit Health’s risk assessment program.
  • Partnered with cross-functional departments in IT and organization to foster a culture of security and compliance.
  • Performed other duties as required.

Education

Master of Science - Information Assurance And Cybersurity

Grand Canyon University
Phoenix, AZ
05.2023

Bachelor of Science - Criminology And Security Studies

National Open University of Nigeria
Abuja, Nigeria
07.2019

Skills

  • Information Protection and Analysis Governance, Risk & Compliance (GRC) AWS, Azure, Google Cloud, BCP & DRP, PKI, Database Querying Languages; MySQL, NOSQL/DynamoDB, Palo Alto Prisma, Palo Alto BPA, Prisma AWS Firewall (Security Group and NACL) AWS WAF, Control Tower, AWS Security Guardrails, AWS Landing Zones, Security Hub
  • Amazon Web Services (EC2, EBS, S3, IAM, AMI, VPC, VPC Peering, NACL, Security Groups, Route53, Auto Scaling Group, ELB, SNS, CloudWatch, Elastic Beanstalk, CloudFormation) F5, Jira, Confluence, F5, Palo Alto Panorama, Expedition, Guardrails Configuration, IAM, AWS Amplify, AWS Resource Manager etc Cloud Security Visibility and Compliance; Checkpoint Dome9, AWS GuardDuty, VPC Flow logs

Certification

  • Certified Cloud Security Engineer- Certified
  • Certified Threats Intelligence Analyst(CTIA) - Certified
  • Splunk Enterprise- Certified
  • Security+ (COMPTIA)
  • CompTIA A+

Timeline

Sr Network Security Engineer

Core Infrastructure Services, ECIO USAA
11.2022 - Current

Cloud Security Engineer

Summit Electric Construction Inc.
04.2020 - 09.2022

Cloud Solutions Architect

Grayco Communications
03.2017 - 09.2019

Soc Tier 1

Grayco Communications
04.2016 - 02.2017

Master of Science - Information Assurance And Cybersurity

Grand Canyon University

Bachelor of Science - Criminology And Security Studies

National Open University of Nigeria

Similar Profiles

  • Josh Schoenherr

    Josh SchoenherrJosh Schoenherr

    Heavy Equipment Operator at Core Infrastructure Servives.Heavy Equipment Operator at Core Infrastructure Servives.

    View Profile
  • Carlos Antonio Ortiz Fuentes

    Carlos Antonio Ortiz FuentesCarlos Antonio Ortiz Fuentes

    Business Process Specialist at Tata Consultancy Services (USAA).Business Process Specialist at Tata Consultancy Services (USAA).

    View Profile
  • Jacquelyn Campbell

    Jacquelyn CampbellJacquelyn Campbell

    Customer Support for credit card services at TTEC-USAA Credit Card ServicesCustomer Support for credit card services at TTEC-USAA Credit Card Services

    View Profile
Ifeanyi Williams Agbedo