Sean Tristan
Denver,CO
Summary
Senior security engineer with extensive experience in designing and implementing large-scale enterprise systems with a focus on detection and response. Skilled in developing and managing data pipelines to detect security threats and anomalies, administering metrics to maintain security processes and controls, and building secure cloud infrastructure solutions. Proficient in leading and mentoring teams, with excellent communication and presentation skills. Adept at managing multiple priorities and taking on added responsibilities to achieve team goals.
Overview
8
8
years of professional experience
1
1
Certification
Work History
Senior Security Engineer
HealthJoy
06.2023 - Current
- Actively monitoring and deploying security solutions leveraging Palo Alto Firewalls, GlobalProtect, and Prisma Cloud, resulting in enhanced threat detection and accelerated response times.
- Spearheaded the completion of SOC 2 Compliance Audit, enhancing company's security posture.
- Seamlessly integrated Okta Single Sign-On (SSO) thereby streamlining authentication processes.
- Successfully implemented and managed Data Loss Prevention (DLP) strategies using Google Workspace and Virtru, ensuring sensitive data protection and compliance with privacy regulations.
- Enabled Cloudflare DNS management configuration, optimizing network performance and reliability.
- Collaborates closely with platform and IT teams to ensure the deployment of secure and robust infrastructure.
Cloud Security Engineer
General Motors
01.2023 - 06.2023
- Translated cloud governance requirements into custom policies and implement enforceable security initiatives to maintain a strong security posture.
- Identified, analyzed, and resolved vulnerabilities in cloud infrastructure and applications, ensuring the integrity and confidentiality of data.
- Configured and optimized Azure data pipelines for NSG, APIM, and Application Gateway logging and alerting, and integrated with SIEM for advanced monitoring and analysis.
- Continuously assessed and enhanced the security posture of cloud environments, and architected large-scale enterprise cloud solutions for diverse clients.
- Developed and maintained integrations between Azure Resource Graph and Power BI to provide application teams with visibility into security requirements.
- Automated manual processes using PowerShell, Python, and Terraform, streamlining cloud operations and enhancing operational efficiency.
- Monitored and provided support for the Azure Cloud environment and the Vehicle Service Delivery Network, ensuring the highest levels of performance and availability.
Lead Security Engineer
General Motors
08.2022 - 01.2023
- Orchestrated teams of up to 7 engineers to develop and implement robust security systems, achieving a 30% reduction in potential threats.
- Conceptualized and executed a hybrid data lake for General Motors, assessing various cloud data platforms to determine the optimal solution.
- Engineered 3 security platforms and devised Technical Architecture Diagrams to visualize network telemetry effectively.
- Collaborated closely with 4 departments at General Motors to identify areas for improvement and develop effective solutions.
- Analyzed business requirements and spearheaded the design and deployment of cutting-edge security tools to enhance overall security strategy.
- Conducted comprehensive research on security trends and best practices, delivering engaging presentations to non-technical stakeholders to facilitate knowledge-sharing.
Platform Security Engineer
General Motors
06.2019 - 08.2022
- Led 3 migration strategies for existing on-prem systems to Azure Cloud (lift and shift).
- Designed SIEM architecture and onboarded/parsed/configured log sources to ensure Cyber Defense could alert on events.
- Developed 5 SOAR playbooks to automate incident workflows with security applications.
- Spearheaded project to launch intel platform and integrate with SIEM, SOAR, Elasticsearch, and Kafka.
- Configured/troubleshooted Elastic clusters that process terabytes of data daily; monthly upgrades of kernel/ELK stack.
- Improved Network Security Monitor stability and visibility by deploying 33 IPS sensors to manufacturing plants in Beijing, Shanghai, Brazil.
- Leveraged existing application logic and functionality utilizing Azure components enhancing enterprise visibility.
Product Support Engineer
Becton Dickinson
01.2017 - 06.2019
- Enhanced databases, stored procedures, reports, and data input interfaces using SQL Server 2008 R2 and 2012.
- Established escalation routes to facilitate timely resolution of customer issues to ensure positive brand image.
- Monitored network activity and implemented security procedures in three attempted security breaches; maintained security metrics.
- Accomplished on average one to two knowledge articles a month, shared throughout the organization on innovative help desk solutions.
- Oversaw network security module, prepared/documented reports of device and port status using network monitoring tools.
- Managed medical technology products and services; optimized process flows and reduced support response time by 30%.
Security Risk Analyst Internship
MUY
01.2018 - 05.2018
- Performed security engagement tasks such as open-source intelligence, policy review, penetration testing, and compliance monitoring.
- Configured Apache web server to attempt to gain credentials by placing source code of the company's website in root directory.
- Constructed vulnerability testing processes using Metasploit to scan various OS platforms and provided detailed findings.
- Interpreted security scan results and presented full security assessment report to CISO while recommending an incident response plan.
- Monitored computing environment using various tools to recommend risk mitigation techniques based on known vulnerabilities.
System Analyst
Accenture
02.2016 - 01.2017
- Completed one-month training program and analyzed critical applications on 3 development projects.
- Assisted managers in business development, client interactions, and led analysis of need gaps for two business processes.
- Ensured on-time delivery of application systems and applied 100% implementation of quality control by summarizing requesters' needs.
- Created Key Performance Measures (KPMs) to standardize policy and procedure.
- Managed two project teams, reducing post-set up technical issues by 50%.
Education
Master of Science in Information Technology - Cyber Security
The University of Texas - San Antonio
05.2019
Bachelor of Business Administration - Cyber Security & Information Systems
The University of Texas - San Antonio
08.2015
Publication - Digital Forensic Education
An Experiential Learning Approach
ISBN 978-3-030-23546-802.2020
Skills
- Leadership
- Cloud Security (Azure, AWS)
- Incident Response and Detection
- Automation (Python, Terraform, Powershell, Bash)
- Linux, Windows, MacOS
- Vulnerability Management
- Log Analysis
- Threat Modeling/Hunting
- SIEM and SOAR
- Training and Awareness
- Security Operations
- CI/CD Pipelines
Certification
- Cybersecurity Architect SC-100, Microsoft
- Identity and Access Administrator Associate SC-300, Microsoft
- Azure Security Engineer Associate AZ-500, Microsoft
- Azure Fundamentals AZ-900, Microsoft
- AWS Certified Cloud Practitioner, Amazon
- Air Force Officer Qualifying Test
- Network+ CE, CompTIA
- Security+ CE, CompTIA
- Certified Support Professional, TSIA
professional Development
- Cloudflare Zero to positive API security, 2023
- Codecademy and Udemy, 2023
- Microsoft Azure Open-Source Day, 2023
- Microsoft Cybersecurity Architect Training SC-100, 2023
- Microsoft Identity and Access Administrator Training SC-300, 2023
- IBM QRadar Master Skills University, 2022
- General Motors GeekWeek, 2022
- Texas Cyber Summit, 2022
Timeline
Senior Security Engineer
HealthJoy
06.2023 - Current
Cloud Security Engineer
General Motors
01.2023 - 06.2023
Lead Security Engineer
General Motors
08.2022 - 01.2023
Platform Security Engineer
General Motors
06.2019 - 08.2022
Security Risk Analyst Internship
MUY
01.2018 - 05.2018
Product Support Engineer
Becton Dickinson
01.2017 - 06.2019
System Analyst
Accenture
02.2016 - 01.2017
Master of Science in Information Technology - Cyber Security
The University of Texas - San Antonio
Bachelor of Business Administration - Cyber Security & Information Systems
The University of Texas - San Antonio
Publication - Digital Forensic Education
An Experiential Learning Approach
Similar Profiles
Citeria M. PlummerCiteria M. Plummer
Member Marketing Specialist at HealthJoyMember Marketing Specialist at HealthJoy
Yonna ParhamYonna Parham
Medical Bill Review Advocate at HealthJoyMedical Bill Review Advocate at HealthJoy
Adam CheneyAdam Cheney
Desktop Support Specialist at Southwest AirlinesDesktop Support Specialist at Southwest Airlines