Michael Shaw
Security Architect
St Louis,United States
Summary
Security Architect with 19 years of professional experience including CI/CD pipeline development, App-Dev + Cloud Security and Compliance, Agile Development, and Systems Administration
Security and Compliance for App Dev and Cloud Engineering
CI/CD and Data pipeline development
Domain, Agile Development
Cloud Systems Administration
Over 8 years of experience in AWS, Azure, GCP automation, configuration and deployment.
Team-focused, leader with the ability to overcome setbacks and drive mission toward completion through effective communication and collaboration
Continually learning and gaining proficiency in new protocols, languages and stacks through self-study.
Thrives on sharing knowledge through mentorship and cross-training with peers, subordinates and leadership to increase organizational intelligence and efficiency
Overview
36
36
years of professional experience
8
8
years of post-secondary education
Work History
Business Technology/Security Architect-Consultant
CASTLE FORTRESS CONSULTING
Saint Louis, MO
03.2012 - Current
- Please mark DMs CFC if you wish a consultation or chat:
- Provide guidance to clients on Cloud services, networking, security, equipment based on client needs and future use cases
- Conduct business security posture needs assessments and root cause analysis for client requirements
- Recommend appropriate IT services, platforms tailored to client size and budget
- Security Gap Analysis for Entire Technology Footprint
- Provide Professional services as Security Architect Consultant
Security Architect/Engineer
Noname Security
01.2021 - 03.2022
- As A Client Security Architect/Engineer (Post-Sales) I am responsible for ensuring a world-class postsales experience for enterprise clients
- Serve as the technical liaison between the client and NNS internal teams
- Work closely with the account support team to ensure that all client needs and requirements are on track or ahead of schedule
- Assist in the deployment and integration of the Noname platform with client data sources and integration
- Assist client in developing operational plans for client’s maximum value
- Proactively identify and communicate areas for improvement on Noname platform
- Provide enablement and training to customers, internal teams as SME
- Work cross-functionally with Product Management, Engineering, Sales, Solution Architecture, Marketing and other internal teams in a collaborative and cross functional manner
- API security solution delivers on current and future needs
- Worked jointly with Customer Success Managers to ensure goals and milestones were met for each customer
- When technical obstacles arise; use ad hoc strategizing and outside of the box tactical experience to determine and retain a bias of action in client’s best interest; Security First Mindset
- Additionally employ a strong knowledge of API security, SaaS and cloud infrastructure to drive deployment for Noname API platform
- SME for platform API clustering, OWASP training and SSO solutions architecting
- Client list and technical details are prohibited by NDA.
Combat Engineer (12B)
Missouri Army Nat'l Guard
Farmington, MO
09.2018 - 09.2021
- Was M-Day Soldier (One weekend a month/Two Weeks a Year)
- Construct fighting positions, fixed/floating bridges, obstacles, and defensive positions
- Conduct operations that include route clearance of obstacles and rivers
- Prepare and install firing systems for demolition
- Detect, Mark and Clear enemy obstacles
- Enhance and Maintain Unit Combat mission effectiveness
- Inactive Secret Clearance
Application Security Architect
Nestlé Purina North America
Saint Louis, MO
12.2019 - 12.2020
- As a Technical Lead I oversaw the strategic steering of several Direct to Consumer (D2C) in application development and cloud platforms
- Where possible to unify learned experiences, processes and procedures which directly empower teams to iterate their collective code bases
- Am the Technical Owner for App/Dev Security and Compliance requirements across cross functioning Operating Companies (OpCos), Departments and Teams
- Led PoC for SSO Extensible Keycloak as an Internal Solution for IAM/Authentication B2C needs. Keycloak solution was adopted and replicated many times over by different Teams
- Led Cloud Engagement in the Data Analytics New Business Models Guild; Partnered with Data and AI Teams to Create Standard Cloud Data API. Useable via code repo and templates to any dev team at Purina
- * Applied a platform-minded approach to design, implement and manage the applications and infrastructure solutions in Nestlé Purina DTC’s public cloud environments (Microsoft Azure, AWS, GCP)
- * Work alongside the Nestlé Purina DTC Development Teams to improve DTC platform technology options while preserving development and delivery to increase engineering velocity
- Designed and implemented security and compliance systems/tools to improve reliability, scalability, security and performance using Agile Methodologies
- Manage relationships with internal and external service providers to ensure support activities (App APM, Infra-monitoring, -alerting, -logging, -incident management) are executed according to best practices and SLAs
- Consult and advise with Leadership and Stakeholders to define processes for Development Team and/or MSPs to identify and implement fixes and improve solution architectures and business needs
- Provide recommendations for future-state needs (talent, MSPs, solutions, processes) to drive excellence in cloud hosting, Agile DevOps practices, security and compliance for Nestle NA and Purina DTC standards
Senior Cloud Security Consultant (with Sr DevSecOp
UniGroup, QDivision
Fenton, MO
12.2018 - 12.2019
- Within a highly agile environment, works closely with team of DevOps engineers focusing on providing our customers with a highly robust and scalable cloud native software delivery platform, a polyglot toolchain and a flexible CI/CD framework.
- Architects solid technical design and approach to operations in large scale infrastructure environment.
- Responsible for maintaining and building cloud infrastructure and managing multiple products in production, pre-production, quality, performance and development environments with varying technologies and lifecycles.
- Operates effectively in fast-paced, iterative development environment
- Works closely with team of DevOps/Data/Software engineers to ensure efficient operation of daily activities, developer productivity and continuous improvement of products and processes
- Responsible for the timely delivery and reliability of operational processes within multiple environments
- Directly interface with the engineering and product leadership to architect solid technical design and approach to operations
- Build, support and maintain cloud infrastructure, operating systems, and support software
- Practice daily standups, bi-weekly retros, weekly backlog grooming, and quarterly goal meetings
- Responsible for the development of automation for deployment of the Infrastructure Team's enterprise software to cloud environments
- Coordinate efforts to help drive the effectiveness of processes under which team operates and delivers releases
- Stood up, co-founded Q-Division data analytics team, whose data and analytics became the backbone of several business centers company-wide, company spin offs
- Served on Q-Division Incubator Committee for better promotion of Ideas-To-Pipeline Codeathons, cochaired Security-To-Pipeline, Data-To-Pipeline and DDev-SDev-ADev-To-Pipeline courses and training workhack days and mini-events
- Refractor terraform, GitLab repos, image scripts, build scripts, app scripts, and code as needed
Senior SecDevOps Engineer
Boundless Geo Spatial
Saint Louis, MO
01.2016 - 12.2018
- Security lead on ISO 27001, NIST-800 Compliance Audit and Internal Matrix Gap Security Analysis for
- Government Contract work, facilities clearance process
- Apply Domain Engineering and Domain Knowledge where possible as these have been key to teamand company flexibility
- Reported to CFO for role, tasks, projects and assignments
- Coordinated and collaborated with all company departments
- Designed, deployed, automated, tuned and migrated infrastructure for internal legacy servers andclient facing application on Azure and AWS using Ansible, Terraform, AWS CloudFormation
- Led DevOps teams to use kubernetes clusters for deployment of code in Dev, Sandbox, NonProd andProd
- GitHub CI/CD using webhooks and api calls for certain code repos to Jenkins
- Application performance management and audit logging through custom ELK stack and
- CloudWatch/CloudTrail monitors and alerts
- Architected and migrated Legacy Apache LDAP servers to OKTA, Cloud Azure AD; Used Auth0 forb2b auth
- Spearheaded and founded BGS Data and Analytics Team, each member was part of overlappingbusiness centers
- This team was key to advising Senior
- Leadership with insight and guidance for client relations and contacts
- Professionally presented company software as the Technical Engineer in PoCs, Demos for
- VIPs,stakeholders, pre-sales, sales and client meetings
- Advanced and helped revise company APIs into dev/code first reliability
- Developed and automated IT operations using scripting and/or cloud services
- Served as secondary and tertiary on-call for Systems Admin/DevOps team coverage
- Used Chef InSpec, Kali Linux, Center for Internet Security (various templates and tools), Blackduck (Synops) for penetration testing and auditing/strengthening security posture
- Systems administrator for all company assets, services and platforms
Systems Administrator II/III (Linux, MANTAS)
Edward Jones
Saint Louis
10.2012 - 12.2015
- Introduced use of Docker for containerization of legacy apps
- Updated, maintained, monitored and patched Information Security Systems Regulatory and Legal
- Support Team’s (ISS-REGLEG) Windows and Linux (RHEL) servers
- Responsible for administration and upgrading ISS-REGLEG team’s Oracle MANTAS/Financial Services Analytical Application Infrastructure (versions 5.8.1-7.3)
- Maintained and Established MANTAS Daily Data Pipeline, cut 8 hours off the processing time using auto-scaling docker containers
- Troubleshot and corrected data, database servers, application and systems malfunctions
- Spearheaded use of Docker into Production and lower supporting environments
- Updated application toolchain for easier to automate Docker images
- Retrofitted legacy application to use containers; dramatically increasing efficiency
- Minor migration of Sub Module of Application to AWS as a testbed for lower environments
- Performed minor database maintenance tied to ISS-REGLEG team’s servers Yearly
- Automated and scripted where possible manual workloads
- Optimized ISS-REGLEG team’s MANTAS server data rolling 6 days of financial analyzed data to 180 days using same server space
NCO/Data Manager/Information Security Specialist
US ARMY NATIONAL GUARD
Jefferson City, MO
10.2008 - 10.2014
- Went Full-Time Guard Data Systems and Networking Engineer position July 2010-October 2012
- Floated between Infrastructure, Networking and regularly collaborated with State Cyber Security Team
- Identified computer-user problems and coordinated resources required to resolve them
- Installed, configured and monitored LANs, WLAN and WAN networks, hardware and software
- Logged service and trouble tickets and use help desk software to track issues and document resolution
- Performed troubleshooting and root cause analysis, averting re-occurrence
- Administered workarounds where immediate resolution is not possible
- Provided network administration services including password retrieval, set up of email accounts, security and troubleshooting
- Tested and maintained computer systems and programs
- Conducted data system studies, audits and prepare documentation and specifications for proposals
- Held Secret Clearance
- US Army A+, Security+, Network+ Certified, Microsoft Certified Systems Engineer, Microsoft Certified Systems Administrator and Microsoft Certified Desktop Support Technician, Cisco Certified Entry Networking Technician
Network Engineer/Technician
Honeywell Technology Solutions, Inc.
Millington, TN
09.2010 - 02.2011
- Constructs networking components, subunits of equipment, or prototype networking models to meet customer network security-engineering requirements
- Troubleshoots and corrects network malfunctions using specialized test and diagnostic equipment and software
- Redesigns as necessary
- Prepares operating and malfunction reports
- Records and evaluates data and report findings for mass notification sound checks and network optimization
- Read blueprints, wiring diagrams, schematic drawings, and engineering instructions for assembling equipment
- Programmed Lenel, Cooper Notification, Amag security servers and subordinate networking equipment and workstation clients
- Covered installment, maintenance of US Military base wide mass notification, security access and monitoring equipment and subordinate networking infrastructure
- Programmed, installed and maintained Cisco routers and switches, which interfaced with base, mass notification and security access equipment
- Provided for and updated server and workstation operating systems, software firewalls, antivirus and backup systems attached to mass notification and security access machines
- Optimized, tested, updated, installed and maintained base wide cellular/wireless transmitters, receivers and access points attached to mass notification and security access equipment using software and hardware tools
Technical Support Desk Specialist
CPI CORP
Saint Louis, MO
03.2008 - 06.2010
- FTE
- Provide troubleshooting on various equipment including servers, uninterrupted power supply systems, network attached storage systems, Dell printers, Shinko and Sony digital imaging printers,
- Michael Shaw - page 7 laptops, client computers, monitors, network switches and hubs, modems, cables, cameras, lighting systems, phones, credit card terminals
- Log and track issues and assets using Remedy ticket tracking software program
- Responsible for integrating and installing new servers as member of the Tech Desk server conversion team
- Utilize Windows Server 2003, Windows XP, Vista, various digital imaging software and various network utilities to diagnose network issues
- Assist in the design, preparation, editing and testing of computer software
- Design and write batch files and scripts for Windows OS
- Implement networking initiatives including support and configuration of LANs, WLANs and company
- WAN
- Provide technology support for more than 3500 Sears and Picture Me portrait studios
- Configure, repair and install antivirus, drivers, RAID software, SQL, .NET, Altiris, UltraVNC, Remote
- Desktop Services and Timbuktu Pro for client computers, laptops, and servers
- Facilitate training and support for newly hired Technical Support Desk Specialists
Radio Frequency Data Collector
ADEX CORP/AT&T/ALCATEL-LUCENT
Saint Louis , MO
07.2006 - 04.2007
- Tested, collected and optimized cellular data for the roll out of AT&T's 3G network in the
- St
- Louis area
- Analyzed, collected, stored and configured 3G cellular data using proprietary Alcatel-Lucent software suite
- Facilitated training and support for newly hired Radio Frequency Data Collectors
Public Affairs Specialist
United States Air Force
Whiteman AFB, MO
06.1999 - 06.2003
- Learned the art of interviewing people for News stories, features and special editions
- Assisted in planning, organizing, coordinating, and conducting internal community and media relations
- Performed functions of editor, staff writer, sports page editor and digital photographer for the Whiteman
- Spirit
- Utilized Adobe Photoshop, QuarkXPress and Adobe Pagemaker on Windows and Mac in newspaper design and layout
Education
Bachelor of Science - Network And Communications Management Degree
DeVry University
Saint Louis, MONo Degree - General Studies
Community College of The Air Force
Montgomery, AL 06.1999 - 06.2003
High School Diploma -
View of The Lighthouse
Fond Du Lac, WI 09.1995 - 05.1999
No Degree - General Education
Saint Louis Community College
St Louis, MOAdditional Information
Technical Skills Matrix
Cloud: AWS, Azure & GCP
Security Standards: NIST, FEDRAMP, ISO, DoD Clearance(s), FINRA, FINCEN
API Security/Code Scanning: Noname API, Prismacloud, Blackduck, CIS Benchmark, Bridgecrew, SonarQube, Sonatype, Sysdig, Snyk, Nightfall, KaliOS, ParrotOS, Rapid 7
Authentication B2B and B2C: KeyCloak, OKTA, AWS IAM, AZURE AD
Kubernetes: AWS EKS, Azure AKS, GCP GKE, RKE, Openshift
Programming Languages: C#, Java, JS, Python
Scripting: Shell, Python, Perl, Powershell
Operating Systems: Windows/Windows Server, Linux/Unix (Ubuntu, Fedora, RHEL, Solaris), Mac OSX
Web/Application Servers: Tomcat, Web logic, Apache, Nginx, Caddy
Version control: GitHub, Git, Gitlab
CI Tools: Jenkins, Bamboo
CM/Provisioning Tools: Terraform, Vault, Openshift, OKD, Ansible, CodeDeploy, AWS CodePipeline
Database: MySQL, MS Access, Oracle DB, RDS, PostGres
Ticketing Tools: JIRA, Remedy, ServiceNow, Samanage
Monitoring Tools: G Suite Console, Office 365 Console, CloudTrail, CloudWatch, Logstash, Kibana, Splunk, Nagios, Athena, Datadog, New Relic, Sysdig
Virtualization Technologies: VirtualBox, Proxmox, Hyper-V, VMware, KVM, Docker, Kubernetes, Lambda, Harvester
Timeline
Security Architect/Engineer
Noname Security
01.2021 - 03.2022
Application Security Architect
Nestlé Purina North America
12.2019 - 12.2020
Senior Cloud Security Consultant (with Sr DevSecOp
UniGroup, QDivision
12.2018 - 12.2019
Combat Engineer (12B)
Missouri Army Nat'l Guard
09.2018 - 09.2021
Senior SecDevOps Engineer
Boundless Geo Spatial
01.2016 - 12.2018
Systems Administrator II/III (Linux, MANTAS)
Edward Jones
10.2012 - 12.2015
Business Technology/Security Architect-Consultant
CASTLE FORTRESS CONSULTING
03.2012 - Current
Network Engineer/Technician
Honeywell Technology Solutions, Inc.
09.2010 - 02.2011
NCO/Data Manager/Information Security Specialist
US ARMY NATIONAL GUARD
10.2008 - 10.2014
Technical Support Desk Specialist
CPI CORP
03.2008 - 06.2010
Radio Frequency Data Collector
ADEX CORP/AT&T/ALCATEL-LUCENT
07.2006 - 04.2007
No Degree - General Studies
Community College of The Air Force
06.1999 - 06.2003
Public Affairs Specialist
United States Air Force
06.1999 - 06.2003
High School Diploma -
View of The Lighthouse
09.1995 - 05.1999
Bachelor of Science - Network And Communications Management Degree
DeVry University
No Degree - General Education
Saint Louis Community College
Similar Profiles
Jorge ChavezJorge Chavez
Tool Mechanic at Fortress Downhole ToolsTool Mechanic at Fortress Downhole Tools
Troy McCreryTroy McCrery
Senior Vice President Chief Retail Officer at Fortress BankSenior Vice President Chief Retail Officer at Fortress Bank
Jimmy Dee ChildressJimmy Dee Childress
Vice President of Commissioning and Startup at New Fortress EnergyVice President of Commissioning and Startup at New Fortress Energy
Eydie DummittEydie Dummitt
Scrum Master at The Boeing CompanyScrum Master at The Boeing Company
Raja Al AbdRaja Al Abd
Registered Nurse Emergency Department at Mercy Hospital SouthRegistered Nurse Emergency Department at Mercy Hospital South