Summary
Overview
Work History
Education
Skills
Certification
Work Availability
Accomplishments
Affiliations
Work Preference
Timeline
SeniorSoftwareEngineer
Neale Edwards

Neale Edwards

Cyber Security Architect
Suffolk,VA

Summary

Senior Cyber Security professional with over 20 years of experience in technical implementation, consultancy, and leadership. Expertise in cloud security across AWS, Azure, and hybrid environments, complemented by a deep understanding of zero-trust principles and digital transformation. Proven track record in developing robust security solutions aligned with NIST CSF, PCI DSS, and other regulatory standards. A recognized thought leader skilled in fostering collaboration between business units and executive leadership while delivering high productivity in large-scale global enterprises.

Overview

14
14
years of professional experience
1
1
Certification

Work History

Enterprise Principal Cyber Security Architect

Ferguson Enterprises
Newport News, VA
01.2020 - 11.2024
  • Provided actionable insights into operational risks with a focus on maintaining alignment with PCI, SOX, and other regulatory frameworks.
  • Provide and design reference and tailored architecture guidance and standards for Cloud Security and Networking Infrastructure technologies such as CNAPP, CSPM, CWPP, CaaSM, CASB, API Brokerage, Azure Policy, NSG, NVD, VDC, Entra, Azure Sentinel, and Defender as well as traditional aspects such as Firewall/IPS, Web Application Firewall, SSO, MFA, IAM/B2B/CIAM, PAM, Threat Prevention, Vendor Risk Reviews, Application Security, DSO to include SAST/DAST and Container vulnerability services, Infrastructure patterns, Endpoint Security and baseline standards, Mail Security, Vulnerability Management, Network Security, IOT/OT security, Wireless Security, DNS Security, Certificate and Key Management, Brand Protection, Data Security, and Cloud Security
  • Implemented Generative AI solutions leveraging MS Co-Pilot, Azure Open AI, Chat GPT, and Gemini.
  • Gained access into training LLM’s and identifying biased, unbiased, and homogentisic representations.
  • Delivered forward-facing insights on technical initiatives and monitored evolving market trends.
  • Developed enterprise-wide security vision aligned with business priorities.
  • Coordinate with IT teams and business owners to align reference architecture with business processes.
  • Expertise in providing risk solutions as well as vendor risk assessments and categories, including supply chain management
  • Conducted security reviews for migration and transition patterns, ensuring risk assessments were properly evaluated.
  • Enabled seamless collaboration between SOC/MSS and IR teams through structured onboarding.
  • Enhanced interoperability in Security Leadership initiatives across organizational divisions.
  • Directed security architecture functions across various organizational domains.
  • Contributed expertise to various councils within the organization, encompassing executive and senior-level groups.
  • Oversaw projects at the Architecture Review Board to optimize system designs.
  • Conducted annual reviews of Ferguson’s Standards program to ensure compliance with IT Security Policy.

Director, Cyber Security Solutions Architecture –Security Solutions Architect/SOC Integration Manager

CGI US
Richmond, VA
01.2018 - 01.2020
  • Steered strategic alignment with corporate vision and future business demands.
  • Executed supply chain security and risk assessments in collaboration with sourcing to comprehend SLA's.
  • Facilitated inter-business unit integrations with comprehensive stakeholder involvement.
  • Directed successful transition and integration of SOC services to an internal framework.
  • Facilitated Agile methodologies to enhance implementation of security solutions.
  • Presented business cases to clients for potential sales strategies.
  • Mapped compliance requirements, policies, and frameworks such as CSF, FedRAMP, and NIST 800-53 to tailor cyber strategies.
  • Reviewed numerous Cyber Security tools considering criteria such as requirements fulfillment, operational ability, cost-effectiveness, capacity handling, compatibility with other services, and overall viability.
  • Facilitated synchronization of tasks between onboarding areas and internal procedures.
  • Devised strategic blueprints to incorporate every suggested solution into the overall design.
  • Directed groups of engineers to ensure successful tool maintenance.
  • Suite consists of Network Access Control, NextGen-Firewalls, Vulnerability Scanning, File Integrity Monitoring, Security Event and Incident Management, User and Entity Behavioral Analytics, Security Orchestration and Automated Response, Cloud Access Security Broker, Identity and Access Management, Multi-factor authentication, File Integrity Monitoring, Data Loss Prevention, Password Vaulting and Privileged Access Monitoring, Threat Intelligence, Threat Hunting, and Endpoint Detection and Response, along with container security through both Docker and Kubernetes

Senior Consultant- Cyber Security Solutions Manager and Architect

CGI Federal
Fairfax, VA
01.2015 - 01.2018
  • Supported development of cutting-edge cybersecurity practices tailored to advancing technological landscapes.
  • Led development teams through complex solutions as product owner and innovator for multiple intellectual property offerings.
  • Conducted design and review of security policies, controls, frameworks, and solutions across diverse sectors such as banking, manufacturing in addition to healthcare.
  • Performed Security Posture Assessments to identify areas for improvement.
  • Conducted detailed threat modeling to enhance security measures.
  • Produced documentation including white papers, proposals, and service-level agreements.
  • Conducted scoping, strategy planning, design evaluation and testing for Cyber Security implementations.
  • Designed solutions in 'as a Service' architecture utilizing tools such as Qualys, Tenable Security Center, and Splunk.
  • Developed and managed SIEM solutions including Splunk, Logstash, and Azure Sentinel to enhance threat detection capabilities.
  • Optimized security operations by incorporating SIEM with SOAR.
  • Comprehensive expertise in NIST, FIPS, ITIL, and Cobit 5 frameworks.
  • Knowledgeable about Sarbanes-Oxley, FedRAMP, and FFIEC requirements.
  • Participated in initiatives related to HIPAA compliance for PII and PHI.
  • In-depth knowledge of controls mapping and correlation through NVD, OWASP, CWE, CVE, CCE, CPE, Sans Top 20, OVAL, CIS Benchmark, and SCAP
  • Skilled in attack tree analytics using tools like Amenaza and threat hunting with HIPS/EDR solutions, including EndGame, CrowdStrike, and Carbon Black.
  • Applied methodologies from frameworks like Cyber Kill Chain, ATT&CK, and CAPEC to enhance incident analysis.

Cyber Systems Architect 4

Northrop Grumman Information Systems
Newport News, VA
01.2011 - 01.2015
  • Facilitated IT audit management, metric collection, and senior leadership reporting.
  • Contributed to strategic decisions on the Risk Management Committee using specialized knowledge of Governance, Risk, and Compliance tools.
  • Designed rules to enhance capabilities of Endpoint, Firewall, DLP, and audit systems.
  • Conducted thorough analysis of incidents and identified potential threats and Indicators of Compromise (IOC's).

Education

Bachelor of Science Degree - Computer Information Systems

Saint Leo University
05.2012

Associate of Science Degree - General Studies

Tidewater Community College
05.2006

Skills

  • Cloud, network, and wireless security
  • IaaS, PaaS, SaaS security
  • Generative AI security strategy
  • Compliance management
  • Cyber security strategy
  • Vulnerability assessment and management
  • Risk management and mitigation strategy
  • Security policy development
  • Vendor security, sourcing and supply chain security
  • Identity and access management and Privileged access management
  • Firewall configuration
  • Security protocols
  • Penetration testing
  • Mobile security
  • System hardening, CIS Benchmarks
  • Malware analysis
  • Secure software development
  • Endpoint security
  • Social engineering defense
  • Disaster recovery and continuity planning
  • Application security
  • Business continuity planning
  • Threat modeling and threat hunting
  • Data encryption
  • Cryptography algorithms and certificates
  • Intrusion detection
  • Incident response
  • Security information and event management
  • Virtualization security
  • Access control
  • Threat intelligence
  • Leadership, Management, and facilitation
  • Presenting to Senior and Executive leadership
  • Translating deep technical expertise to different target audiences
  • Mentoring
  • Innovation

Certification

  • Certified Information Systems Security Professional (CISSP), #78587, 01/01/07
  • Certified Information Security Manager (CISM), #1322031, 03/01/13
  • Certified Information Security Auditor (CISA), #14114360, 03/01/14
  • Certified Risk and Information Systems Control (CRISC), #1518546, 03/01/15
  • CompTIA Security Plus Certification, 12/01/05
  • CompTIA Network Plus Certification, 02/01/06
  • ISACA - Artificial Intelligence Fundamentals, 01/01/20
  • AWS Technical & Business Professional, 01/01/15
  • FedRAMP 100a & 200a, 01/01/15
  • Controlled Unclassified Information (CUI) Executive Agent Certified, 01/01/17

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Accomplishments

  • Supervised team of 41 staff members.
  • Documented and resolved 47 Security Standards which led to increased audit efficiency and increased preparedness for future projects.
  • Developed 3 different Intellectual Property offerings.
  • Built a Managed Security Services offering and onboarded 29 clients.
  • Achieved success migrating services and processes for 52 mergers and acquisitions.

Affiliations

  • ISC2
  • ISACA

Work Preference

Work Type

Full Time

Work Location

RemoteHybrid

Important To Me

Career advancementWork-life balanceFlexible work hoursPaid time offStock Options / Equity / Profit Sharing401k matchPaid sick leavePersonal development programsHealthcare benefitsWork from home optionCompany Culture

Timeline

Enterprise Principal Cyber Security Architect

Ferguson Enterprises
01.2020 - 11.2024

Director, Cyber Security Solutions Architecture –Security Solutions Architect/SOC Integration Manager

CGI US
01.2018 - 01.2020

Senior Consultant- Cyber Security Solutions Manager and Architect

CGI Federal
01.2015 - 01.2018

Cyber Systems Architect 4

Northrop Grumman Information Systems
01.2011 - 01.2015

Bachelor of Science Degree - Computer Information Systems

Saint Leo University

Associate of Science Degree - General Studies

Tidewater Community College

Similar Profiles

  • Brendan Lindner

    Brendan LindnerBrendan Lindner

    Inside Sales at Ferguson EnterprisesInside Sales at Ferguson Enterprises

    View Profile
  • Alexander Soukthavone

    Alexander SoukthavoneAlexander Soukthavone

    IT Support Representative at Ferguson EnterprisesIT Support Representative at Ferguson Enterprises

    View Profile
  • Shaun Daniels

    Shaun DanielsShaun Daniels

    Inside Counter Sales / Will Call Manager at Ferguson EnterprisesInside Counter Sales / Will Call Manager at Ferguson Enterprises

    View Profile
Neale EdwardsCyber Security Architect