Nissi Saphir
Draper,UT
Summary
As a Junior Cloud Security / AWS Solutions Architect, I thrive in complex problem-solving situations with an analytical and driven mindset to deliver solutions at all costs. I have a wealth of experience in information security, risk management, and architectural diagram with other special sets of skills in managing server infrastructures and data center operations. While also being able to implement upgradable, scalable, Hyper-Converged infrastructure to help Clients achieve business agility, scalability, high availability, and flexibility within a strong AWS ecosystem of high efficiency.
Overview
3
3
years of professional experience
1
1
Certification
Work History
AWS Cloud Security / Solutions Architect
Humana Inc
08.2021 - Current
- Monitored daily customer's cloud security infrastructure, security logs, and administration of security-related services/products/tools in their enterprise environment.
- Reviewed system designs and architectures and made security-related recommendations.
- Reviewed, Developed, executed, and maintained security policies and procedures.
- Led a build-out of the cloud security control catalog, security policies, and procedures and assisted in enforcing them.
- Successfully delivered multiple cloud migration projects securely.
- Analyzed existing cloud structures and created new and enhanced security methods.
- Helped Define, Develop, and Implement a framework to deliver "Security as a Service" for the customer.
- Stayed abreast with emerging cloud technologies and their AWS implementations, as well as their impact on the security landscape.
- Coached, mentored, and developed team members in AWS and other life skills.
- Supported and led security incident response in a cross-functional collaboration environment driving towards incident resolution.
- Developed incident response initiatives that improved our capabilities to respond and remediate security events faster.
- Performed analysis of logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify and investigate potential threats.
- Built automation for identification, response, and remediation of malicious activity.
- Experience “threat hunting”, i.e., using threat intel to proactively and iteratively investigates these potential risks and finding suspicious behavior in the network.
- Collaborated with the Security Operations Center (SOC) to evaluate vulnerabilities discovered during scans and effectively communicate them to the appropriate remediation team.
- Managed customers enterprise-scale solutions that leverage the following AWS Services: EC2, S3, EBS, SSM, Dynamo DB, EMR, CloudFormation, RDS, CloudFront, VPC, Route53, IAM, CloudWatch, Elastic Beanstalk, Lambda, etc.
- Hands-on experience in performance tuning, including the following: (load balancing, web servers, content delivery Networks, Caching (Content and API).
- Responsible for planning, designing, and developing cloud-based applications, managing cloud environments in accordance with security guidelines.
- Proactively monitored resources and applications using AWS CloudWatch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS, and configured notifications for the alarms generated based on events defined. Drafted visual representations of software architecture design for presentation to stakeholders.
- Mentored team, sharing skills and expertise, and encouraged each member to bring forward ideas and suggestions for improvement.
- Worked with customers or prospective customers to develop integrated solutions and lead detailed architectural dialogues to facilitate the delivery of comprehensive solutions.
- Managed project planning, resource allocation, scope, schedule, status, and documentation.
- Threat-modeled web applications and worked with the development team throughout the agile SDLC process for the customer.
- Perform web application vulnerability assessments and penetration tests while also providing security and compliance requirements for software development projects.
- Provided technical requirements and enterprise solution design for global data encryption and key management solutions for all key lifecycle and regulatory use cases and worked with global technology teams to help them understand and integrate the data encryption and key management requirements into their tools to support the encryption and key management solutions.
- Architected and operated solutions built on AWS Platform. While also delivering multiple multi-million dollar migration projects securely, efficiently, and within budget.
- Created business continuity/disaster recovery, fail-over, and runbook documentation.
- Ensured security is integrated into all cloud architecture solutions built.
- Responsible for creating VPCs for the Dev/test team, simulating a production environment for web/application servers and database traditional servers in public and private subnets, respectively.
- Built VPCs from scratch and with CloudFormation to automate the infrastructure as a code build-out process, created private and public subnets in specific regions such as U.S East 1, U.S East 2 where customers resources are mostly deployed, creating security groups and network access lists, configuring internet gateways, OpenVPN, creating AMI, understanding of user access management/role based access/multi-factor authentication and API access, configuration of auto-scaling and elastic load balancer for scaling services if a configured threshold has been exceeded, the configuration of SNS to send notifications and Cloud Watch to collect logs and metrics.
- Participated in deep architectural discussions to build confidence and ensure customer success when building new and migrating existing applications, software, and services on the AWS platform.
- Proactively monitored resources and applications using AWS CloudWatch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS, and configured notifications for the alarms generated based on events defined.
- Communicated with partners and clients to update product and implementation status at a technical or functional level.
- Provided support during customer implementations and applied industry best practices.
Education
Associate of Applied Science - Cloud Computing And Devops
AWS JJtecch Academy
Maryland, United States07.2024
Bachelor of Science - Public Health Education
Utah Valley University
Orem, UT05.2023
Skills
- VPC/Networking, Migration, System Manager, and other configurations management tools
- Team leadership/Security Awareness Readiness, Team Motivation / Self-motivation, Information Protection and Analysis
- Governance, Risk & Compliance (GRC) AWS, Google Cloud, Database Querying Languages; MySQL, NOSQL/DynamoDB, AWS Firewall (Security Group and NACL)
- AWS WAF, Control Tower, AWS Security Guardrails, AWS Landing Zones, Security Hub,
- Amazon Web Services (EC2, EBS, S3, IAM, AMI, VPC, VPC Peering, NACL, Security Groups, Route53, Auto Scaling Group, ELB, SNS, CloudWatch, Elastic Beanstalk, CloudFormation)
- Jira Software, Guardrails Configuration, IAM, Lambda, AWS Amplify, AWS Resource Manager
- Cloud Security Visibility and Compliance; AWS GuardDuty, VPC Flow logs
Certification
- AWS Certified Cloud Practitioner - Certified
- AWS Certified Security Specialty - Certified
- AWS Certified Solutions Architect Associate - in progress
Timeline
AWS Cloud Security / Solutions Architect
Humana Inc
08.2021 - Current
Associate of Applied Science - Cloud Computing And Devops
AWS JJtecch Academy
Bachelor of Science - Public Health Education
Utah Valley University
- AWS Certified Cloud Practitioner - Certified
- AWS Certified Security Specialty - Certified
- AWS Certified Solutions Architect Associate - in progress
Similar Profiles
Daron ShealyDaron Shealy
Risk Adjustment Representative2 at Humana IncRisk Adjustment Representative2 at Humana Inc
Robert CieslewiczRobert Cieslewicz
Grievance Appeals Specialist at Humana IncGrievance Appeals Specialist at Humana Inc
Andrew HendersonAndrew Henderson
Claims Representative at HUMANA INCClaims Representative at HUMANA INC