Parwiz Rahimi
DevSecOps
Fort Belvoir,VA
Summary
Strong Devops security analyst with over 5 years of experience in DevOps, specializing in creating robust CI/CD pipelines in AWS and DevOps environments. Proficient in AWS Cloud, Terraform, Docker, Kubernetes, GitHub, Jenkins, SQL, and Python, focusing on SOC operations and threat detection. Acknowledged for exceptional technical writing skills and adept at managing endpoint protection utilizing Tenable and CrowdStrike tools. Possesses extensive expertise in secure protocols, network security, and data protection strategies. Well-versed in Information Security frameworks like NIST, ISO 27001, and SABSA. Holds entry-level information security certifications and committed to ongoing professional development for career advancement. Knowledgeable with solid background in automating infrastructure, managing CI/CD pipelines, and enhancing system reliability. Proven track record of implementing scalable solutions and optimizing deployment processes. Demonstrated expertise in cloud services and scripting, effectively collaborating with cross-functional teams to achieve operational excellence.
Overview
8
8
years of professional experience
16
16
years of post-secondary education
8
8
Certifications
Work History
DevOps Engineer
TransCore
03.2022 - Current
- Delivered proactive security support to clients, ensuring secure environments and continuous business operations through effective threat management.
- Managing real-time threat intelligence and endpoint protection with Tenable and CrowdStrike.
- Conducted regular vulnerability scans with Tenable, collaborating with SOC teams to prioritize, address, and remediate identified vulnerabilities, maintaining compliance and minimizing risk exposure.
- Created and maintained comprehensive, wiki-style documentation to support SOC teams and new employees in understanding threat detection, remediation processes, and security protocols.
- Monitored and managed project environments for end-of-life (EOL) systems, employing secure protocols, data protection techniques, and DLP measures to safeguard sensitive information.
- Conducted deep-dive log analysis and malicious artifact investigations, identifying anomalies and trends to proactively enhance threat detection capabilities.
- Applied information security frameworks such as NIST, ISO 27001, and SABSA to support compliance and bolster secure practices across various client environments.
- Utilized CrowdStrike’s threat intelligence to monitor unauthorized access attempts, refining phishing awareness and incident response through targeted user training.
- Actively pursued professional growth through security certifications, staying informed on evolving standards and best practices.
Cloud Engineer
Synology America Corp
08.2018 - 01.2022
- Designed, built, and deployed cloud-based applications using Amazon Web Services (AWS)
- Led the design, development, and deployment of multiple cloud-based applications using AWS services, resulting in improved scalability, reliability, and cost-efficiency.
- Successfully migrated a portfolio of on-premises applications to the cloud, leveraging AWS migration tools and methodologies, resulting in enhanced performance and reduced infrastructure costs.
- Oversaw the management and maintenance of cloud infrastructure, including provisioning and configuration of virtual machines, storage, and networking components.
- Effectively troubleshooted and resolved complex cloud-related issues, ensuring minimal downtime and optimal system performance.
- Provided technical support to users, responding to inquiries, troubleshooting issues, and guiding them in leveraging cloud resources effectively.
- Collaborated with a team of engineers to conceptualize, design, and implement innovative cloud-based solutions, leveraging AWS services and best practices.
- Implemented cloud security measures, including IAM roles, network access controls, and encryption, ensuring data privacy and protection.
- Monitored cloud resources and utilized automated scaling techniques to optimize resource allocation and handle fluctuating workloads effectively.
- Worked closely with development teams to integrate cloud services into application architecture, enabling seamless deployment and utilization of cloud capabilities.
- Conducted thorough analysis of cloud usage and costs, providing recommendations for optimizing resource utilization and cost savings.
- Actively participated in cross-functional meetings and discussions to contribute expertise and insights in developing strategic cloud initiatives.
- Stayed up-to-date with the latest cloud technologies and trends, continuously expanding knowledge to drive innovation and improve cloud solutions.
- Used metrics to monitor application and infrastructure performance.
- Reduced server downtime by proactively monitoring cloud resources and addressing potential issues before they escalated.
CLOUD SYSTEM ANALYST
Cloud Lake Technology
08.2017 - 08.2018
- Supported and provided coverage to the 24/7/365 Website and application.
- Worked directly with end users to provide recommendations and assistance.
- Supported various special projects as required by the client.
- Performed site imports as required, achieving 90 Percent accuracy.
- Identified, triaged, and resolved all reported incidents (24x7x365) across major platforms hosting hundreds of sites used worldwide, following the established incident management process and completing the Incident Report as required.
- Trained end-users to perform the resolution steps through self-service, or by another area, such as AWS Platform Operations based on Cloud Lake's organizational structure and separation of duties principles in place.
- Worked closely with end users to implement change requests on their websites, this can include importing content, reorganizing content, and providing guidance on the placement and formatting of content.
- Worked closely with AWS Platform Engineering, Security, and Development teams to incorporate customer feedback and address key support and usability concerns for customers.
- Performed manual changes required after a production push of new development.
- Assisted in the development and implementation of internal knowledge base.
Education
Master of Science - Information Technology
American Public University
Charles Town, WV 05.2001 - 05.2017
Skills
Python
Tenable
CrowdStrike
Compliance & Vulnerability Management:
AWS Infrastructure Management
Vulnerability scanning
Infrastructure as Code (CloudFormation, Terraform)
Monitoring and Alerting (AWS CloudWatch)
Security and Compliance
GitHub
Customer service
Data backup and recovery systems
LAN and WAN expertise
HTML, PHP, CSS
DevSecOps integration
Terraform
Docker
Kubernetes
AWS DEVOPS
Jenkins
Github
Certification
CompTIA Security Plus certified. January -2021
Interests
In my leisure time, I enjoy reading books, playing video games, and playing Cricket
Timeline
DevOps Engineer
TransCore
03.2022 - Current
Cloud Engineer
Synology America Corp
08.2018 - 01.2022
CLOUD SYSTEM ANALYST
Cloud Lake Technology
08.2017 - 08.2018
Master of Science - Information Technology
American Public University
05.2001 - 05.2017