Ryan Palmisano

Penetration tested their entire ego-system which took roughly a month and half. I used the latest OSINT, OWASP, and Offensive Security based tooling to find and catalogue all digital assets we should be concerned with and made a report using latest practices.

As DevOps, created terraform modules to expand their current CI/CD pipelines and telemetry to use Lacework, an enterprise security tool.

Expanded our repos to include security.md's and created pipelines to write findings with PR's

Expanded both pre-commit, and post-commit tests to include dataloss checks.

Added Google SSO, and authenticator best practices to the entire org, reducing the many SSO's into one and enforcing MFA for our most privileged human accounts.

Managed and troubleshot active services with K9s, terminal, and linux knowledge

Leveraged NIST CSF, Site Reliability Engineering, and K8's to augment the security practices in AWS and make them as reliable as the services themselves, with 99.9% uptime. These were mostly OSINT tools that were catered to the company and repeatable tasks they normally hire for.

• Managed end-to-end security assessments of applications, identifying vulnerabilities and providing remediation guidance to development teams
• Implemented and maintained security tools such as SAST, DAST, and dependency scanning in CI/CD pipelines to ensure secure code deployment
• Led the design and implementation of secure coding practices and standards across multiple development teams with measurable improvement to our bug bounty report volume.
• Conducted regular security training sessions for developers and stakeholders to increase awareness and adherence to security best practices with high quality content and labs.
• Collaborated with cross-functional teams to integrate security into the SDLC and promote a culture of security by design in all application development efforts

• Implemented and maintained security measures to protect company's network infrastructure and sensitive data from cyber threats and attacks.
• Conducted vulnerability assessments, penetration testing
• Wrote SAST/Unit tests, developed DAST/IAST/MAST for critical services alongside SRE.
• Developed and enforced security policies, procedures, and best practices to ensure compliance with industry regulations and standards
• Aided in creating new Infra-as-code modules and golden images for cloud hosted services or reimplementing existing modules securely.
• Built custom static analysis tools for Infra-as-code based repositories.
• Built our SIEM from scratch by myself and maintained a 1M per year licensed in AWS. This was one of our companies most critical services for security.

• Created an authenticated and lean vulnerability management platform based on Nessus's API, providing bug observability and telemetry for the first time to our DevOps engineers.
• Experience building log aggregation platforms from scratch and scaling them to accomodate 1Tb+ log throughput daily with great query response under heavy load.
• Conducted forensic analysis of security incidents and created root cause analysis reports and post mortems. Drove remediation efforts and compliance attestations.
• Created tooling that audited infra-as-code and terraform state files using TFSec and other CLI based security tools. This helped triage and backlog security problems to Jira/Github/Gitlab.
• Network penetration testing.

• Deep experience with PCI-DSS, and migrating payment services into AWS cloud hosted environments built to pass PCI audits.
• Analyzed current security systems and identified areas for improvement or augmentation. 
• Did CIS benchmarks and optimization of security controls for AWS environments.
• Performed vulnerability testing and penetration testing on customer assets to identify security weaknesses with Kali Linux and gave high quality weekly vetted reports to leadership.
• Created P1 escalations and managed live security incidents when found through analysis for our customers. Did senior technical oncall escalations and damage control for zero days and indications of compromise.

• Conducted data center operations, including physical and virtual server environments, network services, storage devices, and application infrastructure.
• Troubleshot and resolved various network and server issues in a timely manner.
• Installed, configured, and maintained industry standard routers, switches, firewalls, and load balancers.

• Led a pivotal initiative to modernize fraud detection systems,  transitioning from an outdated dot-matrix printer-based system to a  sophisticated, code-based heuristic detection system using Perl.