Summary
Overview
Work History
Education
Skills
Patents
Certifications
Testimonials
Awards
Presentations
Training
Other
Timeline
Generic

Ryan Washington

Summary


Accomplished and certified former AWS Security cloud engineer proffering extensive cloud monitoring, deployment, security and troubleshooting skills. Defined, built and maintained infrastructure using vendor-neutral and platform-specific tools. Organized and focused person with extraordinary leadership acumen.

Overview

31
31
years of professional experience

Work History

Principal Cloud Security Engineer

Interos.ai
05.2022 - Current
  • Hands-on technologist
  • Worked on both Engineering and Security teams
  • Cost reduction of AWS spend by over 50 percent
  • Automated SOC2 requirements (Observability and Monitoring) with CloudFormation and Terraform
  • Continuous security and monitoring of CI/CD pipelines
  • Working knowledge of Kubernetes (EKS and Fargate)
  • Spearheaded auditing, pruning, and securing IAM
  • Enhanced security through advanced SCPs, guardrails, and automation tools
  • Created wikis/documentation on each topic worked, such as Permission Sets, AWS Transfer, CloudWatch, EventBridge Rules Automation, etc
  • SCRUM master for Cloud Engineering team
  • Designed new cloud-native security initiatives to augment or replace traditional security methods that were retrofit for cloud assets
  • Design, code, and maintain multi-tiered AWS Cloud architecture in HA/DR
  • Perform knowledge transfer and training for different business units
  • Augmenting traditional on-prem security tools with AWS-native tools(GuardDuty, Security Hub, Inspector, AWS Config) and using provided remediation runbooks as well as writing customer runbook remediation scripts
  • Working operational knowledge of GCP.
  • Conducted thorough vulnerability assessments for cloud applications, recommending necessary updates and patches to maintain a secure environment.
  • Collaborated with cross-functional teams to identify and remediate potential security risks within the cloud environment.
  • Used metrics to monitor application and infrastructure performance.
  • Identified gaps in market to spot opportunities to create value propositions.
  • Developed secure cloud architecture designs, ensuring compliance with industry standards and best practices.

Staff Cloud Security Engineer

Ancestry.com
01.2022 - 05.2022
  • Primarily focused on AWS Cloud security
  • Architecting, testing, and configuring AWS Network Firewall with AWS Transit Gateway
  • Auditing IaC with automated tools to shift the security to developers
  • Focus on automation at scale while putting security gates as needed
  • Google Cloud Provider(GCP) infrastructure architecting and security.
  • Understood client needs and objectives by conducting proactive customer and data analysis.
  • Liaised with third parties to respond to security events and understand threat landscape.
  • Developed secure cloud architecture designs, ensuring compliance with industry standards and best practices.

Cloud Architect

Cetera Financial Group
08.2020 - 01.2022
  • Prepare for data center to cloud migration in AWS
  • Work with/manage external vendor in assisting in gathering requirements
  • Design new cloud-native security initiatives to augment or replace traditional on-prem security methods
  • Design and implement automated detection/alerting framework, integration with Splunk, and automated cloud-based incident response
  • Perform knowledge transfer and training for different business units
  • Training NOC/SOC on cloud security issues that arise.
  • Ensured regulatory compliance by adhering to industry standards while designing and implementing secure cloud infrastructure solutions.
  • Wrote and maintained custom scripts to increase system efficiency and performance time.
  • Provided 2nd and 3rd level technical support and troubleshooting to internal and external clients.
  • Designed and implemented system security and data assurance.
  • Managed and monitored installed systems for highest level of availability.
  • Paid attention to detail while completing assignments.

Security Transformation Engineer

Amazon Web Services
12.2015 - 08.2020
  • Assist customers in moving to the cloud
  • Design, build, and deploy solutions to automate security operations and incident response on AWS
  • Independently contribute to internal builder projects to develop new consulting engagement models and capabilities for customers
  • Established as a deep technical resource that earns the trust of customer stakeholders before, during, and after a security event
  • Develop high-quality content, such as automation tools, reference architectures, and white papers to help our consultants, partners, and customers build on the work that delivered
  • Lead engagements to establish an Incident Response framework to include best practices, team hiring and retention, and automation
  • Team SME on AWS GuardDuty, Security Hub, and Detective
  • Forensic Investigator
  • Conduct digital internal investigations for legal and human resources customers
  • Automating and integrating forensics into the Enterprise Protection team by using the power of the cloud to conduct examinations of actual cloud attributes in the cloud
  • Write technical reports to communicate and present results of analysis to C-Level executives
  • Work closely with various departments globally across Amazon such as Client Engineering, Global IT, Human Resources and Legal departments to conduct internal investigations and achieve results in a timely and efficient manner
  • Implementing AWS services S3, Lambda, EC2, IAM, Amazon Macie into a more automated and intelligent forensic analysis system
  • Set up varied alerts (Python Lambda) to notify and monitor in order to minimize cycles needed for analysis
  • Actively managing 20-45 cases worldwide concurrently
  • Working operational knowledge of GCP.
  • Implemented new strategies to reduce costs and improve efficiency of engineering team.
  • Tested and analyzed equipment design and performance feasibility to determine potential ROI.

Director of Forensics

AFC, LLC
10.2014 - 12.2015
  • Assist various government/intelligence agencies with examinations of digital media for incident response, threat intelligence, insider threat, and target exploitation
  • Conduct analysis of digital media using various tools to determine the extent of data breaches
  • Perform surface analysis of malicious software to ascertain the software's intended purpose
  • Write technical reports to communicate and present results of analysis to C-Level executives
  • Dynamic and versatile instructor capable taking complex issues and simplifying them in an easy-to-understand manner
  • Point of contact for on-site engagements and contract negotiation.

Owner and Operator

AR Forensics, LLC
07.2011 - 10.2014
  • Principal Forensics Analyst and Lead Engineer
  • Service-Disabled Veteran Owned Cyber Security company offering digital threat assessments, cyber intrusion analysis, cyber threat intelligence to corporate and government clients
  • Sub-contracted to National Cyber Intrusion Joint Task Force (NCIJTF).

Director of Forensics

Applied Security
11.2009 - 07.2011
  • Principal Forensics Analyst and Lead Engineer
  • Digital forensics and threat vulnerability
  • Assess digital and online fingerprints.

Deep Technical Analyst/Manager

Crucial Security
05.2002 - 11.2009
  • (Contracted to FBI-Special Technologies and Applications Office/Investigative Analysis Unit (IAU) as Operations Project Lead and Digital Counter-Terrorism/Counter-Intelligence Team Lead)
  • Senior Forensics Analyst and Lead Engineer
  • Perform forensic analysis on various forms of client or company owned media while maintaining a strict chain of custody
  • Additional duties include, but are not limited to, replicating media, analyzing logical structures, analyzing data, conducting keyword searches, Internet and E-mail investigations, unauthorized access and modification investigations, system and information compromises, basic hostile code analysis, data extraction, documenting results of analysis and reporting results to case agents in the field offices
  • Manage a team of 6 digital analysts
  • Project Lead duties include: working with field agents to prepare media for analysis, meeting with representatives from different units, sections and intelligence agencies to collaborate on cases, seeking new work, attending conferences to stay abreast on cutting edge technology and techniques, report correction, case assignment, and maintaining logs and notes for approximately ten different analysts
  • Instructing on Basic Forensics at FBI Quantico Intelligence Basic Course (IBC) and New Agent Training (NAT) as well as Intelligence Community Officers Course (ICOC)
  • Experience includes: security incident response, analysis, and recovery, network/computer forensic analysis, WAN/LAN intrusion detection and analysis, risk/vulnerability analysis and mitigation, and log file analysis in conjunction with system analysis
  • Performed analysis of individual data sets ranging from CD's to over 4TB
  • Supported over 150 cases comprised of analyzing approximately 700 hard drives.

Senior SysAdmin

Nextel
09.2001 - 05.2002

Senior Consultant

Exodus Communications
10.2000 - 09.2001

UNIX Administrator

Network Access Solutions
02.2000 - 10.2000

UNIX Administrator

UUNET Technologies
03.1999 - 02.2000

Security Engineer

Data Systems Analysts
09.1997 - 03.1999

Special Intelligence

U.S. Marine Corps
12.1992 - 07.1997

Education

Master of Business Administration -

Indiana University
Indianapolis, IN
01.2006

Bachelor of Science in Management -

National-Louis University
Chicago, IL
01.2003

Skills

  • Intrusion Detection Systems
  • Data Encryption Techniques
  • Critical Thinking
  • Security metrics
  • Security Incident Response
  • Cloud Computing
  • Cloud Security Architecture
  • Cloud Architecture Design
  • Log Analysis
  • Secure DevOps Practices

Patents

PARALLELIZED FORENSIC ANALYSIS USING CLOUD-BASED SERVERS, 08/11/2020, 10,740,151, US

Certifications

  • HashiCorp Certified: Terraform Associate
  • AWS Certified Cloud Practitioner
  • Amazon Web Services Solutions Architect - Associate
  • Amazon Web Services Developer - Associate
  • Amazon Web Services SysOps Administrator - Associate
  • Amazon Web Services Solutions Architect - Professional
  • Amazon Web Services DevOps - Professional
  • Amazon Web Services Security Specialty
  • Amazon Web Services Certified Alexa Developer
  • Amazon Web Services Certified Certified Database Specialty
  • Encase Certified Examiner
  • Certified Information System Security Professional (CISSP) #23408
  • Certified Computer Examiner

Testimonials

  • US v. Trout, United States District Court, District of South Carolina (US Court of Appeals for the 4th Circuit. (2009 WL 3398217), Expert Witness testimony and expert report on behalf of US Government/FBI. Computer Intrusion and destruction of evidence.
  • Hill v. Benyisrael, Attorney General of the District of Columbia, Domestic Violence Section.(2012 CPO 3310), Expert Witness testimony on behalf of US Government. Mobile applications functionality-Tango, WhatsApp and Words With Friends.
  • Chopra v. Chopra, Chicago, Illinois, Expert Witness testimony regarding Spyware.
  • U.S. ex rel. Reardon v. Michael Reardon, Attorney General of the District of Columbia, ( 2014 CCC 19), Expert Witness testimony on behalf of the US Government with focus on Google Voice
  • United States v. MAJ Christian R. Martin, First Judicial Circuit, U.S. Army Fort Campbell, Kentucky, Expert Witness testimony on behalf of the MAJ Christian R. Martin (Defense) with focus on Digital Investigations.

Awards

  • Received written commendation from Crucial Security for work while supporting FBI War on Terrorism
  • Received Letterhead Memorandum from FBI ASAC Miami Field office while assisting on terrorism case
  • Received letter of appreciation for being a Moot Court Proctor for FBI
  • Certified as an FBI Expert Witness in Computer Science in South Carolina
  • Received Letterhead Memorandum from FBI Section Chief for performance as Acting Project Lead

Presentations

  • Supercharging Hybrid Analysis in the Cloud - Tanium CONVERGE, 2018
  • Guest Lecturer at GMU Forensics Course, 2012-2014
  • Digital Profiling, 2014, DC3 2014

Training

  • Developing on AWS, Amazon Web Services, 2017
  • Security Operations on AWS, Amazon Web Services, 2017
  • System Operations on AWS, Amazon Web Services, 2017
  • DevOps Engineering on AWS, Amazon Web Services, 2017
  • Architecting on AWS, Amazon Web Services, 2017
  • Advanced Architecting on AWS, Amazon Web Services, 2016
  • Macintosh Forensics, Sumuri, 2016
  • FBI Moot Court, FBI, 2007

Other

  • Elementary French (Reading, Writing, Speaking)
  • Compete in Ultra Marathons

Timeline

Principal Cloud Security Engineer

Interos.ai
05.2022 - Current

Staff Cloud Security Engineer

Ancestry.com
01.2022 - 05.2022

Cloud Architect

Cetera Financial Group
08.2020 - 01.2022

Security Transformation Engineer

Amazon Web Services
12.2015 - 08.2020

Director of Forensics

AFC, LLC
10.2014 - 12.2015

Owner and Operator

AR Forensics, LLC
07.2011 - 10.2014

Director of Forensics

Applied Security
11.2009 - 07.2011

Deep Technical Analyst/Manager

Crucial Security
05.2002 - 11.2009

Senior SysAdmin

Nextel
09.2001 - 05.2002

Senior Consultant

Exodus Communications
10.2000 - 09.2001

UNIX Administrator

Network Access Solutions
02.2000 - 10.2000

UNIX Administrator

UUNET Technologies
03.1999 - 02.2000

Security Engineer

Data Systems Analysts
09.1997 - 03.1999

Special Intelligence

U.S. Marine Corps
12.1992 - 07.1997

Master of Business Administration -

Indiana University

Bachelor of Science in Management -

National-Louis University

Similar Profiles

CREATE PROFILE
Ryan Washington