Summary
Overview
Work History
Education
Skills
Websites
Certification
Honors Awards
Personal Information
Timeline
Generic

William Quaye

Fort Worth,TX

Summary

A seasoned DevSecOps consultant with adeptness in designing secure architecture, crafting secure Infrastructure as Code, and managing infrastructure. Proficiency encompasses monitoring, penetration testing, and disaster recovery plan implementation. There is a strong commitment to ensuring system security across the software development lifecycle, coupled with a continuous effort to enhance knowledge and skills in this ever-evolving field.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Senior DevSecOps Engineer

3Cloud
10.2023 - Current
  • Conducted rigorous health checks and assessments to pinpoint enhancement opportunities in client DevOps practices, leading to significant improvements in deployment efficiency.
  • Spearheaded DevSecOps transformations, seamlessly integrating security throughout the software development lifecycle, substantially reducing vulnerability exposure.
  • Demonstrated comprehensive knowledge across various security domains: Cloud Security Insights, Platform and Infrastructure Security, Application Security, and Data Security in Cloud environments.
  • Served as an expert in Azure Compliance offerings and Azure Policy, providing actionable recommendations for Azure Audit Services to enhance compliance measures.
  • Devised strategies for security, backup, and redundancy, developing detailed Business Continuity and Disaster Recovery plans to ensure robust system uptime.
  • Utilized Azure Boards and Jira proficiently within agile project management contexts, markedly improving project delivery timelines.
  • Managed code repositories using Azure Repos, GitHub, and GitLab, ensuring seamless integration with security and testing measures, significantly reducing code vulnerabilities.
  • Designed and implemented CI/CD pipelines using tools like Azure Pipelines, GitLab, and Jenkins, with extended expertise in Database Lifecycle Management, enhancing deployment frequency.
  • Led initiatives in infrastructure automation using tools like Terraform and Ansible, resulting in more efficient infrastructure provisioning.
  • Employed Azure's monitoring services for comprehensive system surveillance, complemented by exhaustive Test Plans and Automation across various testing spectrums, boosting system reliability.
  • Initiated projects with an in-depth discovery process, evaluating security culture, current state, challenges, and goals to ensure tailored and effective project strategies.
  • Navigated through every project stage, from planning and coding to building, deploying, and monitoring, ensuring the fortification of best industry practices at each step.
  • Implemented practices such as Threat Modeling, Secure coding, Static and Dynamic Application Security Testing, CI/CD Penetration Testing, and continuous feedback loops, contributing to the reduction in security incidents.
  • Maintained steadfast commitment to ensuring security and efficiency in software development, consistently upholding and promoting the highest industry standards.

DevSecOps Engineer

3Cloud
06.2022 - 10.2023
  • Conduct rigorous health checks and assessments, pinpointing enhancement opportunities in clients' DevOps practices
  • Lead DevSecOps transformations, seamlessly integrating security throughout the software development lifecycle
  • Exhibit deep understanding across various security domains: Cloud Security Insights, Platform and Infrastructure Security, Application Security, and Data Security in the Cloud
  • Expert in Azure Compliance offerings, Azure Policy, and providing recommendations for Azure Audit Services
  • Strategize on security, backup, and redundancy measures while formulating detailed Business Continuity and Disaster Recovery plans
  • Utilize Azure Boards and Jira proficiently within agile project management contexts
  • Manage code using Azure Repos, GitHub, and GitLab, ensuring harmonious integration with security and testing measures
  • Design and implement CI/CD pipelines using tools like Azure Pipelines, GitLab, and Jenkins, with expertise extending to Database Lifecycle Management
  • Champion infrastructure automation with tools like Terraform and Ansible
  • Employ Azure's monitoring services for comprehensive surveillance, coupled with exhaustive Test Plans and Automation across various testing spectrums
  • Begin projects with a thorough discovery process, assessing security culture, current state, challenges, and goals
  • Navigate seamlessly through every stage of a project, from planning, coding, building, and deploying to monitoring, ensuring best industry practices fortify each step
  • Incorporate practices like Threat Modeling, Secure coding, both Static and Dynamic Application Security Testing, CI/CD Penetration Testing, and continuous feedback loops
  • Remain committed to ensuring security and efficiency in software development, consistently upholding the highest industry standards.

DevSecOps Engineer

Slower
11.2020 - 06.2022
  • As a seasoned consultant, I specialize in designing and implementing high-availability architectures with a robust focus on security and compliance, adhering to the best practices from the NIST Cybersecurity Framework, ISO27001/2 and as compliance requires
  • I have led Infrastructure Teams in developing 3-tier architecture for Confluent Kafka, Nifi, and Lemur, taking into account security standards and efficient performance
  • I am proficient with Infrastructure as Code tools, Terraform and Ansible, which I've used to design, build, and manage infrastructures in Hybrid and Multi Cloud environments such as Azure and AWS
  • Working with messaging systems like Kafka and Nifi, I've excelled in monitoring, troubleshooting, and securing these systems
  • I have successfully managed complex upgrades with a keen emphasis on minimizing environmental disruption while adhering to security best practices
  • I have managed various messaging environments and versions of Kafka, ensuring their security and optimal performance
  • I am knowledgeable in various security and compliance measures and have utilized code scanning tools such as SonarQube and Veracode to ensure code security and quality
  • I've advised on technologies, potential risks, and security issues, influencing the security standards and building strong relationships with technical personnel and business leaders
  • Utilizing metrics and reporting systems, I have measured the progress of the Information Security program, aiding in risk assessments and strategic planning
  • My extensive knowledge encompasses leading information security frameworks which forms the basis of my approach to securing cloud-based resources, networks, systems, databases, applications, and processes.

DevSecOps Engineer

IMSYS Security
10.2016 - 10.2020
  • As a proficient engineer, I've established CI/CD pipelines using tools including Jenkins, Maven, Docker, Nexus, Artifactory, Slack, and Azure pipelines, promoting efficient software delivery
  • I have employed Agile and Scrum methodologies effectively, which have greatly enhanced the software development processes
  • My expertise extends to migrating applications to AWS and Azure cloud platforms, showcasing a robust understanding of cloud adoption
  • I've worked extensively with version control systems like Git, GitHub, Bitbucket, and Azure Git, ensuring efficient code management and tracking
  • I am adept at scripting and automating tools for building, integrating, and deploying software releases to various environments
  • I possess hands-on experience with scripting languages such as Groovy, JSON, YAML, and Shell scripting, which have been crucial in automating numerous tasks and processes
  • I've used code quality and coverage tools like SonarQube, JaCoCo, and JUnit to maintain high-quality code and ensure compliance
  • My experience includes leveraging Docker's virtualization and container technology, and I am adept at creating Dockerfiles and managing Docker containers
  • I've worked with Kubernetes, setting up clusters in Azure AKS for managing and deploying containerized applications
  • Using configuration management tools like Terraform and Ansible, I've effectively managed infrastructure and configurations
  • I've actively participated in the product's release cycle across Development, QA, UAT, and Production environments, ensuring smooth deployment for end-users
  • My understanding encompasses Work Item Management, Code Management, Code Quality Management, Security & Compliance, QA/Test Automation/Test Data, Release Management, and Production Deployment for efficient operation
  • I have extensive experience in monitoring, logging, and operational enablement to maintain system operation and enable rapid identification and resolution of issues.

Operation Support Specialist

United States Postal Service
01.2019 - 08.2019
  • Led efforts to revive and optimize an Automated Guided Vehicle (AGV) project for the United States Postal Service, to improve efficiency and productivity in plant operations
  • Trained and mentored employees on the proper usage and maintenance of AGVs to ensure smooth and safe operation
  • Provided ongoing maintenance and oversight to guarantee the AGV program was running smoothly and effectively
  • Prepared and presented weekly performance reports to management, highlighting key metrics and areas for improvement
  • Utilized my expertise in Microsoft Power Apps, Excel, and Python to develop custom applications that streamlined operations and increased automation
  • Conducted extensive data analysis and presented actionable insights to management to drive data-driven decision making.

Implementation Specialist

07.2015 - 09.2016
  • Acquired deep knowledge of sophisticated software and hardware solutions through learning, testing, and hands-on experience
  • Responsible for installing and integrating these solutions and working closely with customers throughout the deployment process to ensure their successful implementation
  • Actively engaged with customers to educate them on the capabilities and functionality of the solutions and provided training on how to use them effectively
  • Utilized a thorough understanding of business requirements to design and build custom solutions that met each customer's unique needs
  • Collaborated closely with customers to identify their specific requirements and goals and ensured that the implementation of the solutions aligned with their overall business objectives
  • Continuously sought customer feedback to ensure they were satisfied with the solutions and could leverage them to drive their business forward.

Education

Master's degree - Cyber Security, with a concentration in Project Management

Southern New Hampshire University
Manchester, NH
01.2023

Bachelor of Science - Digital and Social Media and a minor in Information Technology

Granite State College
Manchester, NH
01.2018

Skills

  • DevSecOps
  • Cloud Engineering
  • Infrastructure as Code
  • DevOps for Data
  • Leadership
  • Mentorship

Certification

  • Microsoft Certified: Azure Administrator Associate
  • HashiCorp Certified: Terraform Associate (002)

Honors Awards

Deans List

Personal Information

Title: DevSecOps | Cybersecurity Professional

Timeline

Senior DevSecOps Engineer

3Cloud
10.2023 - Current

DevSecOps Engineer

3Cloud
06.2022 - 10.2023

DevSecOps Engineer

Slower
11.2020 - 06.2022

Operation Support Specialist

United States Postal Service
01.2019 - 08.2019

DevSecOps Engineer

IMSYS Security
10.2016 - 10.2020

Implementation Specialist

07.2015 - 09.2016

Master's degree - Cyber Security, with a concentration in Project Management

Southern New Hampshire University

Bachelor of Science - Digital and Social Media and a minor in Information Technology

Granite State College

Similar Profiles

CREATE PROFILE
William Quaye