Download Short Resume (PDF)
Download Short Resume (DOCX)
Download Short Resume (TXT)
Mike A. Schlosser
Senior Information Security Engineer
Email: mikeasch007@gmail.com
Phone: (208) 859-5770
Address: New York, NY, 11201
Professional Summary
Dynamic Information Security professional with over 7 years extensive experience in developing and engineering innovative Cybersecurity projects with deep understanding of corporate and startup Cybersecurity landscapes. Skilled at cultivating IT relationships with developers and stakeholders, while leading close working teams and understanding business growth needs. I have an exceptional track record with over 10 years of IT experience in leveraging technology to create and execute strategies for long-term Information Technology and Cybersecurity successes. Seeking remote Information Security projects as an architect, analyst, or engineer, although considering hybrid relocation for ideal opportunities.
Experience
Senior Cybersecurity Engineer
Adobe, Salt Lake City, UT (Remote) / Apr 2023 – Dec 2023
Spearheaded a robust container (Docker) and Kubernetes workloads security program finding and remediating 1,000s of vulnerabilities and threats with the aid of various tools including Crowdstrike.
Engineered and configured thorough container security and cloud native security best practices on 100s of Kubernetes clusters for all development and production workloads.
Developed various application security and penetration tests on Kubernetes and container workloads, while collaborating with various project and development teams for Adobe product security.
Championed a team of security engineers for testing of cybersecurity best practices and internal security controls frameworks of Kubernetes and Docker workloads running in OpenShift.
Analyzed TBs of container logs, data flows, and application logs daily with Splunk SIEM in order to identify 100s of security risks.
Interfaced with external IT vendors in order to test software components needed for an effective operation of container cybersecurity program.
Participated actively in internal IT reviews of cybersecurity policies and procedures in order to identify gaps and recommend 100s of security improvements.
Senior Information Security Architect
Santander, Boston, MA (Remote) / Jun 2021 – May 2022
Designed dozens of secure application architectures for digital banking app teams while using DevSecOps (DevOps) builds, to accurately remediate vulnerabilities during application development lifecycles.
Ensured secure analysis of 100s of Terabytes (TB) of data in transit and storage for cloud network configurations, by architecting security best practices and hardening guidelines with robust threat models.
Maintained advanced threat models for the digital banking architecture of internal teams, including for hybrid cloud and AWS cloud governance teams which helped fix 1000s of threats and vulnerabilities.
Collaborated with many internal and external developers daily to ensure that the Santander Technology code standards and best practices were continuously met for all production applications with DevSecOps pipelines.
Championed a weekly meeting with PCI experts to coordinate expertise regarding implementation and compliance reviews of cybersecurity projects, for robustness of financial services cybersecurity and IT environments.
Analyzed 1000s of complex technical security issues related to computer networks and identified potential solutions for resolutions of cybersecurity problems on a daily basis.
Senior Information Security Engineer
Warner Media, New York, NY (Remote) / Jun 2021 – Mar 2022
Catalyzed a 9-month $500K+ business project that revitalized, updated, and automated 10K legacy servers in 3 nations, guarded by 30 firewalls and connected to 500+ routers containing thousands of 10-gigabyte switches per unit.
Performed daily Development Operations (DevOps) and Development Security Operations (DevSecOps), by reviewing 50+ server logging data sets and configuration settings, while executing corrective actions based on CISO best practices targets.
Contributed to Python scripts averaging 1000+ lines of code each that optimized routers, switches, and firewalls security using code libraries and tools such as NAPALM, NORNIR, and NAUTBOT tools which checked and fixed network device configurations continuously.
Developed 12+ Continuous Integration and Continuous Delivery (CI/CD) pipelines running on a Jenkins and GitHub platforms in order to better audit, update, and optimize switches and routers with better hardened networking and cloud storage IT architectures.
Authored more than 10 Standard Operating Procedures (SOP) governing risk management and formatted 5 process diagram flowcharts using Microsoft Visio visualizations for technical security presentations.
Developed software technology to delete 100+ or more monthly working hours for staff members by automating security controls of switches, firewalls, and server maintenance routines.
Provided support for core Continuous Integration and Continuous Delivery (CI/CD) pipelines for network device services tasks.
Worked with internal software developers to ensure Warner Media CISO code standards and security best practices were continuously met for all development and live production applications.
Education
Boston College
Boston, MA
May 2017
Cybersecurity
Rensselaer Polytechnic Institute
Troy, NY
May 2013
Bachelor of Science
Skills
IAM
DevSecOps
AWS
Azure
PKI
WAF
OWASP
SIEM
CSMP
EDR
Zero Trust
Kubernetes
Docker
Terraform
SSO
3rd Party Risk
PAM
Data Masking
Firewalls
Access Control
SDLC
IDPS
Artificial Intelligence (AI)
Blockchain
Threat Modeling
Application Security
Secure Architecture
Intrusion detection
Vulnerability management
Threat hunting
Security compliance
Cloud security
Data encryption
Identity and Access management
Secure software development
Security architecture design
Penetration testing skills
Website, Portfolio and Profiles
linkedin.com/in/mikeasch007 – LinkedIn Job Profile.
wellfound.com/u/mikeasch007 – WellFound Job Profile.
michaelaschlosser.com – Full Resume, Cover Letter, and Startups.
Certifications
CompTIA Security+ (2020)
AWS Cloud Certified (2021)
Azure Cloud Certified (2022)
Splunk SIEM (2023)
Startups
ELF-ID
Dec 2023 – Present, Founder & Lead Developer
Developed a platform for cryptographic and digital identity systems called ELF-ID, which is a digital security framework that replaces Public Key Infrastructure (PKI) architecture with a biometric Natural Key Infrastructure (NKI) based on unique electromagnetic signatures of extremely low frequency (ELF).