Matthew Mousseau - Curriculum Vitae

Enterprise & solution architect with over 20 years experience building & architecting applications and cloud / traditional infrastructure. Specializes in folowing domain driven design practices to ensure that solutions fully align with business challenges. Education in electrical engineering helps ensure a truly “electrons-to-application” understanding of computing systems. Passionate about helping team members bring their whole, creative selves to work and having strong opinions, weakly held.

Education

  • B.S. Electrical Engineering, Georgia Institute of Technology, 2007

Professional Experience

Slalom Consulting

Practice Area Lead - Modern Engineering ()
Slalom consulting is modern consulting organization specialzing in the end-to-end process of bringing digital products to life.

Business

  • Responsible for ensuring excellent delivery through architectural & engagement oversight
  • Lead engineering-based business development, including creation of multiple new offerings driving additional business nation-wide
  • Team size - 30 & growing!
  • Source & participate in pre-sales activities
  • Accountable for $4mm / yr revenue target

Application, Solution & Enterprise Architecture

  • Build architectural reference patterns and guidance
    • Infrastructure foundations for both cloud and hybrid environments
    • Application SDLC, reference architectures & linting standards
    • Assessments & recommendations for decomposing cross-cutting concerns such as IAM, Observability, and Caching
    • Isolation & decoupling of application domains
  • Educate clients & team members on architecture
  • Lead engagements aiding clients in modernizing existing applications
  • Lead engagements creating brand new applications, providing full-stack architectural oversight

Cloud Platforms

  • Responsible for creation & cultivation of mature “modern” cloud foundation platform perspective
  • Lead multiple engagements to fully automate the delivery of enterprise AWS operating environments

Security

  • Pioneered development of “continuous compliance” and “compliance as code” offerings
  • Created “InfoSec as a Service” offering, enabling application & infrastructure teams to self-service their interactions with information security

DevSecOps

  • Develop coaching / evaluation materials for assessing enterprise current state organizational maturity in DevSecOps practices
  • Roadmap & lead clients on improving their DevSecOps practices
  • Proficient in a variety of toolchains, including but not limited to Azure DevOps, Atlassian, and AWS Code*

Client: Pacific Life

Cloud Architecture

  • Lead joint team of 12+ responsible for AWS Cloud Architecture, made up of individuals from both Slalom and Pacific Life
  • Architected & implemented core IAM, Network, Account Guardrails
  • Updated core network architecture to adopt AWS Transit Gateway upon release
  • Key Outcomes: Application teams able to obtain AWS operating environments via self-service within minutes, reduced from manual process that took 4-6 weeks

Security

  • Automated validation of Security Controls for cloud environments
  • Deployed HashiCorp Vault, providing short-lived & automated generation of credentials

DevSecOps

  • Provided coaching & strategic direction on formation of internal “product” teams aligned with customer value
  • Deployed all infrastructure via CI/CD and with automated testing

Client: First American Title

Enterprise Architecture

  • Developed integration approach with “InfoSec as a Service” between deployment pipelines and APIs provided by First American Information Security
  • Partnered with Enterprise Architecture provide by Deloitte & First American to design cloud architecture & deployment strategy best matched to First American’s needs
  • Architected DNS & Active Directory delegation API, enabling application teams to manage their records, without risk to records belonging to other teams

Cloud Architecture

  • Lead joint team of 15+ responsible for AWS Cloud Architecture / Datacenter migration, made up of individuals from both Slalom and First American
  • Architected & implemented core IAM, Network, Account Guardrails
  • Key Outcomes:
    • Application teams able to obtain AWS operating environments via self-service within minutes, reduced from manual process that took 4-6 weeks
    • Modular terraform-based IaC components reusable across application teams

DevSecOps

  • Architected deployment & testing strategy enabling iterative improvement of key infrastructure components
  • Coached team on decoupling infrastructure to enable rapid iteration & a “shift-left” of accountability to application teams.

Security

  • Automated validation of Security Controls for cloud environments
  • Employed both AWS Config and Chef Inspec for validation of environment health and compliance
  • Contributed to DR planning runbook for application teams undergoing cloud migration
  • Least-privilege security model followed, with microservices used to ensure minimal permissions

Continio Software Solutions

Managing Partner / President (2015 - 2018)

Continio Software Solutions was the technology consultancy I founded upon first relocating to California. We specialized in helping start-up organizations bring their vision to light. At its largest, Continio had 2 employees, 3 independent contractors, managing clients ranging from startups to multi-billion dollar enterprises.

Business

  • Founded October 2015
  • Managed diverse team of employees / contractors

Client: Core Insight Systems

  • Created domain driven & event sourcing based IoT platform for optimizing manufacturing and supply chain

Client: Assemi Group

  • Sourced VP of IT for multi-billion dollar farming, housing, and import/export conglomorate

Client: AMSVans

  • Optimized inventory management API resulted in 100x faster product catalog searches

Client: Pacific Dental Services

Application Architecture

  • Redesigned application logging infrastructure, eliminating business transaction deadlocks resulting from log contention
  • Developed & introduced automated health introspection endpoints
  • Refactored windows services to more easily be locally testable & deployable
  • Developed proof of concept allowing for real-time generation of reports via event projections, leveraging SQL Server Change Data Capture

Operations

  • Instrumented legacy mainframe-based application, creating InfluxDB & Graphana based system health dashboard
  • Integrated automated discovery of application health introspection, and automated management of > application load balancing based on node health

DevSecOps

  • Developed application packaging & deployment system supporting web, daemon, and batch processes
  • Developed automated server provisioning system for VMWare, including automated “golden image” > creation, domain joining, and deprovisioning
  • Created source-control & database integration testing automation for 80+ SQL databases
  • Automated the sanitization & cut-down process of SQL databases, ensuring developers could locally host & have access to the current version of database schema / test data
  • Deployed all infrastructure via CI/CD and with automated testing

Wintergreen Corporation

Software Architect (2014 - 2015)

Application Architecture & Continuous Delivery

  • Worked with purchasing team to build system for analyzing sales history to produce a projected demand used to guide long-term purchasing decisions
  • Spearheaded conversion of existing ERP to AngularJS
  • Teamed up with web content team and built a custom Content Management System allowing dramatically increased ability to self-publish content. Platform supported revision tracking, scheduled publication, and much more
  • Implemented business event stream analytics using InfluxDB. Using this tool, IT was able to dramatically reduce internal and external error rates, more effectively track load, and helped Wintergreen to a record year.

AMS Vans

VP of IT (2002 - 2014)

Business

  • Joined as employee #6, 12-year tenure saw growth from $4mm / yr to $60mm / yr and 60+ employees nationwide
  • Led technology team including but not limited to system infrastructure, desktop, phone, ERP, marketing, CRM systems

Technology & Solution Architecture

  • Created code generation tools to speed mapping between multiple legacy systems
  • Rebuilt and combined multiple mixed platform web application into single application saving server and maintenance costs
  • Created shopping cart and subscription system for website allowing clients to create and manage classified ads for their vehicle
  • Integrated website billing system with Authorize.Net for credit card processing
  • Implemented new vehicle management system as customization to Microsoft Dynamics 2011.
  • Created comprehensive backup strategy and offsite storage plan
  • Designed and managed custom Asterisk based phone system with custom ERP integration
  • Normalized customer sales records for migration into new CRM platform (Dynamics365) from legacy system (ACT!)

Industry Certifications

AWS Certified Security – Specialty

Issued By: Amazon Web Services (Validate)

Earners of this certification have an in-depth understanding of AWS security services and the shared responsibility model (between AWS and the customer). They demonstrated the ability to design, implement, and troubleshoot various security models in the AWS Cloud. Badge owners can leverage various security models for organizations of all sizes.

AWS Certified Advanced Networking – Specialty

Issued By: Amazon Web Services (Validate)

Earners of this certification have an in-depth understanding of AWS security services and the shared responsibility model (between AWS and the customer). They demonstrated the ability to design, implement, and troubleshoot various security models in the AWS Cloud. Badge owners can leverage various security models for organizations of all sizes.

Certified Information Systems Security Professional (CISSP)

Issued By: (ISC)2 (Validate)

The vendor-neutral CISSP credential confirms technical knowledge and experience to design, engineer, implement, and manage the overall security posture of an organization. Required by the world’s most security-conscious organizations, CISSP is the gold-standard information security certification that assures information security leaders possess the breadth and depth of knowledge to establish holistic security programs that protect against threats in an increasingly complex cyber world.

AWS Certified Solutions Architect – Professional

Issued By: Amazon Web Services (Validate)

Demonstrated the ability to balance best practices and trade-offs based on business context. Badge owners are able to design solutions across multiple platforms and providers.

AWS Certified DevOps Engineer – Professional

Issued By: Amazon Web Services (Validate)

Demonstrated the ability to automate resilient applications and infrastructure deployments using AWS services. Badge owners are able to enforce policies, implement automated monitoring, and configure event management of an environment.

HashiCorp Certified: Terraform Associate

Issued By: HashiCorp (Validate)

Understand and can utilize Terraform according to the certification objectives. Additionally, they understand why enterprises choose to extend Terraform Open Source with Terraform Enterprise to solve business critical objectives.

HashiCorp Certified: Vault Associate

Issued By: HashiCorp (Validate)

Understand and can utilize Vault according to the certification objectives. Additionally, they understand why enterprises choose to extend Vault Open Source with Vault Enterprise to solve business critical objectives.

AWS Certified Solutions Architect – Associate

Issued By: Amazon Web Services (Validate)

Demonstrated the ability to build secure and robust solutions using architectural design principles based on customer requirements. Badge owners are able to strategically design well-architected distributed systems that are scalable, resilient, efficient, and fault-tolerant.

AWS Certified Developer – Associate

Issued By: Amazon Web Services (Validate)

Demonstrated proficiency in writing applications with AWS service APIs, AWS CLI, and SDKs; using containers; and deploying with a CI/CD pipeline. Badge owners are able to develop, deploy, and debug cloud-based applications that follow AWS best practices.

AWS Certified SysOps Administrator – Associate

Issued By: Amazon Web Services (Validate)

Demonstrated the ability to migrate on-premises workloads to AWS and monitor, scale, and secure systems on the AWS platform. Badge owners are able to provide guidance on implementing best practices for cloud operations.

AWS Certified Cloud Practitioner

Issued By: Amazon Web Services (Validate)

Demonstrated cloud fluency and foundational AWS knowledge. Badge owners are able to identify essential AWS services necessary to set up AWS-focused projects.

MCSE: Cloud Platform and Infrastructure — Certified 2018

Issued By: Microsoft (Validate)

Demonstrated the skills required to run a highly efficient and modern data center, with expertise in cloud technologies, identity management, systems management, virtualization, storage and networking. Earning this certification qualifies an individual for such jobs as cloud administrator, cloud architect, computer support specialist, and information security analyst.

Author's picture

Matt Mousseau

I suppose you could say creativity, engineering, and passion for learning are simply in my blood.

My grandfather built computers that monitored flow through oil and gas pipelines all over the globe, and early in life our back-and-forth Q&A lead to my interest in electronics.

A constant thirst to understand drove me to dig into programming and continues to push me further today.

More than just love, I believe in technology.


Practice Area Lead,
Slalom Consulting

Orange County,
California