Business

• Responsible for ensuring excellent delivery through architectural & engagement oversight
• Lead engineering-based business development, including creation of multiple new offerings driving additional business nation-wide
• Team size - 30 & growing!
• Source & participate in pre-sales activities
• Accountable for $4mm / yr revenue target

Application, Solution & Enterprise Architecture

• Build architectural reference patterns and guidance
  • Infrastructure foundations for both cloud and hybrid environments
  • Application SDLC, reference architectures & linting standards
  • Assessments & recommendations for decomposing cross-cutting concerns such as IAM, Observability, and Caching
  • Isolation & decoupling of application domains
• Educate clients & team members on architecture
• Lead engagements aiding clients in modernizing existing applications
• Lead engagements creating brand new applications, providing full-stack architectural oversight

Cloud Platforms

• Responsible for creation & cultivation of mature “modern” cloud foundation platform perspective
• Lead multiple engagements to fully automate the delivery of enterprise AWS operating environments

Security

• Pioneered development of “continuous compliance” and “compliance as code” offerings
• Created “InfoSec as a Service” offering, enabling application & infrastructure teams to self-service their interactions with information security

DevSecOps

• Develop coaching / evaluation materials for assessing enterprise current state organizational maturity in DevSecOps practices
• Roadmap & lead clients on improving their DevSecOps practices
• Proficient in a variety of toolchains, including but not limited to Azure DevOps, Atlassian, and AWS Code*

Client: Pacific Life

Cloud Architecture

• Lead joint team of 12+ responsible for AWS Cloud Architecture, made up of individuals from both Slalom and Pacific Life
• Architected & implemented core IAM, Network, Account Guardrails
• Updated core network architecture to adopt AWS Transit Gateway upon release
• Key Outcomes: Application teams able to obtain AWS operating environments via self-service within minutes, reduced from manual process that took 4-6 weeks

Security

• Automated validation of Security Controls for cloud environments
• Deployed HashiCorp Vault, providing short-lived & automated generation of credentials

DevSecOps

• Provided coaching & strategic direction on formation of internal “product” teams aligned with customer value
• Deployed all infrastructure via CI/CD and with automated testing

Client: First American Title

Enterprise Architecture

• Developed integration approach with “InfoSec as a Service” between deployment pipelines and APIs provided by First American Information Security
• Partnered with Enterprise Architecture provide by Deloitte & First American to design cloud architecture & deployment strategy best matched to First American’s needs
• Architected DNS & Active Directory delegation API, enabling application teams to manage their records, without risk to records belonging to other teams

Cloud Architecture

• Lead joint team of 15+ responsible for AWS Cloud Architecture / Datacenter migration, made up of individuals from both Slalom and First American
• Architected & implemented core IAM, Network, Account Guardrails
• Key Outcomes:
  • Application teams able to obtain AWS operating environments via self-service within minutes, reduced from manual process that took 4-6 weeks
  • Modular terraform-based IaC components reusable across application teams

DevSecOps

• Architected deployment & testing strategy enabling iterative improvement of key infrastructure components
• Coached team on decoupling infrastructure to enable rapid iteration & a “shift-left” of accountability to application teams.

Security

• Automated validation of Security Controls for cloud environments
• Employed both AWS Config and Chef Inspec for validation of environment health and compliance
• Contributed to DR planning runbook for application teams undergoing cloud migration
• Least-privilege security model followed, with microservices used to ensure minimal permissions