SefiElbaz
Senior Security Engineer
| Senior Product Security Engineer, DNAnexus Remote |
July 2022 - Present |
|
» Conduct security reviews + threat modeling for product specifications and advise on secure + scalable architecture
» Create, develop, and manage code assurance program for 200 engineers - policies, procedures, code standards, code reviews, penetration testing, and bug bounty » Implement SAST, SCA, and secrets scanning across org and reduced vulnerabilities by 70% » Architect and migrate enterprise applications to use single sign on (SSO) through Okta and AWS IAM Identity Center for 200+ end users » Automate security processes and reporting using terraform + AWS Lambda |
|
| Security Engineer, Fastly Remote |
August 2021 - July 2022 1 year |
|
» Mitigate cyber attacks in real time and perform analysis of past cyber attacks.
» Configure custom and advanced rules on Fastly Next Gen WAF according to customer needs » Implement and help test rules to mitigate CVEs including CVE-2021-44228 (Log4j) » Troubleshoot customer issues installing, configuring, and tuning WAF on a variety of environments (Linux, IIS, AWS, GCP, Azure, Apache, NGINX, Docker, K8s) » Strong background in networking and familiarity with DoS/DDoS and OWASP Top 10 attacks » Solve over 100 tickets every month with a customer satisfaction score of 100 and average response time of 1 minute |
|
| CyberSecurity Engineer, Lockheed Martin Remote |
January 2021 - August 2021 7 months |
|
» Develop and produce RTIB (Red Team in a Box) to automate cyber and penetration testing
» Design hardware interface that enables team to test security across different protocols » Cybersecurity R&D for specific client hardware and software configurations in our cyber lab |
|
| Electrical Engineer, Lockheed Martin Grand Prairie, Texas |
September 2018 - January 2021 2 years 4 months |
|
» Program Cybersecurity for ER-GMLRS – ensure suppliers achieve compliance with DoD cybersecurity requirements and secure testing lab against cyber threats
» Designed tactical harnesses for ER-GMLRS and Gray Wolf missiles » Developed networking software for ER-GMLRS Ironbird » Performed integration and testing for ER-GMLRS Ironbird and HWIL |
|
| Master of Science in Electrical Engineering, The University of Texas at Arlington | June 2019 - December 2020 1y 6 months |
| » GPA 3.9/4.0 | |
| Bachelor of Science in Electrical Engineering, The University of Texas at Dallas | August 2016 - May 2018 1y 9 months |
| » Honors:magna cum laude (GPA 3.85/4.0) | |
| Language | Python, JavaScript, Bash, SQL, Terraform (IaC), CloudFormation (IaC) |
| Software | WireShark, Burp Suite, Metasploit, Postman, Nmap |
| Linux/Unix, Kali, MacOS, Windows, Git, Virtualization, Docker, AWS, Azure |
|
» Professional Engineer (PE)
» AWS Certified Security - Specialty » AWS Certified Solutions Architect - Professional » Microsoft Azure Administrator Associate » (ISC)2 CISSP » EC-Council Certified Ethical Hacker (CEH) [expired July 2024] » Cisco Certified Network Associate (CCNA) - Routing & Switching [expired Jan 2022] |
