Kolby Walker
Development
TX, United States
Skills
Cloud Computing
About
Kolby Walker's skills align with Consultants and Specialists (Information and Communication Technology). Kolby Walker has 7 years of work experience.
View more
Work Experience
Cloud Security Architect (AWS)
Caterpillar
January 2023 - Present
- * Provide Cybersecurity expertise and direction to leaders from Enterprise Architecture, IT & Cloud operations, and business application teams on architecting cloud tools and solutions, designing security into new and changing cloud-based solutions, and identifying design gaps and potential enhancements in existing system architecture * Collaborate with leadership and senior architects from those organizations actively deploying Cloud workloads. * Partner with Cloud Architects and operations teams to develop and drive a repeatable and consistent approach to cloud solution deployment which balances security with velocity and quality. * Provide guidance and support to development teams in the secure design and implementation of cloud applications. * Collaborate with cross-functional teams to integrate security controls and processes into cloud infrastructure and applications. * Design, document and implement security protocols with AWS and other potential Cloud Service Providers. * Ensure appropriate security monitoring, auditing and reporting is applied enterprise-wide.
Cloud Security Engineer
OpenText
January 2022 - January 2023
- * Leading the security design of OpenText Public cloud infrastructure, including AWS, Azure and GCP. * Planning, testing, and implementing security solutions for the monitoring and protection of company assets in the cloud. * Deployment, management, and optimization of cloud and container security tools such as Prisma Cloud (Twistlock) * Collaboration with Engineer and Developer teams for implementing security services and best practices in the CI/CD pipeline. * Deployment and security of Containers and Kubernetes in FedRAMP environments. * Analyzing requirements for security tools and technology (SIEM, Endpoint Protection, Vulnerability Management, DLP, perimeter security, DDoS) * Implemented CSPM by continuously scanning hundreds of settings for risk, compliance, and monitoring events for anomalies. * Providing direction and guidance on OpenText's security requirements and standards for use in cloud environments. * Automating security controls to streamline operational services and support. * Identifying processes/procedures for how to handle a cloud security event, including forensic isolation and mitigation with Digital Forensics and Incident Response (DFIR/IR) teams. * Identifying new security threats by conducting continual monitoring, security testing, vulnerability assessments and log analysis.
Senior Risk Analyst
Sentinel Technologies
November 2020 - January 2022
- * Delivered monthly reporting to customers of the Security Operation Center * Developed proactive and predictive cyber risk reporting and analytics * Developed actionable Key Performance Indicators (KPI's), Key Risk Indicators (KRI's), and actionable insights * Analyzed data streams from a variety of channels to detect actionable anomalies * Monitored client endpoints using Cisco AMP and Cylance Protect * Monitored client networks using Cisco Umbrella * Managed internal and client Tenable vulnerability management programs * Utilized Splunk to congregate all log sources to investigate anomalies * Contributed to the development of actionable dashboards, scorecards, and reports * Established benchmarks against agreed frameworks * Improved overall situational awareness and proactively provided recommendations and opportunities for improvement as it relates to security for clients
Security Engineer
Blackbaud
March 2019 - January 2022
- * Deployed, maintained and hardened AWS environments and deployments with EC2, S3, CloudFormation, Lightsail, CloudTrail, GuardDuty, Fargate, IAM, and KMS * Experience executing vulnerability management program, maintaining a system of continuous remediation of vulnerabilities within compliance deadlines and implementing Cloud Security Posture Management (CSPM) through InsightCloudSec (formerly DivyCloud) * Deployed security architecture based on compliance requirements, including: Sarbanes-Oxley, PCI-DSS, HIPAA/HITECH, global data privacy requirements, as well as state and federal regulations * Responsible for analyzing change requests pending approval relating to any changes performed in cloud environments and AlgoSec WAF * Provide support, investigate, document, and perform investigations of incidents that occur in cloud environments * Configure and implements security configuration management processes and suggesting recommendations for other departments * Experience as company Policy, Governance, & Compliance Analyst * Experience in consulting with Blackbaud's customers/clients on aligning the company's business with technology and security standards * Experience with completing customers'/clients' questionnaire about Blackbaud's security infrastructure and Cyber Security Program * Experience completing Consensus Assessment Initiative Questionnaire (CAIQ) by Cloud Security Alliance (CSA) for cloud environments * Maintained and updated documents per compliance requirements related to policies and procedures and worked with various teams to ensure annual inspection of documents * Experience as Policy Documentation Writer in Accordance with Cybersecurity Framework (CSF)
Manager of Application & Data Security
YourCause
October 2018 - March 2019
- * Updated company security policies and procedures to be compliant with the following frameworks: * The Payment Card Industry Data Security Standard (PCI-DSS) * The American Institute of Certified Public Accountants (AICPA) System and Organizational Control (SOC2/3) * Health Information Trust Alliance (HITRUST) CSF * The Federal Risk and Authorization Management Program (FEDRAMP) * The Health Insurance Portability and Accountability Act (HIPAA) * The international Information Security Standard ISO/IEC 27001 * Completed security reviews and audits requested by new and existing clients * Managed monitoring and scanning of internal and client-facing SaaS web applications for security vulnerabilities and threat detection with Alert Logic, Skybox, Nexpose, and Splunk * Implemented network security and server security updates for system and application updates including OS, Antivirus and Firewalls * Managed and consolidated independent third-party vulnerability assessments of client-facing apps and work with Project Managers to help mitigate discovered vulnerabilities * Developed, implemented, and trained staff on information security policies, best practices, and social engineering hacking techniques
System Administrator
Diamond Associates
April 2018 - October 2018
- * Handle incoming support calls and emails, and resolve issues remotely and on-site * Monitor, manage, and document all actions and solutions into call tracking system * Configure, install and upgrade specialized cost recovery solutions for clients * Effective communication between departments and clients regarding support, installation and upgrade process * Provide System Administrator and Network Administrator support for local school that outsourced their IT to Diamond Associates * Designed and implemented scalable asset management program to track and monitor lifecycle of hardware * Restructured Active Directory, Windows Servers, firewall security, and Chromebook organization for stability and expansion
Business Network Engineer
Spectrum
May 2017 - April 2018
- * Experience monitoring and inspect network failures to identify the problem and escalate any emergency issues * Troubleshoot and diagnose internet, phone and video services using diagnostic tools such as RIO, NYROC, and Salesforce * Use of Remedy ticketing system to escalate and solve customer issues in a timely manner * Proficient use of ICOMS and CSG billing systems to diagnose technical issues and inform customers of active services * Continuously in top 10% performance ranking of all agents in call center
AWS Cloud Engineer
NewEdge Services
May 2016 - January 2017
- * Redesigned and restructured AWS cloud environment for more efficient use of the SAAS platform NewEdge Services provides * Scripted cloud server tasks for automation using .json and PowerShell scripts * Increased security protocols and procedures through Group Policies and Active Directory to pass annual security analysis * Performed Domain migrations for dozens of clients * Monitored network performance and provided network performance statistical reports for both real-time and historical measurements using custom AWS CloudWatch monitors * Ensured network, system and data availability and integrity through load balancing, preventative maintenance, upgrades, and patching of servers and software
Education
