DEV Community

Toul
Toul

Posted on • Edited on

Cyber Security Engineer Resume: Here's mine as an Example

I recently obtained my AWS Security Specialist Certification and transitioned to the role of Cyber Security Infrastructure Analyst from a DevOps engineer.

Here's what my DevOps engineer resume looked like to land the Cyber Security Job.

`Toul DeGuia-Cranmer

Compliance: SOC 2 Type 1 and 2 Project

  • Created Python Lambdas to

    • Automate collection of infrastructure assets on monthly basis
    • Generate a Delta difference on a monthly basis
    • Reports presented to compliance team on a monthly basis
    • Proposed future enhancements to use AWS Config with AWS Security Hub and AWS GuardDuty to further automate and generate Dashboard with findings
  • Created GoLang CLI tool to

    • Generate reports of accounts with elevated permissions for AWS, GitHub, PagerDuty, Microsoft Active Directory, and LaunchDarkly
    • Azure DevOps to automatically update assigned tickets
    • Automatically add Branch Protections to repositories
  • Weekly Tenable Scanning Reports

    • Presented data to Compliance team
  • ECR Scanning for each micro service image

    • Used a python script to scan 300+ ECR repos to remediate broken ECR scanning
    • Changed the platform to enable ECR scanning by default for all newly created repos
  • GitHub Enterprise Depend a Bot

    • Worked with HPIT to enable third party package scanning at the codebase level for every PR
    • Created script to scan GitHub Org for CVE vulnerabilities found within the micro-services repos
    • Presented report to Compliance team
  • Automated installation of HPCS required CyberSecurity Agents

    • Updated terraform launch template so that each newly created node would have the required agents
  • Anchore

    • Implemented Anchore to scan Docker files and images per commit
  • Terragrunt / Terraform Infrastructure Pipeline

    • Enabled 200+ developers to provision any piece of AWS infrastructure they needed 24/7 365 days a year
    • Reduced infrastructure resource provisioning time from days to minutes
  • AWS WAF Implementation

    • Increased AWS Web Application Firewall (WAF) on AWS Application Load Balancers (ALB) from 0% to 100% in production
    • Inner sourced the WAF into a Terragrunt template that is applied across hundreds of AWS ALB's`

The main thing you'll see is each project is in someway related to security and this is because I informed my manager that is what I'm interested in and they provided me security tasks for the platform.

Top comments (0)