Summary
Overview
Work History
Education
Skills
Timeline
Generic

Daniel Sanders

Elwood,Australia

Summary

I am an open minded, open speaker, respectful, and knowledgeable. I am not afraid to speak up about what I have discovered, innovated, experienced but will always open my mind to absorbing others creativity. I am very motivated and driven

Overview

20
20
years of professional experience

Work History

Senior consultant of cloud security

Flybuys
04.2022 - Current
  • Development of python Compliance framework that provides compliance and failures at build time of AWS CDK, terraform, terraform plans, git, CloudFormation, Kubernetes, azure, cdk, arm, etc at build
  • Worked with the workloads directly to help them implement the framework into their pipeline to improve security posture, Collaboration is key
  • Set up a Slack workflow for people who needed help or changes as there is always someone who needs something a bit special, this usually ends up with an exemption which the framework can handle
  • Or we make a new rule for that team
  • Subject matter expert for AWS
  • Rollout of centralised logging and log transformation using aws kinesis, and azure sentinel.

DevOps Engineer

ANZ
  • IBM MQ automation, CI/CD, Packer, vagrant, DevOps styles
  • Heavy DevOps culture, this environment was a child company of ANZ which was PURE 'elite DevOps teams'
  • Their goal was to totally absorb agile development, which was the same as had been done in Whisper and Pexa
  • Windows/Linux, IBM broker, Various developers, architects
  • Day to day tasks such as Ongoing review of automation structure, code review, Application POC work, Architectural discussions
  • One of the larger projects I handled was taking their new payment gateway to be completely automated, which involved automating IBM WebSphere to have a tight integration via Puppet to other moving parts of the stack, such as the application tier, web tier and database
  • The framework was constantly being developed, in a development environment, which constantly and rapidly started to build an automation framework that managed the stack and multiple parallel environments/labs the framework also included CI/CD build automation deploy automation framework (converted from bamboo to Puppet)
  • Quite proud of this as this is the third time, I’ve been involved in building a CI/CD automation.

Senior consultant of cloud security

NAB
10.2017 - 10.2019
  • Develop Continuous compliance controls for 200+ accounts
  • My own achievement for development of 110 + Lambda controls in an agile team
  • Very heavy Python API development with Lambda
  • AWS config rules
  • CloudWatch events, Event bus
  • CloudFormation
  • CFN DSL
  • Controls that use events to auto remediate
  • Splunk reporting
  • Controls to display Compliance to Asset teams (Splunk dashboards, and AWS config Dashboards)
  • I am the Lead Developer of a product called Self Service IAM at nab, an automated lambda event system that auto remediate IAM policies and other AWS resources to the requirements set forth by security architecture
  • I am the main driving force for our decision to develop AWS Lambda compliance rules, in a Team of 6
  • I have been given a great driving force handed down to me by my manager, with outstanding results
  • I am now extremely fluent in Python, which is the preferred method for developing Lambda Controls
  • Alongside this Jenkins pipeline, and auto account provisioning event system
  • I have been put forward with others to ramp up 'multi cloud' AWS, Azure, Google All support python which is a perfect fit
  • Azure training has started and more to come
  • My first months at NAB, I ramped up the very first Asset team to have 50 AWS lambda controls to give Compliance to a platform holding credit card data into an analytics platform
  • Our team, based on our good work we are now being Selected by AWS to be recommended as not as 'World Class', but 'World Leading', reference attached
  • Worked with the workloads directly to help them implement the framework into their pipeline to improve security posture
  • We operate as security with the phrase 'we must be whiter than white', meaning we must be better than the people we tell to fix their workloads
  • (We must be better at automation, we must be better at patching, we must do it all better), this is how we got the acceptance to build a World Leading continuous Controls pipeline
  • I am well known as the person to bridge and fill gaps, weather that be binding the blocks with the various external elements where there is 200+ asset teams, e.g., there are pressures for a team to be compliant due to management pressures, I am the person who often gets organised, and constructs communicate, tickets, and code quite fast with perfect quality.

Devops Engineer

Telstra Health
10.2017
  • Responsible for ongoing development of stack, Sprint work on redhat/centos, ISM compliance, security architecture, spacewalk, CI/CD, automation planning
  • Monash Openstack Upgrade, openstack automation, openstack migration to new DC
  • Uplift the Puppet automation, git, control-repo lifecycle.

Senior Cloud security Engineer

Iress
10.2020 - 07.2021
  • Development of python Compliance framework that provides compliance and failures at build time of terraform, terraform plans, git, CloudFormation, Kubernetes, azure, cdk, arm, etc at build
  • Worked with the workloads directly to help them implement the framework into their pipeline to improve security posture, Collaboration is key
  • Set up a Slack workflow for people who needed help or changes as there is always someone who needs something a bit special, this usually ends up with an exemption which the framework can handle
  • Or we make a new rule for that team.

Senior consultant of cloud security

ANZ
07.2021 - 04.2022
  • Development of security controls using conftest, opa, rego, Prisma cloud
  • Security reviews of all workloads (manual tasks)
  • Improve posture of security by working through the Jira backlog
  • 100% GCP/GKE.

Senior consultant of cloud security

ANZ
10.2019 - 07.2020
  • Develop Soc Detections, in Java, Python
  • Gained a new skill in java programming
  • Gained a new skill in Apache Beam Framework
  • Providing and sharing experience of AWS to the greater SOC and platform teams
  • Uplift of Soc Splunk Detections
  • Developer of an Orchestration Framework for Soc to use
  • Uplifting Level 1 Soc team to be cloud aware
  • Showcasing of detection playbooks.

DevOps Engineer

API
  • Majorly, API was not able to uplift their developers, and Integration systems without an automation framework, my job was to get them there, and empower them
  • IBM Broker/MQ automation CI/CD, AWS automation, training
  • Uplifting Teams processes to an agile development lifecycle, using Git, branching, merging, creating the framework for environment to be linked to the lifecycle using Puppet, git, r10k, branching merging and approvers via Atlassian tools, this allowed the operations and development team to operate via a DevOps style.

DevOps - CI/CD

Accenture
  • Required a huge uplift as they turn their application to a full production system, fitting their high security requirements
  • Security requirements: Webapp security hardening, Data security, Building IDP and framework for applications to utilize
  • Splunk Machine learning, big data, monitoring, Extensive automation.

DevOps, Systems/Stack Specialist

Contract Services
07.2017 - 10.2017
  • Telstra TV automation Engineer
  • Responsible for CI/CD, provide guidance of how to operate a production system Using AWS and Kubernetes Container systems, system automation, Bamboo CI/CD, using maven deployments to antifactory, and automation builds of code in antifactory into docker containers
  • With consideration that we will need to rebuild all that is built in AWS-Kubernetes into Openstack later.

DevOps Engineer / Automation Engineer/Architect

PEXA
06.2015 - 10.2016
  • Acting as the Senior Linux system Engineer (originally), due to Drive and Skillset, I quickly moved into the DevOps team to work as a team and empower automation with multiple primary responsibilities as the LeadAWS & automation to enable platforms and services through DevOps, AmazonAWS and Puppet
  • Larger portion of my work was Day to day Agile development with Security Architect, Software Architect, and Developers
  • We discussed the company pipeline, prepared, tested, validated frameworks before being released to other DevOps teams to use
  • This then empowered many more opportunities
  • I reported to multiple Managers, Working on Agile development for Application development, Automation, Performance and QA
  • Acting as the Senior Security Systems Engineer, reporting to a Security Architect
  • Ongoing integration, using advanced Authentication Mutual SSL, SAML, Oauth, Certificate CA chain Trust/Keystore via apache, java, scripts, IBM message broker
  • Architecture of applications, building new services, to move the company to end state goals, scalable platforms, auto-deployable infrastructure
  • Presenting designs, models, PIC, ideas through architecture review and reviewing discussions and solving integration projects to move the company forward
  • Currently working on multiple projects, aligning applications and projects to fit the landscape of Big Data, and scalable infrastructure in production and DevOps/CI
  • Most recently I have been throughAWS architecture training and acting as the primary Puppet/AWS DevOps engineer/architect, and various API gateways authentication/authorization subscriber/consumer policies
  • High level deployment management/model using Puppet, alongside Bamboo, Stash, AWS API’s
  • From scratch Splunk logging clustering + scripts, Providing and consuming analytical data
  • Red Hat satellite/spacewalk & Puppet master
  • Clustering, of various methods, event triggered clustering
  • Docker & OpenShift containerisation
  • Infrastructure, redesign VMware, SAN, Memory & Disk caching systems
  • Red Hat License management
  • I have a high drive towards big data, Hadoop, hdfs, Redis, mongodB, ETL data systems
  • Custom Puppet reporting and dashboarding with Splunk.

DevOps Engineer / Automation Engineer/Architect & physical

Whispir
06.2014 - 06.2015
  • Acting as a Senior Linux System Engineer, with primary responsibilities as core Kennel SMS platform specialist, AmazonAWS, Puppet and general Company system infrastructure
  • Currently in progress of restructuring, the entire production system from active/standby to active/active, across multiple zones, AU, SG, NZ, US
  • Most recently I have been through Puppet training and acting as the primary Puppet DevOps
  • High level configuration of kannel SMS gateways (rich media SMS), clustering of SMS gateways, apache, postgres, Redis, haproxy, across multiple types of frontend/backend
  • From scratch Splunk logging clustering + scripts, building billing scripts for processing customer data
  • (I am the log master)
  • Linux satellite/spacewalk & Puppet master
  • Clustering, of various methods, event triggered clustering
  • Docker & OpenShift containerisation
  • Infrastructure, redesign VMware, san, caching systems
  • Red Hat License management
  • Growth ofAWS using containerisation to manage costs.

DevOps Engineer/ systems engineer & Corporate network Admin

M2 Telecom
12.2012 - 06.2014
  • Currently holding the Unix Administration position, whilst undertaking the duties of the Corporate Network Administrator Role
  • I manage all Switching, Routing and Firewall Security for M2, Commander, Primus, Dodo and Eftel as a result of our recent mergers for: Linux in the IT services Department, Take on New Infrastructure requirements, Install, Build and Migrate Systems Hardware and Operating systems, Management of The Linux Virtual Environment (KVM, QEMU), Managing DR projects, video conference systems, monitoring of sensitive servers, migration to virtual infrastructure, merging company’s infrastructure and Management of Asterisk PBX farms, IVR's, and Programming.

Network Engineer – managed services

M2 Telecom
02.2011 - 02.2012
  • IP Network Engineer Corporate & Wholesale Customer Managed Services Design Apply and Support Managed Network services Record management, and documentation, 24x7 responsibility Higher Level support for 1st and 2nd level Corporate Tech support Software: SolarWinds, HP OpenView NNM, ManageEngine NetFlow Analyzer, Cacti, MRTG, Syslog, Cat Tools, Dude, NetFlow, nfdump, Opennms, Various Active/passive monitoring
  • This position Placed at a very high scale of managed services, with high quality QoS, for DATA and Voice.

Operations

Commander Centre Brisbane
01.2010 - 02.2011
  • Management of Customer IP Networks Document management for customers, recommendations, and progress customers systems and networks to take new technology, systems, PBX, services and programming of various types.

Business Broadband Technician

AAPT
11.2008 - 01.2010
  • Business Broadband Engineer

Service Operations Manager Toowoomba

Commander
11.2007 - 11.2008
  • Multiple PBX programming skills, driving new projects and acting as a Team leader to Management, for various Projects Installation and maintenance of a range of PABX systems legacy and new Project management related to cabling and staging cabling for Telephone Systems Providing wireless link solutions for VoIP/data connections between multi-site businesses
  • Liaising with Companies such as Security, Telstra, Suppliers and ICT Integrated Partners
  • Providing QoS, VOIP Network Topology for Multi-Site Businesses.

Motorola Canopy Wireless Systems Engineer / Foxtel Engineer / 2-Way Sat Engineer

Downer EDI
01.2006 - 01.2007
  • IP & Wireless Engineer

Security System installer / Designer

Camera FX
01.2006 - 01.2007
  • My responsibility is to design and maintain Customer Security via Camera Security, Full installation from top to bottom.

Austar Engineer

Austar
01.2005 - 01.2006
  • Satellite technician

Bigpond / Foxtel / PSTN Engineer

Silcar
01.2004 - 01.2006
  • Coaxial Services IP and TV installation Technetium

Education

AWS Security

Architecting in AWS

CCNA/CCNP

Load balancers and gateways

ISR's

Wireless

Linux server services

FortiGate Security Firewall

Cisco ISE

OSCP

CISSP

WEBGOAT, CEH, DVWA, Pen tester LAB

Skills

  • Penetration Testing Skills
  • Identity and Access Management
  • Cloud Security Proficiency
  • Security Compliance Auditing
  • Operating System Hardening
  • Ethical Hacking Techniques
  • Incident Response Management
  • Security Architecture Design
  • Application Security Knowledge
  • Security policy development
  • Data Loss Prevention Techniques
  • Mobile Device Security
  • Network Security Expertise
  • Virtualization Security Management
  • Wireless Network Security
  • Digital Forensics Investigation
  • Secure Software Development
  • Patch management
  • Security Information and Event Management
  • Application security
  • Penetration Testing
  • Incident Response
  • Infrastructure Automation
  • Linux Operating System
  • Monitoring and Logging
  • Containerization Technologies
  • Scripting Languages
  • Test Automation
  • Microservices Architecture
  • API Development
  • System Administration
  • IT Operations
  • Security best practices
  • Task Prioritization
  • Configuration Management
  • Software Development
  • Custom coding
  • Amazon Web Services
  • JIRA
  • GitHub collaboration
  • Source and Version Control: Git, Github
  • Continuous Integration Systems
  • Teamwork and Collaboration
  • Testing and debugging
  • Software Development Tools: JIRA, Confluence
  • Cloud Troubleshooting
  • Serverless Computing
  • Cloud Security Management
  • Cloud Platform Expertise
  • Problem-Solving

Timeline

Senior consultant of cloud security

Flybuys
04.2022 - Current

Senior consultant of cloud security

ANZ
07.2021 - 04.2022

Senior Cloud security Engineer

Iress
10.2020 - 07.2021

Senior consultant of cloud security

ANZ
10.2019 - 07.2020

Senior consultant of cloud security

NAB
10.2017 - 10.2019

Devops Engineer

Telstra Health
10.2017

DevOps, Systems/Stack Specialist

Contract Services
07.2017 - 10.2017

DevOps Engineer / Automation Engineer/Architect

PEXA
06.2015 - 10.2016

DevOps Engineer / Automation Engineer/Architect & physical

Whispir
06.2014 - 06.2015

DevOps Engineer/ systems engineer & Corporate network Admin

M2 Telecom
12.2012 - 06.2014

Network Engineer – managed services

M2 Telecom
02.2011 - 02.2012

Operations

Commander Centre Brisbane
01.2010 - 02.2011

Business Broadband Technician

AAPT
11.2008 - 01.2010

Service Operations Manager Toowoomba

Commander
11.2007 - 11.2008

Motorola Canopy Wireless Systems Engineer / Foxtel Engineer / 2-Way Sat Engineer

Downer EDI
01.2006 - 01.2007

Security System installer / Designer

Camera FX
01.2006 - 01.2007

Austar Engineer

Austar
01.2005 - 01.2006

Bigpond / Foxtel / PSTN Engineer

Silcar
01.2004 - 01.2006

DevOps Engineer

ANZ

DevOps Engineer

API

DevOps - CI/CD

Accenture

AWS Security

Architecting in AWS

CCNA/CCNP

Load balancers and gateways

ISR's

Wireless

Linux server services

FortiGate Security Firewall

Cisco ISE

OSCP

CISSP

WEBGOAT, CEH, DVWA, Pen tester LAB

Similar Profiles

CREATE PROFILE
Daniel Sanders