Scott F

Kryterion

Kryterion • Tiempo completo

Nov 2022 - Present • 3 yrs 6 mos

Serve as a hands-on cloud builder and architect responsible for designing, modernizing, and operating secure, scalable infrastructure on AWS. Lead the evolution of the organization’s AWS account architecture in alignment with the AWS Well-Architected Framework, establishing patterns that improve governance, reliability, and long-term maintainability. Drive infrastructure automation through AWS CDK, enabling repeatable, version-controlled deployments across environments and empowering engineering teams to move faster with confidence. Optimize platform cost and performance by right-sizing data infrastructure and refining environment strategy, resulting in substantial ongoing savings. Partner cross-functionally to strengthen the overall platform — streamlining secure developer authentication workflows, improving observability through centralized monitoring and alerting, and identifying systemic issues in data and ETL processes to increase reliability. Collaborate on foundational cloud and DNS configurations, including email deliverability improvements, while continuously advancing best practices for security, automation, and operational excellence across the cloud platform.

Cloud Infrastructure Architect

Amazon • Tiempo completo

Dec 2020 - Nov 2021 • 11 mos

Designed and implemented scalable, secure cloud infrastructure solutions on AWS for enterprise customers. Led architecture decisions across networking, compute, and security, translating business requirements into resilient cloud designs using infrastructure as code and automation. Partnered with cross-functional teams to optimize cost, performance, and reliability while establishing best practices for CI/CD, governance, and multi-account cloud environments.

Application Security Engineer

MX Technologies • Tiempo completo

Mar 2019 - Nov 2020 • 1 yr 8 mos

Acted as a security-focused builder embedded within engineering, responsible for designing and operationalizing application security capabilities across the software development lifecycle. Led initiatives that strengthened secure development culture, including creating and delivering a secure coding training program for Engineering, Product, and QA teams to improve security awareness and reduce risk early in development. Designed and implemented systems to detect, triage, and respond to security signals across the environment, aggregating data from firewall telemetry, vulnerability management tooling, and security communications to enable more effective incident response and prioritization. Established scalable security workflows by building an OWASP ASVS-aligned issue tracking model integrated with GitHub and GitLab, helping teams consistently manage and remediate findings within their existing development processes. Improved identity and access governance by designing Okta integrations that centralized permission management for GitLab, and enabled more effective application security testing by creating containerized deployment patterns that supported dynamic analysis. Partnered closely with Engineering and Product teams to coordinate vulnerability remediation across penetration tests, scans, and disclosure programs, while providing hands-on guidance through threat modeling and risk assessments to ensure security was built into product design from the outset.