About Me
Hi, I’m Matt. I’m a DevSecOps Engineer specializing in cloud native technologies and secure software delivery. I focus on Kubernetes, containerization, and platform engineering, with extensive experience across AWS, Azure, and GCP cloud platforms.
I’m passionate about Infrastructure as Code, GitOps practices, and building secure, scalable cloud native solutions. I work extensively with tools like Terraform, Helm, and Kubernetes, while maintaining a strong foundation in Linux systems and automation.
Currently, I’m a DevSecOps Engineer at Defense Unicorns, where I architect and implement cloud native solutions through our Unicorn Delivery Service (UDS) platform. I work closely with Mission Heroes to enable secure software delivery pipelines. I specialize in containerized applications and implementing DevSecOps practices in highly regulated environments.
I maintain SoldierSave.com, a GitLab-hosted resource platform for military veterans. You can view its source code here.
I serve as a Cyber Warfare Technician (170A) in the Army National Guard, where I leverage my technical expertise to support cyber operations and defense initiatives.
When I’m not working, I enjoy spending time with my family, playing with my dog, and working on personal projects.
I’m always eager to collaborate on innovative cloud native projects and explore new technologies in the DevSecOps space. Feel free to reach out if you’d like to connect.
This online resume was generated with the help of the Modern Resume Theme for Jekyll. It’s hosted on GitHub Pages. You can check out my source code on my GitHub!
Projects
SoldierSave is an Antora-based website that provides resources for military veterans. It is hosted on GitLab Pages and is built using GitLab CI/CD pipelines.
This website will be updated with new content as I find it. I’m always looking for new resources to add, so if you have any suggestions, please let me know at soldiersave.suggestions@gmail.com
Experience
Army National Guard (KY)
IT Specialist (25B)/Warrant Officer Candidate (09W/170A)
Jun 2020 - Present
https://nationalguard.com/
- Client Operating Systems
- Computer Hardware
- Exchange Server
- LAN/WAN Networking
- Network Security
- Windows Server
- Individual Contributor on a small DevSecOps team leveraging GitOps practices to manage cloud-native infrastructure
- Design and template Helm charts to streamline Kubernetes application deployments and enforce configuration
- Develop and maintain GitHub Actions workflows to automate CI/CD and integrate application updates seamlessly
- Engineer and enforce Kubernetes network policies, leveraging Istio for service mesh implementations and security
- Collect and analyze application telemetry using Prometheus metrics to monitor and optimize performance
- Build and deploy app integrations for the Defense Unicorns Airgap App Store to enhance Mission Hero capabilities
- Support system integration efforts across Kubernetes clusters using tools like k3d and Docker
- Collaborate with stakeholders to translate complex requirements into scalable, secure, and declarative solutions
- Transition FedRAMP and DoD client environments to align with updated NIST 800-53 revision 5 guidance (from previous revision 4 guidelines)
- Advise, architect and build customer cloud environments using Infrastructure as Code, shell scripting and automation
- Author Reference Architecture Design Documents, ensuring they are in line with best practices
- Illustrate network infrastructures through comprehensive and intuitive diagrams
- Create, review, and present detailed reports tailored for both technical specialists and high-level executives
- Strategic advisory on configurations across technology stacks with cloud providers such as AWS, Azure, and GCP
- Support and streamline the security program’s assessment and authorization phases
- Author and peer review of detailed design documentation, including security documentation and inclusive of vendor best practices
DHS Cybersecurity and Infrastructure Security Agency (CISA)
IT Cybersecurity Specialist
Oct 2022 - Jul 2023
https://www.cisa.gov/
- Participate in planning, definition, and high-level design of the solution and exploration of solution alternatives
- Actively participate in the Continuous Exploration process as part of the Continuous Delivery Pipeline
- Work with customers, stakeholders, and suppliers to establish high-level solution intent
- Establish critical non-functional requirements (NFRs) for the solution and participate in the definition of others
- Work with portfolio stakeholders to develop, analyze, split, and realize implementation
- Participate in Program Increment (PI) Planning and Pre- and Post-PI Planning, System and Solution Demos, and Inspect and Adapt(I&A) events
- Plan and develop the Architectural Runway in support of new business Features and Capabilities
- Work with Product and Solution Management to determine the capacity allocation for enablement work
- Support technology/engineering aspects of program and solution
- Provide oversight and foster built-in quality and team/technical agility
- Design, architect, and deploy client architectures in the AWS, Azure or GCP cloud space
- Member of a highly-collaborative and agile engineering team of Solution Engineers
- Design and implement secure and compliant enterprise servers, network infrastructure, boundary protection, and cloud architectures using Infrastructure-as-Code
- Conduct testing and data reviews to evaluate the effectiveness of current security measures
- Provide support to the security program assessment and authorization processes
- Author and peer review of detailed design documentation, including security documentation and inclusive of vendor best practices
- Assist in preparing plans, policies and procedures for Blue Grass Chemical Agent-Destruction Pilot Plant (BGCAPP) Cybersecurity Program
- Support ISSO and IAM in satisfying contractual requirements to achieve and maintain ATO via documentation efforts and continuous monitoring techniques.
- Ensure all work processes are properly tracked to support Cybersecurity program
- Support, monitor, test, and troubleshoot hardware and software problems pertaining to systems under purview
- Conduct tests of Cybersecurity safeguards in accordance with established test plans and procedures
- Participate in incident response team efforts and investigate cybersecurity related incidents as directed by the IAM
- Assess and document enterprise compliance and risk posture as it related to it’s information assets
- Execute strategy for dealing with increasing number of audits, compliance checks and external assessment processes for internal/external auditors, FISMA, NIST SP 800-53, SOC 2, PCI DSS
- Gap analysis
- Create automated reports and dashboards with enterprise SIEM solution
- Author Standard Operating Procedures
- Perform IS Risk Assessment
- Support Ongoing Authorization (OA) / Authorization to Operate (ATO) activities
- Evaluate logical and physical access controls
- Vulnerability management (Nessus)
- Incident Response Team member
- Coordinate with all levels of System staff including; help desk, developers and networking staff, auditors, and all technology vendors and contractors, in matters related to information security and security awareness
- Assess computer hardware, software, and systems for security risks or violations and work with IT staff and operations to recommend solutions.
- Develop strategies to address awareness and training for all stakeholders as well as technical solutions
Education
University of the Cumberlands
Bachelor of Applied Science in Information Technology - Cybersecurity
Apr 2022 - May 2023
Grade: 4.0 GPA
Activities and societies: President, UC Cyber Club Summa Cum Laude
National Center of Academic Excellence in Cyber Defense (CAE-CD) by the National Security Agency (NSA) and the Department of Homeland Security (DHS)
Major: Cybersecurity
Related coursework:
- Application Software
- Programming
- Hardware
- Web Design
- Networking
- Server Administration
- Business Intelligence
- Developing and implementing current security policies
- Managing compliance with federal regulations including SOX, GLBA, and HIPAA
- Creating disaster prevention and recovery plans
- Recognizing and preventing exploitation in hardware, software and network configurations
Somerset Community College
Associate of Arts and Sciences (AAS) in Information Security
2017 - 2019
Grade: 3.88 GPA
Activities and societies: Phi Theta Kappa Honors Society
Major: Information Security
Related coursework:
- Computer Hardware and Software
- MS Network Infrastructure; Active Directory Services
- Security (including Network Security; Attacks/Exploits; Perimeter Defense)
- UNIX/Linux Administration
- Python/Programming
- Database Design
Licenses/Certifications
- GIAC GCLD
- Google Professional Cloud Architect
- Kubernetes and Cloud Native Associate (KCNA)
- (ISC)2 CISSP
- CompTIA CASP+
- CompTIA Pentest+
- CompTIA CySA+
- CompTIA Security+
- CompTIA Network+
- CompTIA A+
- Forescout Certified Administrator (FSCA)
- GitHub Foundations
- Microsoft Azure Fundamentals
- HashiCorp Certified Terraform Associate
- AWS Certified Solutions Architect – Associate
- AWS Certified Developer Associate
- (ISC)2 Systems Security Certified Practitioner (SSCP)
- Cisco Certified Networking Associate (CCNA)
- Splunk Core Certified User