Profiles search
Emilio S. CISSP, MS
InfoSec Engineer at Deepwatch
Chicago, IL, United States
Details
Experience:
Integration of SAST and DAST into CI/CD pipelines
Splunk alert creation and configuration for SOC monitoring capabilities
Created a Vulnerability Management process for 5k+ systems, containers, and other cloud resources
Monitored and configured AWS security controls across multiple accounts and VPCs
Assisted in PCI and SOC2 audits gathering evidence
Responded to security alerting events and incidents as a member of the Incident Response Team
Vulnerability scanner deployments across systems and cloud solution integrations
Fully automated audit tasks resulting in a reduction of 16 hours of audit work
2022 : Present
Deepwatch
Senior Information Security Engineer
Monitored daily activities of unit and guarantee compliance to training requirements by planning and orchestrating training sessions for 56-member team. Executed detailed analysis of target network communication nodes, structures, and operating
procedures for additional means of exploitation. Examined data sets to document threats, isolate vulnerabilities, and suggest techniques to exploit vulnerabilities, as part of red team.
Key Accomplishments :
• Transformed target communication profiles via in-depth analysis of data, target tactics, and procedures to provide mission-ready intelligence products.
• Developed 43 intelligence reports containing technical analysis of an Advanced Persistent Threat (APT).
Navy Mobilization to FBI Chicago Field Office (Oct 2020 – Sep 2021)
Executed in-depth analysis to understand events and shared usable intelligence with top management of FBI and US Navy. Conducted research and developed/forwarded intelligence reports with United States Intelligence Community Agencies.
Key Accomplishments :
• Played a key role in an offensive disruption of the APT as a coordinated event between FBI and US cyber command
• Updated executive FBI agents and military officers on APT engagement directly influencing selection of intelligence
agencies of other countries.
2016 : 2023
US Navy
Cryptologic Technician Networks
Steer and motivate high-functioning team of 12 members, implementing and documenting security controls. Expertly maintain appropriate cyber security posture for systems to streamline business operations and client delivery. Serve as proactive part of Incident Response Team, covering 200+ events involving network assets and mobile devices. Actively engage in meeting compliance requirements for new lines of business along with ensuring security and compliance. Oversee security control family containing hundreds of controls to remain in compliance. Offer subject matter expertise to confirm systems follow established information security policies and procedures.
Key Accomplishments :
• Contributed to achieve Fedramp and IL4 accredited by accomplishing 37 security implementation checklists, containing thousands of controls.
• Initiated 30+ security control checklists across vast cloud system, impacting compliant results of 2022 third-party audit
• Played a lead role in clearing combined 30 audits internally and by third parties, including penetration tests,
vulnerability assessments, and policy auditing.
• Coordinated closely with clients and executive leadership to certify first web application for government offered by the
Deloitte Government Sector.
• Ensured compliance with the Approval to Operate by DoD and DISA through the execution of risk management
framework across cloud networks
• Provided leadership and guidance to a team of 12 members, as well as to external teams who work in unison to enable
Line of Business functionality
2021 : 2022
Deloitte
Senior Business Information Security Officer
2021 : 2022
DePaul University
Cybersecurity Graduate Tutor
Supervised 11 separate classified networks conducting all security-focused requirements, such as auditing, vulnerability assessments, technical implementation, and access management. Prepared auditing script to generate weekly report in readable format, ensuring RMF and NIST compliance of 20+ Linux-based systems. Assessed and troubleshot complex issues, as part of the incident response team.
Key Accomplishments :
• Established auditing script to combine 46 systems into auditory compliance.
• Envisioned and implemented system security plans for 11 networks, submitted to the Defensive Counterintelligence
and Security Agency for Approval to Operate.
2018 : 2020
Northrop Grumman
Information System Security Officer
Splunk alert creation and configuration for SOC monitoring capabilities
Created a Vulnerability Management process for 5k+ systems, containers, and other cloud resources
Monitored and configured AWS security controls across multiple accounts and VPCs
Assisted in PCI and SOC2 audits gathering evidence
Responded to security alerting events and incidents as a member of the Incident Response Team
Vulnerability scanner deployments across systems and cloud solution integrations
Fully automated audit tasks resulting in a reduction of 16 hours of audit work
2022 : Present
Deepwatch
Senior Information Security Engineer
Monitored daily activities of unit and guarantee compliance to training requirements by planning and orchestrating training sessions for 56-member team. Executed detailed analysis of target network communication nodes, structures, and operating
procedures for additional means of exploitation. Examined data sets to document threats, isolate vulnerabilities, and suggest techniques to exploit vulnerabilities, as part of red team.
Key Accomplishments :
• Transformed target communication profiles via in-depth analysis of data, target tactics, and procedures to provide mission-ready intelligence products.
• Developed 43 intelligence reports containing technical analysis of an Advanced Persistent Threat (APT).
Navy Mobilization to FBI Chicago Field Office (Oct 2020 – Sep 2021)
Executed in-depth analysis to understand events and shared usable intelligence with top management of FBI and US Navy. Conducted research and developed/forwarded intelligence reports with United States Intelligence Community Agencies.
Key Accomplishments :
• Played a key role in an offensive disruption of the APT as a coordinated event between FBI and US cyber command
• Updated executive FBI agents and military officers on APT engagement directly influencing selection of intelligence
agencies of other countries.
2016 : 2023
US Navy
Cryptologic Technician Networks
Steer and motivate high-functioning team of 12 members, implementing and documenting security controls. Expertly maintain appropriate cyber security posture for systems to streamline business operations and client delivery. Serve as proactive part of Incident Response Team, covering 200+ events involving network assets and mobile devices. Actively engage in meeting compliance requirements for new lines of business along with ensuring security and compliance. Oversee security control family containing hundreds of controls to remain in compliance. Offer subject matter expertise to confirm systems follow established information security policies and procedures.
Key Accomplishments :
• Contributed to achieve Fedramp and IL4 accredited by accomplishing 37 security implementation checklists, containing thousands of controls.
• Initiated 30+ security control checklists across vast cloud system, impacting compliant results of 2022 third-party audit
• Played a lead role in clearing combined 30 audits internally and by third parties, including penetration tests,
vulnerability assessments, and policy auditing.
• Coordinated closely with clients and executive leadership to certify first web application for government offered by the
Deloitte Government Sector.
• Ensured compliance with the Approval to Operate by DoD and DISA through the execution of risk management
framework across cloud networks
• Provided leadership and guidance to a team of 12 members, as well as to external teams who work in unison to enable
Line of Business functionality
2021 : 2022
Deloitte
Senior Business Information Security Officer
2021 : 2022
DePaul University
Cybersecurity Graduate Tutor
Supervised 11 separate classified networks conducting all security-focused requirements, such as auditing, vulnerability assessments, technical implementation, and access management. Prepared auditing script to generate weekly report in readable format, ensuring RMF and NIST compliance of 20+ Linux-based systems. Assessed and troubleshot complex issues, as part of the incident response team.
Key Accomplishments :
• Established auditing script to combine 46 systems into auditory compliance.
• Envisioned and implemented system security plans for 11 networks, submitted to the Defensive Counterintelligence
and Security Agency for Approval to Operate.
2018 : 2020
Northrop Grumman
Information System Security Officer
Company:
Deepwatch
About
Tech-savvy information security leader with substantial experience in information security, vulnerability management, and security control implementation. Dedicated to excellence, improving IT compliance, streamlining processes, leading development of technical solutions in highly structured environments. Recognized for enhancing security, clearing audits, and maintaining system confidentiality. Demonstrated ability to execute risk-based security reviews, assess/resolve security deficiencies, and drive enterprise-focused security improvements. Strong background in staff development, internal security assessments, scripting, and RFP contract reviews. Accomplished communicator skilled in strengthening relationships across business functions.
Profile Photo
