Scott Schlangen Link to heading

[email protected] | GitHub | LinkedIn

Cybersecurity professional with extensive experience in threat analysis, incident response, and cloud security operations. Proven track record of implementing security controls, leading incident investigations, and protecting critical infrastructure across private sector and municipal environments. Currently expanding expertise in identity and access management and regulatory compliance through the Microsoft Security Compliance certification path, while pursuing a Bachelor’s in Cybersecurity with plans to advance into a Master’s in Information Assurance.

Career Experience Link to heading

City of Carmel, IN

Cybersecurity Administrator

  • Lead vulnerability management program using Nessus Professional, conducting enterprise-wide scans and coordinating remediation efforts across IT infrastructure.
  • Manage enterprise risk register using Cynomi platform, documenting security controls, entering evidence, and tracking compliance requirements aligned with NIST and municipal standards.
  • Architect and deploy Ansible automation infrastructure, establishing control node for automated Linux patch management and configuration management across municipal systems.
  • Administer Microsoft Entra ID (Azure AD) as primary identity provider, managing user provisioning, access controls, and conducting security investigations for flagged at-risk user accounts.
  • Design and execute monthly phishing simulation campaigns using KnowBe4, selecting realistic attack scenarios, analyzing results, and delivering targeted security awareness training based on user behavior patterns.
  • Serve on Change Management Review Board, evaluating security implications of proposed IT changes and ensuring compliance with security policies and risk tolerance.
  • Deploy and maintain Wazuh SIEM infrastructure with custom detection rules and log decoders, correlating security events across municipal networks and systems.
  • Coordinate with MS-ISAC for threat intelligence sharing, incident response support, and leveraging federal resources for municipal cybersecurity operations.

Quadrant Information Security

Threat Analyst

  • Monitor network traffic and security alerts to identify and investigate potential cyber threats and incidents from customer sensors.
  • Lead investigations from detection to resolution, owning the entire process without tiered escalation.
  • Analyze log files from multiple sources (host logs, network traffic, firewall logs, IDS logs) to identify, assess, and respond to security incidents.
  • Communicate and report security incidents to customers within SLA timelines, ensuring clear and prompt updates.
  • Proactively hunt for threats, analyze emerging trends, and enhance the organization’s detection capabilities.

MIE Medical Information Engineering

AWS DevOps Tech

  • Managed cloud infrastructure as code using Terraform and Ansible, automating deployments and reducing manual intervention across AWS environments.
  • Implemented and enforced IAM policies and security best practices to safeguard critical healthcare application resources and ensure HIPAA compliance.
  • Integrated automated security testing and vulnerability scanning within CI/CD pipelines, identifying and mitigating risks early in the development lifecycle.
  • Administered HashiCorp Vault for secrets management, ensuring secure access to sensitive healthcare data and maintaining compliance with industry standards.
  • Deployed and maintained AWS infrastructure supporting electronic health record (EHR) systems, ensuring high availability and disaster recovery capabilities.

eVideon by Vibe Health

Cloud Systems Engineer

  • Maximized productivity by building out infrastructure in AWS, ensuring a scalable and reliable environment for operations.
  • Played a key role in the ISO-27001 implementation, aligning security practices with international standards.
  • Assisted in researching and deploying SIEM systems to enhance the organization’s threat detection and response capabilities.
  • Acted as an integral member of the Incident Response Team, leading containment and remediation efforts to mitigate security incidents.
  • Delivered Security Awareness Training and Phishing Campaigns, promoting cybersecurity best practices across the organization.

4EOS - Netgain Technologies

System Engineer

  • Streamlined operations by configuring and administering firewall rules, applications, VPNs, and IDS/IPS settings to ensure secure perimeter defense.
  • Reviewed IT systems and applications for large enterprise environments, applying security best practices and principles to protect critical data.
  • Led containment and remediation efforts as a key member of the Incident Response Team, responding swiftly to mitigate security breaches.
  • Promoted end-user security education through Security Awareness Training and Phishing Campaigns, reducing vulnerability to social engineering threats.
  • Collaborated with clients to secure and optimize business IT operations, applying strong relationship-building and technical expertise.

Everstream Solutions

Network Operations Center Engineer

  • Spearheaded the resolution of customers’ circuit issues, managing the entire process from alert detection to resolution.
  • Monitored network infrastructure, responding to alarms and proactively addressing network issues while ensuring effective customer communication.
  • Consistently met and exceeded performance targets, delivering high-quality service in a fast-paced environment.

Additional Experience as NOC Service Desk Technician, Indiana University, Purdue University Indianapolis; Security Analyst, Rook Security, Indianapolis, IN.

Education Link to heading

Western Governors University Bachelor of Science in Cybersecurity | Expected September 2027

Future Academic Goals: Master of Science in Information Assurance

Certifications Link to heading

Microsoft Security Compliance (In Progress)

  • SC-900: Microsoft Security, Compliance, and Identity Fundamentals (Actively Preparing)
  • Pursuing expert-level certifications in Identity and Compliance domains

Industry Certifications

  • Ransomware Negotiation and Threat Intelligence (Security Blue Team)
  • BTL1 (Security Blue Team)
  • Certified CyberDefender (CCD)
  • CompTIA CySA+
  • CompTIA Security+
  • CompTIA Network+
  • CompTIA Project+
  • CompTIA Cloud+
  • CompTIA Cloud Admin Professional
  • CompTIA Secure Cloud Professional
  • CompTIA Security Analytics Professional
  • ITIL 4 Foundation Certificate in IT Service Management
  • AWS Cloud Practitioner
  • AWS Solutions Architect, Associate
  • Azure Fundamentals (AZ-900)
  • SentinelOne Incident Responder
  • Linux Essentials from LPI
  • JNCIA Juniper Networking Associate

Professional and Technical Proficiencies Link to heading

Security & Compliance Frameworks

  • NIST Cybersecurity Framework (CSF)
  • NIST 800-53 Security Controls
  • NIST Risk Management Framework (RMF)
  • ISO 27001 Information Security Management
  • CIS Critical Security Controls
  • CJIS Security Policy

Risk Management & Governance

  • Enterprise Risk Assessment & Analysis
  • Security Control Implementation & Testing
  • Vulnerability Management Programs
  • Security Policy Development & Enforcement
  • Compliance Auditing & Reporting
  • Third-Party Risk Assessment
  • Business Impact Analysis

Identity & Access Management

  • Microsoft Entra ID (Azure AD) Administration
  • Privileged Access Management (PAM)
  • Multi-Factor Authentication (MFA)
  • Role-Based Access Control (RBAC)
  • Identity Governance & Lifecycle Management
  • Single Sign-On (SSO) Implementation

Security Operations & Monitoring

  • SIEM Operations: Microsoft Sentinel, Splunk, Wazuh (custom rules & decoders)
  • Threat Hunting & Intelligence Analysis
  • Security Event Correlation & Analysis
  • Incident Detection & Response
  • Email Security: AbnormalAI (AI-driven threat detection)
  • Security Awareness Training: KnowBe4 platform administration
  • Phishing Simulation & Analysis

Technical Platforms & Tools

  • Microsoft Security Stack: Sentinel, Defender, Purview, Entra ID
  • Cloud Platforms: Azure, AWS
  • Vulnerability Management: Nessus Professional
  • Risk Management: Cynomi (GRC platform)
  • Endpoint Security: CrowdStrike, Tanium, SentinelOne
  • SIEM Solutions: Wazuh (deployment, custom rules, decoders), Microsoft Sentinel, Splunk
  • Email Security: AbnormalAI
  • Security Training: KnowBe4 (campaign management)
  • Network Security: Firewalls (Fortigate, Cisco), VPN, IDS/IPS
  • Configuration Management & Automation: Ansible, PowerShell, Python, Bash

Professional Affiliations Link to heading

  • Multi-State Information Sharing and Analysis Center (MS-ISAC) - Active Member
  • Information Systems Security Association (ISSA) - Local Chapter Member
  • CISA (Cybersecurity and Infrastructure Security Agency)
  • Security Magazine