# Scott Schlangen Link to heading
- 📧 Email: [email protected]
- 🌐 Website: scottschlangen.com
- 🐱 GitHub: schlangens
- 💼 LinkedIn: scottschlangen
A driven cybersecurity professional with a strong background in IT, transitioning from law enforcement to NOC/SOC operations and cloud security. Currently pursuing a Bachelor’s in Cloud Computing, I am committed to continuous learning and innovation in cybersecurity, with plans to advance into a Master’s in Information Assurance.
Career Experience Link to heading
Quadrant Information Security Link to heading
Cyber Threat Analyst
- Monitor network traffic and security alerts to identify and investigate potential cyber threats and incidents from customer sensors.
- Lead investigations from detection to resolution, owning the entire process without tiered escalation.
- Analyze log files from multiple sources (host logs, network traffic, firewall logs, IDS logs) to identify, assess, and respond to security incidents.
- Communicate and report security incidents to customers within SLA timelines, ensuring clear and prompt updates.
- Proactively hunt for threats, analyze emerging trends, and enhance the organization’s detection capabilities.
MIE Medical Information Engineering Link to heading
DevOps Engineer
- Established a solid foundation for success by managing infrastructure through code with Terraform and Ansible, streamlining processes and reducing manual intervention.
- Demonstrated leadership by implementing and enforcing IAM policies to safeguard critical resources, ensuring compliance and security best practices.
- Enhanced application security by integrating automated testing within the development pipeline, mitigating vulnerabilities early in the process.
- Managed sensitive data with HashiCorp Vault, ensuring secure access and compliance with industry standards.
eVideon by Vibe Health Link to heading
Systems Engineer
- Maximized productivity by building out infrastructure in AWS, ensuring a scalable and reliable environment for operations.
- Played a key role in the ISO-27001 implementation, aligning security practices with international standards.
- Assisted in researching and deploying SIEM systems to enhance the organization’s threat detection and response capabilities.
- Acted as an integral member of the Incident Response Team, leading containment and remediation efforts to mitigate security incidents.
- Delivered Security Awareness Training and Phishing Campaigns, promoting cybersecurity best practices across the organization.
4EOS - Netgain Technologies Link to heading
System Administrator
- Streamlined operations by configuring and administering firewall rules, applications, VPNs, and IDS/IPS settings to ensure secure perimeter defense.
- Reviewed IT systems and applications for large enterprise environments, applying security best practices and principles to protect critical data.
- Led containment and remediation efforts as a key member of the Incident Response Team, responding swiftly to mitigate security breaches.
- Promoted end-user security education through Security Awareness Training and Phishing Campaigns, reducing vulnerability to social engineering threats.
- Collaborated with clients to secure and optimize business IT operations, applying strong relationship-building and technical expertise.
Everstream Solutions Link to heading
Network Operations Center Engineer
- Spearheaded the resolution of customers’ circuit issues, managing the entire process from alert detection to resolution.
- Monitored network infrastructure, responding to alarms and proactively addressing network issues while ensuring effective customer communication.
- Consistently met and exceeded performance targets, delivering high-quality service in a fast-paced environment.
Additional Experience as NOC Service Desk Technician, Indiana University, Purdue University Indianapolis; Security Analyst, Rook Security, Indianapolis, IN.
Education and Certifications Link to heading
- Certified CyberDefender (CCD)
- CompTIA Security+
- CompTIA Network+
- CompTIA Project+
- CompTIA Cloud+
- CompTIA Cloud Admin Professional
- CompTIA Secure Cloud Professional
- AWS Cloud Practitioner
- AWS Solutions Architect, Associate
- Azure Fundamentals (AZ-900)
- SentinelOne Incident Responder
- Linux Essentials from LPI
- JNCIA Juniper Networking Associate
Professional and Technical Proficiencies Link to heading
Information Security: Patch Management | Threat Hunting | Vulnerability Assessment | Malware Remediation | Firewalls | VPN | Security Awareness Training | Log Management / Correlation, Risk Assessment | System Scanning | System Registration
Digital Forensics: Evidence Collecion | Disk Forensics | USB Forensics | Memory Forensics | Network Forensics | Kape | FTK Imager | Dumpit | Volatility | Wireshark | PCAP Analysis
SecOPS: OSSEC | NESSUS | Microsoft Sentinel SIEM | Canary Tokens | Honeypot
Incident Response: Suricata | Rita | Sysmon | Velociraptor
Perimeter Defense: GoPhish | Email Security Controls | DKIM | SPF | DMARC | BIMI (Brand Indicators for Message Identification)
Administration Experience: Windows OS, Server 2019 | Linux, RHEL, CentOS, Rocky, Alma, PopOS, Ubuntu | 0365 | Azure Portal Admin | Microsoft Teams (VOIP) | 3cx (VOIP) | Juniper | Cisco | Fortigate | Ubiquiti | WSUS | Hyper-V | Cloud Architecture | AWS Cloud | AWS | Amazon Web Services | Cloud Data
Software / Application / Vendor Experience: Microsoft Sentinel | Tanium | Splunk | Connectwise Automate | Bit-titan | Google Workspace | Datto | Veeam | KnowB4 | AWS
Programming Experience: HTML / CSS / JS | Python | Bash | Powershell | SQL | Scripting
Project Management: Change Managment | Waterfall | Agile | Managing Resources | Project Contraints | Project Tools and Documentation
Professional Affiliations Link to heading
- CISA
- Security Magazine