Ike Anyanwu, Developer in Maryland City, MD, United States
Ike is available for hire
Hire Ike

Ike Anyanwu

Verified Expert  in Engineering

Bio

Ike is a senior cloud security engineer with 12 years of experience and a solid knowledge of the National Institute of Standards and Technology (NIST) and International Organization for Standardization (ISO) publications, cybersecurity, cloud, and DevSecOps tools. He's deployed multiple security tools to monitor and mitigate attacks on infrastructure. Ike is proficient in infrastructure as code, managing a CI/CD pipeline, and protecting applications, websites, cloud networks, and infrastructure.

Portfolio

Ricoh USA, Inc
Security, PCI Compliance, PCI DSS, HITRUST Certification...
Hospitality Digital GmbH - Main Hospitality Digital GmbH
Google Cloud Platform (GCP), Application Security, Single Sign-on (SSO), SAML...
Anjuna - Main
Python, Identity & Access Management (IAM), Okta, Single Sign-on (SSO)...

Experience

Availability

Full-time

Preferred Environment

Windows, Linux, Amazon Web Services (AWS), Azure, Jenkins, Application Security, Cloud Infrastructure, Cloud Security, Secure Containers, DevSecOps, Documentation, Okta, Endpoint Security, FedRAMP

The most amazing...

...DevSecOps project I've worked on is the integration of security into the CI/CD process and building the entire process within the AWS cloud.

Work Experience

Security Architect

2022 - 2023
Ricoh USA, Inc
  • Designed secured infrastructure with the Payment Card Industry (PCI) and Health Information Trust Alliance (HITRUST) certified for a multinational services company.
  • Defined security controls for the PCI/HITRUST certified system and mapped the control matrix for security tools deployed within Ricoh AWS infrastructure.
  • Provided AWS cloud cost estimation for cloud application migration and infrastructure deployment in AWS from on-perm.
  • Carried out the disaster recovery and high-resiliency design for the Ricoh infrastructure in AWS.
Technologies: Security, PCI Compliance, PCI DSS, HITRUST Certification, Amazon Web Services (AWS), IT Security, Security Architecture, Azure Application Gateway, Identity & Access Management (IAM), Infrastructure as Code (IaC), Compliance, Cybersecurity

Cloud Security Engineer

2022 - 2022
Hospitality Digital GmbH - Main Hospitality Digital GmbH
  • Performed a security gap analysis for the CI/CD process and procedure.
  • Reviewed Kubernetes container security scanning, performing DAST, SAST, API security, and SCA.
  • Created a playbook to support incident response and requirement definition for SIEM deployment.
  • Created a playbook and requirement definition for an IDS deployment and GCP Security Center.
  • Did the PCI and HITRUST compliance audit and control implementation.
Technologies: Google Cloud Platform (GCP), Application Security, Single Sign-on (SSO), SAML, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), APIs, Open Source, Incident Response, Containerization, Kubernetes, Secure Containers, SonarQube, SIEM, System Administration, IT Networking, Ubuntu, PCI DSS, HITRUST Certification, Azure VDI, Incident Management, Web Applications, Azure Application Gateway, Identity & Access Management (IAM), Infrastructure as Code (IaC), Compliance, Cybersecurity

Security Operations Engineer

2021 - 2022
Anjuna - Main
  • Deployed and managed Okta, an Identity management service for clients which provided a trusted platform to secure identity with SSO, multi-factor authentication, lifecycle management, and Identity governance.
  • Configured SSO on applications using Okta identity management.
  • Reviewed security gaps with client infrastructure and provided a guideline for compliance.
Technologies: Python, Identity & Access Management (IAM), Okta, Single Sign-on (SSO), Authentication, Identity, SAML, SAML-auth, OAuth 2, Ubuntu, Web Applications, Cybersecurity

Security Engineer | Analyst

2021 - 2021
ASU Pocket - Main
  • Reviewed the architecture of applications/systems deployed within the client infrastructure for security flaws.
  • Managed the proof of concept for multiple system engineering deployment efforts with the university infrastructure.
  • Served as the subject matter expert on incident response issues affecting the university infrastructure.
Technologies: Amazon Web Services (AWS), Automation, Antivirus Software, System Administration, Incident Management, Web Applications, Azure Application Gateway, Single Sign-on (SSO), Compliance, Cybersecurity

Senior Cloud Security DevOps

2021 - 2021
Digital Swiss Gold
  • Migrated applications and created mobile apps in Azure.
  • Deployed a web application firewall (WAF), Microsoft Defender for Identity, Sentinel, Microsoft Azure Security Center, a virtual private cloud (VPC), security groups, and subscriptions.
  • Reviewed Federal Information Security Management Act (FISMA) compliance requirements—NIST SP 800-53 and PCI. Ran security scans to determine the security vulnerabilities in the network.
Technologies: Amazon CloudFront CDN, Amazon Web Services (AWS), Azure, Azure VDI, Web Application Firewall (WAF), Security, Web Applications, Endpoint Security, System Administration, PCI DSS, HITRUST Certification, Incident Management, Azure Application Gateway, Identity & Access Management (IAM), Single Sign-on (SSO), Infrastructure as Code (IaC), Antivirus Software, Compliance, Cybersecurity

Senior Cloud Security Engineer

2020 - 2021
ShorePoint
  • Reviewed security concepts and the architecture of applications and systems deployed with the infrastructure.
  • Developed and reviewed functional requirements with end-users to determine if the systems met defined standards (NIST, SOX, and ISO 27001) and proposed enhancements.
  • Supported evidence collection regarding various SEC compliance frameworks, such as NIST and ISO 27001.
  • Updated changes within Firewall (Palo Alto and Juniper), WAF, and the IPS system (Firepower).
  • Monitored the daily performance of networking systems, servers, and cloud application infrastructure with SolarWinds and Nagios.
  • Implemented and configured DevSecOps tools, such as Git, GitHub, and Jenkins. Used a Python script to automate the infrastructure resource and monitoring and serverless and container infrastructure deployment with Python.
  • Managed security alerts and reports from Prisma, AWS Cloud, Azure Security Center CloudWatch, and CloudTrail. Used AWS GuardDuty, Amazon Inspector, Amazon Macie, AWS Config, and Aqua Security (container security).
Technologies: Linux, Windows, Firewalls, Intrusion Prevention Systems (IPS), DevSecOps, Cloud Security, Amazon Web Services (AWS), Application Security, Vulnerability Assessment, Vulnerability Management, Prisma, Azure, Palo Alto Networks, Jenkins, Git, GitLab, Web Application Firewall (WAF), Okta, Endpoint Security, FedRAMP, Python, System Administration, IT Networking, Ubuntu, Azure VDI, Incident Management, Web Applications, Infrastructure as Code (IaC), Antivirus Software, Compliance, Cybersecurity

Senior Cloud Security DevOps

2019 - 2020
OneZero Solutions, LLC
  • Implemented security in all phases of the CI/CD pipeline for secure application development within the cloud.
  • Designed and architected the AWS network using VPC, subnets, route tables, and security groups.
  • Ensured code development and applications adhered to security compliance frameworks, including NIST, SOX, PCI-DSS, and ISO 27001.
  • Tested services and architecture required to build secure cloud computing platforms, especially using encryption for data at rest and in transit.
  • Monitored the networking system, servers, and cloud application infrastructure with tools like Datadog and SonarQube.
  • Integrated Checkmarx and Fortify (static and dynamic analysis) in the SDLC process. Reviewed code and application for possible OWASP vulnerability (XSS and injection), CVSS, and CWE.
  • Used Python scripts to automate the infrastructure resource and monitor, and handled serverless and container infrastructure deployment with Python.
Technologies: Jenkins, Git, Kubernetes, Secure Containers, Scanning, Source Code Control System (SCCS), DevSecOps, Application Security, Amazon Web Services (AWS), Azure, Linux, Windows, Vulnerability Assessment, Vulnerability Management, GitLab, Kibana, Endpoint Security, FedRAMP, Python, System Administration, IT Networking, Ubuntu, Azure VDI, Incident Management, Identity & Access Management (IAM), Single Sign-on (SSO), Infrastructure as Code (IaC), Antivirus Software, Compliance, Cybersecurity

Senior Security Engineer

2017 - 2019
Pinnacle, LLC
  • Deployed multiple threat management, security event and correlation monitoring, and IDS and NAC devices for a client.
  • Deployed applications within AWS Cloud, including AWS CloudTrail, AWS Firewall Manager, and Amazon GuardDuty.
  • Managed the application scanning and vulnerability management for the entire enterprise.
  • Managed the monitoring of the networking system, servers, and cloud application infrastructure.
  • Managed the Crowdstrike Endpoint Protection Platform for protecting Cloud workload, data, and endpoints, providing next-generation antivirus, endpoint detection and response (EDR), and a 24/7 threat hunting service.
Technologies: Application Security, Amazon Web Services (AWS), Azure, Scanning, Vulnerability Management, Firewalls, Intrusion Prevention Systems (IPS), Network Access Control, SonarQube, Elastic, Kibana, Endpoint Security, System Administration, IT Networking, Ubuntu, Incident Management, Antivirus Software, SOC 2, Compliance, Cybersecurity

Senior Security Ops Engineer

2015 - 2017
ManTech International
  • Provided technical assistance for the security threat management with infrastructure.
  • Performed the administration and management of complex application security tools, including Sourcefire, FireEye, Splunk, NetWitness, Nessus, Palo Alto, ForeScout, RSA Security Analytics, and malware and APT analysis tools.
  • Installed and configured operating systems to meet hardening requirements and standards, such as ISO 20071, NIST, CIS, and HIPAA.
  • Configured and updated changes within the firewall.
Technologies: Application Security, Network Access Control, Intrusion Prevention Systems (IPS), Windows, Linux, SIEM, Vulnerability Management, Vulnerability Assessment, Splunk, ISO 27001, NIST, Threat Analytics, Threat Intelligence, Amazon Web Services (AWS), System Administration, IT Networking, Ubuntu, Incident Management, Antivirus Software, SOC 2, Compliance, Cybersecurity

Information Security Consultant

2011 - 2015
Accenture
  • Managed security risk assessment audit for multiple clients' IT infrastructure (PaaS and AWS managed services). Managed development, design, and implementation of a large enterprise security architectural detailed design.
  • Deployed multiple threat management, security event and correlation monitoring, IDS, and WAF devices and application tools.
  • Managed enterprise-level configuration management and vulnerability assessment.
  • Managed the evidence collection with regards to various security compliance frameworks, including NIST, PCI-DS, and ISO 27001.
  • Provided support on ongoing compliance activities and monitored different regulations and GRC standards like SOX, HIPAA, PCI, FedRAMP, and ISO.
  • Designed and implemented complex enterprise anti-virus and malware architecture, detailed design, security information, and event management.
Technologies: Application Security, IT Security, Vulnerability Assessment, McAfee ePolicy Orchestrator (ePO), Vulnerability Management, Firewalls, Palo Alto Networks, Data Loss Prevention (DLP), Nessus, SIEM, Splunk, Linux, Windows, NIST, ISO 27001, ISO 9001, HIPAA Compliance, SOX Compliance, PCI, Amazon Web Services (AWS), Web Application Firewall (WAF), Documentation, System Administration, IT Networking, Ubuntu, Incident Management, Antivirus Software, SOC 2, Compliance, Cybersecurity, McAfee

Security Operations Engineer

2011 - 2011
State of Maryland
  • Performed application and code scanning to identify vulnerabilities.
  • Conducted threat management procedures, vulnerability scans, and penetration testing to identify system vulnerabilities.
  • Managed security operations, reviewing and analyzing malicious traffic.
  • Reviewed and tracked security patch levels of the servers, workstations, and network devices.
Technologies: Windows, Linux, Application Security, Vulnerability Assessment, Vulnerability Management, Penetration Testing, System Administration, IT Networking, Ubuntu, Cybersecurity

Security Automation in CI/CD

I worked on integrating automated security scanning and reporting within each phase of the application development throughout the lifecycle of the CI/CD process. I also used Checkmarx code scanning and analysis, Aqua Security for containers and runtime scanning, and HP Fortify and Nessus for application scanning.

Security Architect on a Platform as a Service (PaaS) Project

I served as a security architect on a platform as a service (PaaS) project, which included migrating over 90 percent of the clients on-premise resources (servers, applications, and database) to the cloud. The work accomplished included deploying and managing tools for infrastructure vulnerability scanning, application and code scanning, security policy and compliance hardening, and server and application monitoring.

Cloud Security Engineer

I served as a cloud security engineer for a client moving their infrastructure to AWS/GCP. This involved application rationalization of all the client's applications for cloud readiness. Part of the work accomplished included infrastructure security assessment, application scanning, deploying, and configuration of cloud resources, such as VM, EC2, VPC, and SG.

Cloud Security

Deployment of Linux VM with Azure Cloud.
Application migration to Azure Cloud.
Researched vulnerabilities discussed on the system and pushed out patches from Automox.
Provided the documentation of vulnerability CVEs and the level of effort to remediate affected devices.
2012 - 2014

Master's Degree in Cybersecurity

University Of Maryland - Adelphi, Maryland, USA

NOVEMBER 2020 - PRESENT

AZ-900 Microsoft Azure Fundamentals

Microsoft

AUGUST 2020 - PRESENT

AWS Certified Security

Amazon Web Services

APRIL 2020 - APRIL 2023

AWS Certified Solutions Architect Professional

AWS

APRIL 2020 - APRIL 2023

AWS Certified Solutions Architect Associate

AWS

JUNE 2018 - PRESENT

Certified Ethical Hacker (CEH)

EC-Council

AUGUST 2017 - PRESENT

Splunk Certified Power User

Splunk

APRIL 2014 - PRESENT

Security CE+

CompTIA

Tools

Nessus, Jenkins, Git, Splunk, Prisma, GitLab, McAfee ePolicy Orchestrator (ePO), Azure Application Gateway, Terraform, Source Code Control System (SCCS), SonarQube, Elastic, Kibana, Amazon CloudFront CDN, Azure Kubernetes Service (AKS), Google Kubernetes Engine (GKE), McAfee

Platforms

Windows, Linux, Azure, Amazon Web Services (AWS), Ubuntu, Kubernetes, Google Cloud Platform (GCP), Docker

Industry Expertise

Cybersecurity

Languages

Python, SAML

Paradigms

DevSecOps, Automation, HIPAA Compliance, Penetration Testing, DDoS, DevOps

Storage

Azure Cloud Services

Frameworks

OAuth 2

Other

Application Security, Scanning, Vulnerability Management, Vulnerability Assessment, NIST, Documentation, Antivirus Software, System Administration, IT Networking, Incident Management, Compliance, Cloud Infrastructure, Cloud Security, Secure Containers, IT Security, Firewalls, Intrusion Prevention Systems (IPS), AWS Certified Solution Architect, Network Access Control, SIEM, ISO 27001, Threat Analytics, Threat Intelligence, Palo Alto Networks, ISO 9001, SOX Compliance, PCI, Web Application Firewall (WAF), Platform as a Service (PaaS), Infrastructure as a Service (IaaS), Azure VDI, Web Applications, Okta, Endpoint Security, FedRAMP, Infrastructure as Code (IaC), Identity & Access Management (IAM), SOC 2, Data Loss Prevention (DLP), Server Security, SecOps, Hacking, Certified Ethical Hacker (CEH), Content Delivery Networks (CDN), Single Sign-on (SSO), Authentication, Identity, SAML-auth, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), APIs, Open Source, Incident Response, Containerization, CI/CD Pipelines, Cloud, Security, Vulnerability Identification, PCI DSS, HITRUST Certification, PCI Compliance, Security Architecture

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring