Close

Brendon Stempniak

About Me

Brendon is a cloud, security, and software solutions professional focused on delivering cutting edge solutions that address emerging industry challenges. Brendon has worked with multiple organizations in the public space to develop and deploy solutions within mission critical environments. Much of his work has focused on cybersecurity, data analytics, cloud technology, and automation. Brendon utilizes his breath of experience to build proof-of-concept solutions that functionally demonstrate the practical application of technologies such as AI/ML, cloud native architecture, and similar popular emerging technologies.

Experience

Large Federal contracing firm

Solutions Architect - Japan

  • Developing and deploying edge-based and cloud solutions at global scale

    • Large Federal contracing firm

    Principal SWE

  • Delivering automation and cyber focused solutions in missions critical environments

    • Large Federal consulting firm

    Consultant

  • Provided cybersecurity support for initial operating capabilities of large defense data analytics iniative. Worked as acting Change Manager to facilitate changes through the rganization. Also lead a small team to implement cloud native SIEM solution and support security design for automated AI/ML pipelines

    • Small Federal contracting firm

    Cybersecurity Engineer

  • Working on multiple projects and solutions in a cloud heavy environment. Developing apps for intel/log aggregation and accompanying dashboards. Working across multiple clouds, on-prem, and a range of tools to facilitate integration and new systems. Facilitated projects involving multiple federal agencies to provide new solutions. Worked on cloud CDM pilot with DHS stakeholders to create an alternative to on-premesis tools.

    • Medium Federal Contracting firm

    IT Administrator

  • Lots of hands on in a Microsoft heavy environment. Implemented several solutions such as SSO, org wide MFA, EMM, and created apps to automate user provisioning. Made many strides in increasing the security posture of the organization and was recognized for significantly reducing targeted phishing attempts.

    • Large International Services corporation

    Assistant Controller - IT Support

  • Performed various dities in operations accounting, auditing, and budgeting. Later took over IT manager's duties and helped launch digital signage, social media, financial systems. Implemented best practices such as SOPs and a ticketing system to ensure service would carry on beyond my tenure.

    • Education

    George Mason University

    Bachelors Degree, BIS IT Management & Intercultural Communication

    Certifications

    Projects

    Advanced Service Mesh

    Originally I was faced with fragmented development teams, lack-of or blatently missing security standards such as TLS, and the risk of high-value data. First, I designed a network security architecture integrating traditional firewalls and a complex service mesh for Kubernetes. The resulting solution utilized Istio, k8s network policy, cert-manager, metal-lb, and GitLab pipelines to povide a zero-trust based service mesh as a packaged solution. This solution and its supporting pipelines allowed dev teams to integrate their apps and services late in the development cycle and immediatly benefit from features such as mTLS, easy certi mgmt., and enhanced observability. All of these features provided without having to re-engineer exisitng application code. The result of this was met with client praise for supporting the timely deployment of critical capabilities and an award from corporate for a recognition of contriobutions to the customer.

    Automated Security Ops Testing Environment

    I was tasked with creating an environment for security operations users to test potentially or kown malicious links, files, and other artifacts. I facillitated this by designing a small system in Azure leveraging a DevTest Labs account, an Azure Bastion Host, a Logic App, and ARM Templates. This environment allowed security users to perform their analysis quickly and have VMs re-launched automatically after bein compromised. A contained network, use of Azure features such as Bastion, Network Security groups, and basic netwoking concepts provide an environment completly seperated from our client's infrastructure. The environment is relitively low cost and can be launched via ARM template on the fly.

    Automated Retroactive Malacious Email Deletion

    As part of a client's Security Orchestration & Automated Response iniative, I identified automation use cases with the most beneficial impact to the organization. The result was a workflow utilizing a 3rd party ATP tool's API, Azure's automation capabilities, and the O365 suite which saved the SOC an estimated 30% of time spent on email related incidents.

    Mason Dining Help Desk Infrastructure

    During my later time working at Sodexo USA (Mason Dining) I took over management of all of our technology operations. I took this opportunity to implement several industry standard practices including a help desk ticketing system to better manage user requests and problems. This among other improvements greatly increased user/customer satisfaction. This system I put in place was easily transferable to new employees as well.

    Skills

    Below are some of the technologies I am skilled or have familiarity with. Some are relatively new and not things I pretent to be well versed in using

    Get in Touch

    Reach out to me at Brendon@Stempniak.net !

    © 2020 GitHub, Inc. Terms Privacy Security Status Help Contact GitHub Pricing API Training Blog About