Jeremy Moss

IT SOLUTIONS ARCHITECT
(503) 703-9669
thejeremymoss@gmail.com

Profile

Highly accomplished technology leader with over 25 years of experience in network architecture, cloud infrastructure, systems engineering, and security. Proven success in designing and building secure, scalable infrastructure for SaaS organizations. Expert in integrating DevOps, security, and compliance to streamline operations and deliver measurable business results. Known for strong problem solving skills, a hands-on technical approach, and a focus on delivering reliable, high quality outcomes.

Experience

Sr. Security Engineer / Solutions Architect

Cavulus
AUGUST 2022 - PRESENT
  • Designed and configured multi-account AWS Organization (~30 accounts) to secure-by-default standards using AWS CDK and modern IAM guardrails.
  • Led the organization to successfully achieve SOC 2 Type 2 + HIPAA compliance.
  • Integrated security controls into CI/CD pipelines to ensure secure containerized workload deployments (ECS). Implemented AWS Well-Architected Framework principles.
  • Designed and maintained secure network segmentation, VPNs, VPC peering, and firewall configurations across production and corporate environments.
  • Developed internal tooling and automation systems leveraging AI agents to streamline repetitive tasks and significantly improve engineering efficiency.
  • Authored and maintained comprehensive security documentation (policies, incident response, DR plans), establishing strong governance and repeatable compliance practices.
  • Supported efforts to maintain 99.9% uptime for production systems, enabling business growth and sales goals.

Security Engineer

Learning.com
AUGUST 2019 - AUGUST 2022
  • Led the organization to successfully achieve SOC 2 Type 2 compliance.
  • Implemented a vulnerability management solution and led monthly security meetings to review findings and proactively address organizational risk.
  • Implemented a SIEM solution with alerting for security events and indicators of compromise, significantly improving incident response capabilities.
  • Spearheaded the design and enforcement of a formal SOC 2 aligned Change Management Process which significantly reduced change related incidents and ensured compliance visibility.
  • Created scripts to automate the web application release process, resulting in reduced release times and a more reliable deployment process.
  • Engineered and maintained robust monitoring and alerting dashboards for the web application, establishing a feedback loop where every new failure informed the creation of a targeted alert.

Systems Administrator - Corporate & Web Infrastructure

VTech Communications, Inc.
AUGUST 2007 - AUGUST 2019
  • Created, implemented, and maintained corporate security policies based on CIS and NIST standards, significantly improving the overall security posture.
  • Implemented a patch management solution for servers, workstations, and third-party software, enhancing system security and stability.
  • Provided user awareness security training, fostering a more security-conscious organizational culture.
  • Designed and managed the environment for multiple e-commerce and informational websites.
  • Performed regular security audits, including penetration testing network and web applications, to identify and mitigate critical vulnerabilities.
  • Maintained Level 3 PCI Compliance.

Education & Training

Computer Learning Center Anaheim, CA

Windows 2000 Hands-on Training

Certifications: A+, Network+, Win2k Pro, Win2k Server (lapsed)

SANS Sec560

Network Penetration Testing and Ethical Hacking

Coin earned for Capture-the-Flag victory

SANS Sec542

Web App Penetration Testing and Ethical Hacking

SANS Sec401

Network Security Essentials

Technical Skills

Cloud Platform & Architecture

AWS Orgs AWS Well Architected VPC Routing NACLs Security Groups WAF TCP/IP

Infrastructure-as-Code (IaC)

Terraform CDK CloudFormation

Compliance & Frameworks

SOC2 Type 2 HIPAA PCI-DSS NIST CIS OWASP

Security Scanning & Testing

Guard Duty AWS Inspector Nessus Nmap Rapid7 burp Acunetix Dependency Track Truffle Hog

Security Operations & SIEM

Graylog WEF ElasticSearch Wazuh

Containerization & Orchestration

ECP ECS Docker

Identity & Access Management

IAM Identity Center AWS Cognito Active Directory Group Policy Okta Google Workspace

DevOps & CI/CD

Jenkins Bamboo GitHub

Automation, Scripting & AI

Powershell Bash Python Typescript n8n CrewAI

Monitoring & Alerting

PRTG OpsGenie

Operating Systems

Windows MacOs Ubuntu Redhat Amazon Linux