Isaiah Genis

I'm a

About

Experienced Technology & Security Professional with a demonstrated history of working on small and enterprise scale systems. Skilled in Cloud Security, Amazon Web Services (AWS), Agile Methodologies, DevSecOps and Object-Oriented Programming (OOP). Graduated from New York University after studying Mathematics, Economics & Computer Science.

DevSecOps Engineer & Technology Consultant

  • Website: isaiahgenis.site
  • City: New York,NY USA

Hobbies include Cooking, Home Automation & Stand-Up Comedy

Resume

Summary

Isaiah Genis

Experienced Technology & Security Professional with a demonstrated history of working on small and enterprise scale systems. Skilled in Cloud Security, Amazon Web Services (AWS), Agile Methodologies and Object-Oriented Programming (OOP). Graduated from New York University after studying Mathematics, Economics & Computer Science.

Certifications

Cloud Security Alliance

Certificate of Cloud Security Knowledge (CCSKv4)

Information Systems Audit and Control Association (ISACA)

Cybersecurity Practitioner (CSX-P)
Certified Information Security Manager(CISM)

International Information System Security Certification Consortium (ISC)2

Certified Information Systems Security Professional (CISSP)

SCRUM Alliance

Certified SCRUM Master (CSM)

Veracode

Verified Team Security Champion (Levels 1& 2)
Verified Security Labs Champion (Levels 1& 2)

Education

Master's of Cybersecurity

2020-2022

New York University, New York, NY

Computer Science Bridge Program

2016 - 2016

NYU Tandon School of Engineering, Brooklyn, NY

Covers topics such as algorithims, data structures, object orient programming; as well as, operating systems topics related to processes, threads, thread concurrency, deadlocks, and memory management.

Bachelors of Mathematics & Economics

Minor of Computer Science

2011 - 2015

New York University, New York, NY

Courses included: Real and Complex Analysis, Discrete Mathematics, Probability, International Economics, Econometrics, Industrial Economics, Game Theory & Strategy, and Experimental Economics.

Professional Experience

Principal Engineer - Security

Jul 2023 - Present

CLEAR, New York, NY

  • Spearheaded security initiatives, consolidating vulnerability and risk management systems, and expanding the bug bounty program.
  • Co-founded the Security Tooling & Architecture Review Board, reducing costs and establishing accountability for procurement decisions and solution rollout.
  • Provided technical leadership for concurrent audits (Federal ATO Audits, AAL 2, IAL 2, PCI, SOC 2).
  • Subject Matter Expert (SME) in product security, mentoring cross-functional teams, and guiding secure product development.

Senior Security Engineer

November 2021 - Jun 2023

CLEAR, New York, NY

  • Perform security review of design and implementation of technology product and provide remediation guidance
  • Achieved a 75% reduction in vulnerabilities in 2 quarters through vulnerability scanning and coordination of remediation efforts.
  • Owned bug bounty program and external researcher collaboration, including budget allocation of over thirty thousand dollars.
  • Created Technical Security Standards and provided security training.
  • Responded to escalated incidents and third-party risk management.

Security & Privacy Architect

September 2020 - November 2021

Macmillan Learning, New York, NY

  • Plan and Manage security and compliance of all Macmillan Learning Systems
  • Implement Security Champions Program
  • Review contracts for technical and security related requirements
  • Issue guidance on security best practices, system internationalization and data retention
  • Develop security roadmap, incidents, audits, penetration tests, WAF, etc
  • Continue all responsibilities from previous role

Senior Information Security & Privacy Engineer

September 2018 - Present

Macmillan Learning, New York, NY

  • Oversee technical security implementation across all systems (almost exclusively cloud based).
  • Develop Automation of cloud compliance, security alerts, information gathering, and notification.
  • Develop scripts and pipelines for security scanning of code, dependencies, security keys, & dynamic application scanning using Veracode & OWASP Zap.
  • Perform code & architecture reviews and develop remediation strategies for vulnerabilities.
  • Create & implement System Security Plans(SSPs), critical controls and policies for cloud systems.
  • Review systems for compliance with controls and develop and implement remediation strategies.

Founder & Lead Consultant

2019 - Present

Rigorous Solutions, LLC.
Started company to provide technical advisory and solutions to customers ranging from start-ups to Fortune 500 Companies. Examples of projects include:

  • Full SDLC delivery of MVP ETL & analytics project for Fortune 500 PR company.
  • Engineering & Compliance consulting for healthcare related start-ups.
  • Website redesign and infrastructure migration for small business.

Cross-Functional Team Lead/SCRUM Master

May 2017 - August 2018

Booz Allen Hamilton, Alexandria, VA

  • Led effort to integrate DevSecOps & Best Practices into development teams.
  • Led effort to set testing standards and increase code coverage by 45%.
  • Led effort to remove 2,000+ SonarQube Reported Issues & HP Fortify Scan issues.
  • Acted as Database Administrator for PostgreSQL AWS RDS.
  • Used python to automate processes.
  • Managed and Merged GIT Merge Requests.
  • Coordinated patching and upgrades of software.
  • Configured and Managed HP Fortify Suite of Applications.

Staff Technologist (Software Engineer - Mid)

January 2018 - August 2018

Booz Allen Hamilton, Alexandria, VA

  • Served as Deputy Tech Lead and Mid-Level Developer while continuing development responsibilities.
  • Acted as Authentication, Alerting & Orchestration Integration Lead.
  • Focused on design, development and testing of middle/back-end for access control, alerting, and data retrieval of cloud based analytics platform
  • Led full SDLC of features and performed research and prototyping for future implementation in cloud platform, such as a custom spring security plugin, and switching from SQL to NoSQL Databases.
  • Developed Jenkins pipelines and debug deployments.

Software Engineer/Technology Consultant

July 2016 - December 2017

Booz Allen Hamilton, Washington, DC

  • Provided technology insights, market research, use cases and prototypes for Blockchain Technologies.
  • Drafted whitepapers, internal strategy & presentations on Blockchains: Distributed ledger Technologies and Agile DevOps.
  • Served as developer on a scrum team on a ground up SAFe development and cloud based data analytics platform.
  • Utilized technologies including Java, Maven, Docker, ElasticSearch, PostgreSQL, Hibernate, AWS, GIT, DC/OS, Swagger, Tomcat and Jersey to perform and deliver analytics, web services, and APIs.
  • Performed data analysis from the United States Patent and Trademark Office

IT & Data Storage Analyst

January 2010 - July 2016

Law Firm of Sonin & Genis , Bronx, NY

  • Worked to create domain, website, and migrate company to google for work
  • Coordinated with a third-party vendor for received document processing and digital sorting.
  • Provided desktop support for Windows XP, Windows 8 and mobile support for iOS.

Services

Technology Advising

Technical & security strategy, architecture, whitepapers, process review & more

Software Development

From proof of concept to enterprise maintance.

Security

Alerting Automation, System Security Plans, Code Analysis & more

Contact

Please contact me if you would like to collaborate.

Location:

New York, NY