ABOUT ME

Hi, I'm Jasen Crisp, an experienced Security Engineer based in Boise, Idaho, with 18 years of hands-on expertise in Information Security, Server and Endpoints, Virtualization, and Networking. I excel both as an independent contributor and as part of diverse teams, taking pleasure in mentoring and collaborating with junior team members. My ability to effectively communicate complex issues and solutions to a wide range of technical backgrounds is a strong asset.

My experience includes identifying and addressing vulnerabilities and misconfigurations, Attack Surface Management, security technology evaluation and implementation, security log monitoring, and incident response. I have a strong track record of enhancing security measures in various roles, such as my current position at Albertsons Companies Inc., where I focus on Vulnerability and Attack Surface Management. My educational journey and certifications further support my commitment to advancing cybersecurity practices.

I built this page as part of the Cloud Resume Challenge using Azure as a hands on project to better understand DevOps, version control and CI/CD pipelines.

This project is still a work in progress.

Experience

Information Security Engineer

  • Identify, classify, research, prioritize, remediate, and report on vulnerabilities, and misconfigurations.
  • Identify, document, and update security systems and processes for Attack Surface Management (ASM) tools.
  • Attack Surface Management - Identify security gaps, research products, services, standards, and best practices to mitigate risks.
  • Assist with the evaluation, testing, design, and implementation of new security technologies.
  • Monitor security logs and alerts to identify and respond to technical problems, anomalies, and suspicious activity.
  • Build security dashboards to identify changes, anomalies, and trends quickly and accurately.
  • Respond to security incidents and coordinate response, containment, forensics, and mitigation.
  • Microsoft Advanced Threat Analytics, Azure AD, Exchange, and Office 365 Security configuration and incident response.
  • Endpoint Security Administration - Sophos AV, Defender ATP, Intune, and CrowdStrike Falcon.
  • Windows Server and Workstation secure baseline configuration management via Group Policy Objects (GPOs).
  • Syslog management, archiving, reporting, and alerting using GrayLog.
  • Automation of system and account audits using PowerShell.
  • Windows Certificate Authority and PKI administration.
  • Cisco Umbrella DNS Security Administration.

    • Work History

    Senior Systems Engineer

    Compex Legal Services, Boise, ID July 2024 - Present

    Design, implement, and maintain critical network and system infrastructure with a focus on security enhancement and process automation. Key accomplishments:

  • Engineered and deployed an end-to-end automated user lifecycle management system utilizing Jira ticket automation, Azure Logic Apps, and API-driven user provisioning for Entra ID, delivering consistent and repeatable outcomes while reducing processing time by 70% and virtually eliminating human error
  • Architect and maintain hybrid cloud infrastructure with emphasis on security compliance and performance optimization
  • Lead cross-functional IT projects for system migrations and technology deployments, ensuring minimal disruption to business operations
  • Develop comprehensive documentation for network architecture and system configurations to maintain regulatory compliance
  • Implement robust security solutions protecting against unauthorized access and potential data breaches

    • Cybersecurity Architect

    Edgile, A Wipro Company, Boise, ID December 2023 - July 2024

    Lead a team of security solution consultants in the delivery of major technology projects such as Endpoint Management, Microsoft cloud-centric security solutions. Hands-on configuring complex solutions alongside the delivery teams, providing leadership, and designing, demonstrating, piloting, and testing complex configurations for clients to support decision making.

  • Led a team of 6 consultants migrating approximately 350 custom detection rules from SentinelOne to Defender for Endpoint (KQL) in just 2 months, under a tight timeline to support Client's migration off of SentinelOne. Successful delivery of high priority detection rules enabled client to begin EDR migration ahead of schedule.
  • Led a team of 2 consultants implementing Azure Defender for Cloud CSPM policies, governance rules, RBAC Role migration, and vulnerability remediations.

    • Staff Engineer Cyber Security - Vulnerability and Attack Surface Management

    Albertsons Companies Inc., Boise, ID Nov 2022 - Dec 2023

    Worked closely with various security engineers, architects, and analysts to design, configure, and implement vulnerability and other product security controls for the Albertsons Companies business portfolios. Primary focus on infrastructure and container vulnerability management and reporting.

  • Primary focus on infrastructure and container vulnerability management and reporting.
  • Re-architected Tenable.io network-based vulnerability scans to match network architecture to support scanning 2200+ retail, manufacturing distribution, and office locations.
  • Eliminated Major Critical Incidents caused by network-based vulnerability scans from several occurrences a month to 0 for the trailing 8+ months after implementation.
  • Managed 70,000+ Tenable Nessus agents and 60 Tenable.io Nessus scanners.
  • Remediated issues in Tenable Nessus agent configurations, scans, and deployments reducing 10,000 agents not performing monthly scans to less than 400 regularly. Agent scan coverage improved from 85% to 99% of deployed agents.
  • Vulnerability Management SME working with Infrastructure, Developers, and DevOps team members.
  • Configured, Deployed, and Managed Axonius - Cybersecurity Asset Attack Surface Management (CAASM) solution.
  • Designed and Configured queries and dashboards in the Axonius CAASM tool identifying and reporting gaps in endpoint protection Deployments, OS and Application patching, and end-of-life products.
  • Provide Security Engineering Support for Information Security Incident Response on an as-needed basis.

    • Information Security Engineer

    Micron Technology Inc., Boise, ID July 2022 - Nov 2022

    Focused on various security technologies within the Technology Development (TD) Intellectual Property (IP) Security team.

  • Design, implement, and improve technical controls deployed for Technology Development (TD) worldwide.
  • Participate as Technology Development's IP Security SME on critical initiatives and multifunctional project teams.
  • Advance and collaborate with senior staff and Security Operations.
  • Mature technical control reporting and assurance review processes for policy exceptions.

    • Network Administrator

    Agri Beef Co., Boise, ID January 2019 - March 2022

    Security, Systems, and Network Engineer. Primary lead resource on Information Security projects, administration, and incident response. Duties include overseeing all Hyper-V and Window Server Administration. Patch management and software deployments using Ivanti Security Controls and custom PowerShell deployment and automation scripts.

  • Designed, configured, and implemented a complete overhaul of Identity and Access Management to transition to a passwordless user experience for all corporate users. Leveraging Azure AD SSO, Microsoft Authenticator App, Windows Hello for Business, and Citrix Cloud SSO with PKI user logon.
  • Worked with in-house development teams to reduce excessive service account permissions and migrate services to managed service accounts where possible.
  • Implemented and maintained internal vulnerability scanning process used to find and remediate vulnerabilities on the enterprise network as well as create hardened base images for rapid server and workstation deployment.
  • Automated removing Sophos Anti-Virus and deploying CrowdStrike EDR Sensor via PowerShell. Completed automated no-touch full network deployment over a 2-week rollout.
  • Designed, configured, and maintained Graylog instance allowing for storage of 365 days’ worth of critical infrastructure logs. This allowed alerting, dashboards, and correlation of security incidents.

    • IT System Administrator

    Commercial Tire Inc, Meridian, ID December 2017 - January 2019

    Supporting all aspects of System Administration, Network Administration, and VOIP Administration for 50+ sites and 600 employees.

    Network / System Administrator

    Micronet Systems, Boise, ID April 2015 - December 2017

    Windows System and Network Administrator supporting local small businesses and all aspects of their IT needs.

    Education

    A.A.S., Computer Information Systems - Cyber Security

    Portland Community College, Portland, Or September 2020 - March 2024

  • Certificate: Computer Information Systems - Network Administration: Linux Server
  • Graduated: March 2024
  • Current GPA: 3.77

    • B.A.S. Cyber Operations and Resilience (CORe)

    Boise State University, Boise, Id Begining August 2024

  • Enrolled: Fall 2024

    • certifications

    CompTIA: Network Vulnerability Assessment Professional (CNVP)

    October 2023 - October 2026

    CompTIA: Network Security Professional (CNSP)

    October 2023 - October 2026

    CompTIA: PenTest+

    October 2023 - October 2026

    Microsoft: Security, Compliance, and Identity Fundamentals

    May 2022

    CompTIA: Cybersecurity Analyst (CySA+)

    October 2020 - October 2026

    CompTIA: Security Analytics Professional (CSAP)

    October 2020 - October 2026

    CompTIA: Security+

    June 2020 - October 2026

    Microsoft: Azure Fundamentals

    February 2020