Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
Ryan Crawford

Ryan Crawford

Phoenix,AZ

Summary

An accomplished Information Security Professional, Ryan Crawford boasts over a decade of industry expertise. Seeking to transition into a technical architecture role, the focus is on collaborating closely with product and engineering teams to devise secure solutions. Proficient in cloud technologies, Ryan also possesses extensive experience with on-premises and hybrid environments. Beyond work, interests include woodworking, reading, and maintaining an active lifestyle.

Overview

11
11
years of professional experience
1
1
Certification

Work History

Manager, Security Engineering

Fortive
12.2022 - Current
  • Lead a team of 25 engineers and analyst in support of more than 20 operating companies managing approximately a dozen security tools.
  • My teams include Cloud, Endpoint/SIEM, Network and Email Security.
  • I lead large security tool deployments including our Cloud Security Posture and Network Security tooling.
  • Provide technical security expertise to business executives and board members.
  • Integrate and automate disparate data sources across security tools in support of SOC and Threat Team initiatives.
  • Proven expertise in incident response for diverse scenarios, including cloud and on-premises security events.
  • Built and developed custom security solutions for cloud incident response activities including custom Lambda Functions in AWS, GitHub Action CICD pipelines for security services and utilizing native cloud solutions to support automation (Azure App Registrations, Enterprise Apps, etc).
  • Hands on experience with many security tools including AWS & Azure Suite of Tools (GuardDuty, Inspector, Defender Suite, etc), zScaler, Carbon Black, Crowdstrike, Proof Point, Lacework (CSPM), Nexpose, Vectra, Safe Breach, Varonis, Wiz, LastPass, Keeper, Splunk and more.
  • Hands on experience with enterprise tools including ServiceNow, Okta, GitLab, GitHub, Azure (ActiveDirectory, O365, Entra, etc), AWS technologies (Workspaces, Lambda, S3, EC2, etc).

Enterprise Security Architect

Fortive
09.2021 - 12.2022
  • Built AWS SSO integration with Azure AD as the Identity store, that support more than 20k employees for production and enterprise tools and services hosted in AWS.
  • Created and executed a roadmap for secure cloud architecture, in accordance with industry best practices and a multi-year strategy.
  • Wrote and deployed Terraform, Python, BASH, CloudFormation and PowerShell automation for security tools, process and services throughout a multi-cloud environment, including AWS, Azure, Oracle Cloud (OCI), and GCP.
  • Collaborated with Security Operations Center in the development of Enterprise Splunk event management and alerting on SaaS / cloud hosting provider security events.
  • Deployed and configured cloud security posture management (CSPM) platform, cloud identity and entitlement management (CIEM) and cloud workload protection (CWP).
  • Created design diagrams, system configurations, process design documentation, operating procedures and application integration documentation.
  • Researched emerging security technologies and proposed innovative, cutting-edge solutions to improve security posture and capabilities.

Application Security, Senior Engineer Cybersecurity

Zillow Group
05.2018 - 09.2021
  • Managed more than a half dozen security tools including; bot mitigation / WAF SASE tools (Perimeter X, AWS Shield / WAF / FW Manger).
  • Developed and managed the Security Architecture and Design program.
  • Managed Cloud vulnerability Scanning engine, automation, and reporting (AWS Inspector)
  • Engineered, managed and deployed password management solution.
  • Programming experience in several languages – Python / JavaScript / Terraform / HTML / CSS / Bash.
  • Provided technical expertise to project teams and business stake holders.
  • Built AWS CTF event for internal team training.
  • Built automation and reporting metrics via API integrations.

Cybersecurity Incident Response Lead

Starbucks
05.2017 - 05.2018
  • Promoted to this role after an approximate two year tenure as an Analyst
  • Responded, documented and recovered from Cybersecurity events.
  • Notable industry exploits during my tenure in this role included "WannaCry" and "NotPetya" ransomware attacks.
  • Developed a response plan to SEC, GDPR and other regulatory body reporting requirements.

Sr. Security Analyst

Starbucks
06.2015 - 05.2017
  • Lead PCI and SOX annual attestations, domestically and for international markets. This included scoping and Report on Compliance (ROC) attestations in the Europe (EMEA) and Japanese markets.
  • Managed multiple security tools including Symantec DLP, Kenna Vulnerability Management (enrichment) platform, Bitsight and Archer.

Security Compliance Program Manager

Nordstrom
07.2013 - 06.2015
  • Facilitate PCI audit and systems gap analysis.
  • Support privacy strategy implementation and strategies.
  • Partner and foster collaboration with business, marketing, legal, IT, compliance and other internal teams throughout the project.
  • Facilitate process review, documentation and re-engineering to meet project and company goals plan, organize and manage small projects and enhancement work efforts; manage one or more phases of large projects.

Education

Bachelors Degree Law and Justice -

Central Washington University
Ellensburg, WA
06.2008

AA General Studies - Electronic Technology

Edmonds Community College
Edmonds, WA
08.2006

Skills

  • Cloud Technologies - AWS/Azure/GCP/OCI
  • Programming Languages - Python/JavaScript/BASH
  • IaC Languages - Terraform / CloudFormation
  • Project Management - Large Scale Tool Deployments
  • Cloud Reference Architecture
  • Technical assessments / audits

Certification

  • AWS Security Specialty Certification, 07/01/23
  • AWS Associate Architect Certification, 07/01/20
  • Certified Information Systems Security Professional (CISSP) ISC², 02/01/18
  • Systems Security Certified Practitioner (SSCP) ISC², 01/01/17

Timeline

Manager, Security Engineering

Fortive
12.2022 - Current

Enterprise Security Architect

Fortive
09.2021 - 12.2022

Application Security, Senior Engineer Cybersecurity

Zillow Group
05.2018 - 09.2021

Cybersecurity Incident Response Lead

Starbucks
05.2017 - 05.2018

Sr. Security Analyst

Starbucks
06.2015 - 05.2017

Security Compliance Program Manager

Nordstrom
07.2013 - 06.2015

Bachelors Degree Law and Justice -

Central Washington University

AA General Studies - Electronic Technology

Edmonds Community College
  • AWS Security Specialty Certification, 07/01/23
  • AWS Associate Architect Certification, 07/01/20
  • Certified Information Systems Security Professional (CISSP) ISC², 02/01/18
  • Systems Security Certified Practitioner (SSCP) ISC², 01/01/17

Similar Profiles

  • Shatara Sullivan

    Shatara SullivanShatara Sullivan

    Senior Customer Support Specialist (Remote) at FortiveSenior Customer Support Specialist (Remote) at Fortive

    View Profile
  • Pha-Ly Nguyen

    Pha-Ly NguyenPha-Ly Nguyen

    Application Security Manager - FAL Group at FortiveApplication Security Manager - FAL Group at Fortive

    View Profile
  • Ethel Drake

    Ethel DrakeEthel Drake

    Pacer at FortivePacer at Fortive

    View Profile
Ryan Crawford