Securing cloud at scale.
AWS & Azure focused.

Katy, TX • craigabel4eva@gmail.com • (443) 210‑5693

CSPM (Security Hub) GuardDuty / Sentinel Zero Trust IAM & Okta SSO HIPAA • SOC 2

Certifications

AWS Security – Specialty
AWS Solutions Architect – Assoc
AWS SysOps – Assoc
AWS Cloud Practitioner
Azure Security Engineer
Azure Fundamentals
CompTIA SecurityX

About

Accomplished Cloud Security Engineer with 9+ years in IT and 5+ years securing AWS and Azure environments. I design and operationalize zero‑trust architectures, harden identity with IAM and Okta SSO/MFA, and implement encryption and monitoring that meet HIPAA and SOC 2 requirements. I collaborate with engineering to reduce risk without slowing delivery.

Key Skills

AWS: IAM, KMS, GuardDuty, CloudTrail, Security Hub
Azure: Defender, Sentinel, Key Vault
Network: VPC, WAF, segmentation
Data: TLS, at‑rest encryption, DLP
SIEM: Sentinel, Splunk
Compliance: HIPAA, SOC 2, GDPR
Infra Sec: Terraform, SSM, automation
IR: playbooks, forensics

Projects

Multi‑Account CSPM — Security Hub + GuardDuty with auto‑remediation; reduced misconfigurations by 45%.
HIPAA‑Compliant EKS — Encryption, IAM boundaries, WAF, and secure CI/CD gates.
IR Automation — Lambda workflows to quarantine resources, alert teams, and capture evidence.

Education

M.Sc., Cloud Computing Systems — UMGC, 2024
B.Sc., Cooperative & Business Management — OOU, 2009
Diploma in Law — OOU, 2004

Experience

Cloud Security Engineer — ClearData

Aug 2021 – Present • Austin, TX
  • Implemented org‑wide CSPM (Security Hub), integrated GuardDuty, Config, IAM Access Analyzer.
  • Built automated remediation for misconfigurations across multi‑account AWS.
  • Authored HIPAA‑aligned security controls for EC2 workloads and pipelines.
  • Integrated Okta SSO/MFA for identity hardening and least‑privilege enforcement.
  • Led incident response planning and tabletop exercises.

Cloud Security Architect — Vector Solutions

Dec 2018 – Aug 2021 • Tampa, FL
  • Established IAM, encryption, and network security standards for AWS workloads.
  • Ran daily security assessments; embedded controls into CI/CD.
  • Responded to cloud threats using GuardDuty and CloudTrail analytics.

Cloud Operations Engineer — D‑Tech Solutions

Jul 2015 – Dec 2018 • Washington, DC
  • Provisioned secure infrastructure with Terraform; enforced encryption for S3/RDS.
  • Implemented SSM patching and centralized monitoring (CloudWatch/CloudTrail).

Videos

Master AWS Client VPN with Okta SSO — 'Secure Access for Your Cloud Resources'
Master AWS Client VPN with Okta SSO — "Secure Access for Your Cloud Resources"
OpenVPN Made Easy: Seamless AWS Private Subnet & RDS Access
OpenVPN Made Easy: Seamless AWS Private Subnet & RDS Access