Wilson Mar

AI Automation Architect at Confidential

5/23-present

Led training about AI development, co-pilots, and Quantum computing.

Led measurably improved resilience (time to complete recovery) through organizational change management: differentiated messaging to each job group (executives, developers, managers, security, etc.). Increased adoption of SOC2 & FedRAMP infosec controls through automation that simplified desktop and server configurations to single commands - multi-cloud apps and utilities on macOS (physical, in Azure, GCP, and on AWS).

Sr. Enterprise (Hands-on) Architect at HashiCorp

4/22-5/23

Eliminated vulnerabilities (before they are created) in AWS, Azure, GCP by coding and testing IaC automation that create secure-by-default resources widely used in demos, training, and baselines for production customization.

Increased customer retention and ARR by defining how elite consultancies can better install (within Global 2000 enterprises) Zero Trust software (on-prem and in multiple clouds) -- using Organizational Change Management and CAIQ Q&A within a Well-Architected Cloud framework.

Reduced time-to-value by fostering a community to adopt common Kubernetes Blueprints and authoring deep-dive videos and tutorials on automating Vault, Terraform, Consul, Boundary. Explained coding of Vault, Go, Python, JavaScript, C#/Dotnet, Docker, and Java/Swing to generate dynamic credentials using Vault Cubbyhole and wrapped secrets.

Popularized use of multi-tool static Terraform scanning for vulnerabilities in automated CI/CD workflows and initiated deep-dive workshops on remediation. Identified and resolved Security issues (signature and vulnerability scanning, end-to-end encryption, alerts to SOC, etc.) company-wide.

Strengthened supply-chain defenses with verified GitHub commits and detection of tampered downloads by creating and evangelizing full-featured shell scripts to securely install GPG and creates keys -- which reduced on-boarding from a half-day slog to a single operation.

DevSecOps/ML Cloud Architect at McKinsey&Co

8/19-4/22

Reduced onboarding time to a single day (for better inclusion and ability to contribute quickly).

Averted production disasters by identifying several high vulnerabilities and remediating findings from TFSec, AWS Security Hub, GitHub Dependabot, SonarQube, Fortify, Git Guardian, JFrog Xray, etc.

Led introduction of DevSecOps in ML/MLOps teams through pen-testing into production using PACT and ServiceNow with VictorOps. Used are Kedro, AWS Comprehend NLP, Sagemaker, Pandas, Drools, Terraform, Kubernetes.

Defined and presented roadmaps. Architected a security-driven migration to cloud of 2,700+ developers across several divisions, in 4 months. In addition to carefully crafted emails, Slacks, Town Halls, cultural transformations include creating automation, producing videos (with quizzes). New processes instituted include Git GPG signing, secrets scanning, component analysis, chaos engineering, etc. Coordinated integrations with vendors (GitHub, AWS, Azure, CircleCI, Hashicorp, SnapLogic, etc.). Filed 30+ enterprise feature requests to vendors.

Pared back a 12TB database 65% after a deep dive into Docker Registry, and automation using Bash and Python with feature flags. Automated upgrade of Ansible and Helm infrastructure pipelines to include metrics visualized by ElasticStack, Prometheus/Grafana, and Splunk. Designed and tested secure custom self-service portals through Okta, ServiceNow, and custom APIs of Enterprise GitHub, Jira, Confluence, Artifactory, and other developer utilities.

Strengthened security (as Enterprise Admin) by automating upgrade of OS and utilities to latest versions and installing vulnerability scans (JFrog Xray, Trivy, Anchore, Black Duck, Fortify SAST, WebInspect DAST) invoked from IDEs and Makefiles in CI/CD pipelines building Java Spring Boot using React, Python, PHP, Ruby, Go. Initiated Hashicorp Vault and Policy scans with Terraform Enterprise and Packer in AWS. Integrated logs into Splunk SIEM from AWS & Azure.

Coordinated asynchronous teamwork daily across 3 continents using pair programming, Jira, GitHub code reviews, git hooks. Initiated weekly deep dives and skills cert. prep. virtual meetups.

DevSecOps/Cloud Performance Manager at JetBloom

8/14-8/19

Led teams to achieve shift-left of availability assurance by automating memory profiling and metrics capture in Git-triggered jobs in Jenkins automated cloud-based CI/CD. Defined proactive use of monitoring and alerts from Dynatrace, AppDynamics, Google Analytics, Elastic (ELK) stack, New Relic. Designed a perf engineering in the cloud approach that saves money using functional and security test tools.

Designed roadmaps, timelines, velocity calculations, and process presentations to executives and technical audiences. Used Trello, JIRA, Skype, Zoom, and other collaboration tools. Consistently maintained SCRUM/stand-ups and KanBan as part of SAFe Agile using CA Agile. Initiated on-going Communities of Practice meetups among developers and operations. Collaborated in creating videos and 300+ deep-dive articles written using mark-down for enterprise-level collaboration and training. Crafted and presented step-by-step hands-on video-augmented tutorials at conferences on DevSecOps, Git, Shell scripting (building pre-checks and verifications at each step).

Led a team to create tools and tutorials to restore/load data using Salesforce DX.

Coded SikuliX Selenium with OpenCV & Tesseract OCR, JMeter Java, LoadRunner C & JavaScript, Flood Element Typescript. Constructed JAM-stack websites leveraging APIs. Created DevSecOps pipelines using Ansible, Packer, Terraform, Docker in Google Compute and EC2 clouds. Implemented IoT in Amazon, Microsoft Azure, Samsung, and other clouds. Designed and coded Python for data-handling and use of SciPy in an Algorithmia (Machine Learning) API. Designed and programmed OAuth2 and JavaScript libraries.

Lead Developer Advocate/Consultant at HP Software

8/10-7/14

Led teams in India, China, and New Zealand to reduce response time 85%. Assets from the effort are now included in SAP installers. Tuned SAP at 3 Fortune 100 companies.

Improved responsiveness of mobile conference app by 40% by tuning JVM and logging. Led introduction of Shunra mobile network analytics -- a service that performs like Google's PageSpeed in-house. Established all aspects of evangelism, including architecture and development with vendors around the world. This includes creating videos and live presentations at meetups and technical deep-dives. Introduced Salesforce CRM. Created environments in AWS, Skytap, and other clouds for testing, automated demos, and hands-on courses (with videos).

SRE Performance/Developer with MBO Partners

1/07-8/10

Led international teams to get several enterprise systems into production, with scalability and stability through debugging, profiling, and benchmarking. Implemented and evangelized Agile processes, code reviews, static code analysis, and automation. Integrated third-party APIs, SQL, Java, and .NET C# code. Reduced response time spikes and garbage collection by 62% on an app.