Engineering Manager, Cloud Security Tools and Operations @ I currently manage the Cloud Security Tools and Operations team. This team is responsible for architecting and maintaining the security features of the Netflix cloud environment, helping teams understand and take advantage of these security features, and the development of security-oriented tools. I
I strive to do awesome things, awesomely.
Engineering Manager, Cloud Security Tools and Operations @ I currently manage the Cloud Security Tools and Operations team. This team is responsible for architecting and maintaining the security features of the Netflix cloud environment, helping teams understand and take advantage of these security features, and the development of security-oriented tools. I both manage and participate in the technical tasks of the team; as I enjoy pushing buttons and writing code with awesome ASCII art filled help screens. From April 2014 to Present (1 year 7 months) Los Gatos, CASenior Cloud Security Engineer @ At Netflix I helped ensure that our streaming service's industry-leading cloud deployment and presence is secure. This takes many forms; from designing secure architectures (using mostly AWS component services), helping application owners understand the complexities of security within the cloud, and performing application and network security assessments, to developing applications which automate organization-wide operational security tasks. From February 2013 to April 2014 (1 year 3 months) Los Gatos, CASenior Security Engineer @ At Obama for America I was responsible for the security of applications developed and deployed by the Obama 2012 US presidential campaign. This included the shepherding of applications through a secure development life-cycle (including application security assessments and code reviews). Our application-space included a wide variety of public facing and backend applications. I worked closely with our DevOps team to ensure the secure deployment of applications (using mostly AWS component services), and engaged with all levels of campaign management to appropriately assess risk and identify appropriate mitigations for wide classes of security issues.
I also contributed to the design, implementation, and monitoring of the campaign’s enterprise network. This included user training, remediation assistance, penetration testing, the investigation of Advanced Persistent Threats, and the reverse engineering of threats. From September 2011 to November 2012 (1 year 3 months) Chicago, ILSecurity Consultant @ My responsibilities included the delivery of security consulting services to a wide range of customers. I was the lead of the Web Application Center of Excellence (an internal group tasked with maintaining and growing our web application assessment knowledge and capabilities). My focus areas were penetration testing and web application assessment; I also performed incident response, product evaluation, and remediation assistance. I often directly advised C-level management about the implementation of security best practices within their organizations. From June 2010 to September 2011 (1 year 4 months) Chicago, ILLead Security Consultant @ My responsibilities in this role included the development and delivery of security services, proposal support, and project/engagement management. Motorola Security Services' primary customers are Motorola product development groups, external cellular network operators, and state/local governments. I was specifically tasked with the development of our network penetration testing service and its application to new technologies. Projects included: black box penetration testing of a large European cellular operator, development and delivery of a method and education plan to implement aspects of penetration testing (white/crystal box) in product development lifecycles, and acceptance test plan (ATP) support in verifying the security of a next-generation wireless broadband network. From October 2007 to June 2010 (2 years 9 months) Schaumburg, ILSecurity Engineer @ In this role I was a part of the Security Operations Center’s (SOC) Projects Team. My team was responsible for the analysis of new security technologies, threats, and services, as well as their development and implementation within the SOC. My specific responsibilities included the creation and continued development of custom analysis and ticketing software (a web application using Apache, PHP, MSSQL) which has allowed the SOC to increase the efficiency of investigations by several hundred percent. This application enabled the development of a robust automatic ticketing method fed by a SIEM (Arcsight). Prior to the creation of the projects team I was a security analyst within the SOC responsible for the identification and investigation of security events within the Motorola corporate and customer networks. From April 2004 to October 2007 (3 years 7 months) Schaumburg, IL
Master of Science (M.S.), Information Assurance @ Iowa State University From 2002 to 2004 Bachelor of Arts (B.A.), Political Science @ Iowa State University From 1997 to 2002 연세대학교 / Yonsei University From 2001 to 2001 Ben Hagen is skilled in: Network Security, Malware Analysis, Penetration Testing, Web Applications, Wireless Security, Security, Information Assurance, Application Security, Vulnerability Assessment, Vulnerability Management, Security Assessments, Reverse Engineering, Computer Security, Cyber Security, Animal Husbandry, Linux, Candy, Chairs, Apache, Firewalls, Incident Response, Python, Ruby, Computer Forensics, Networking, PCI DSS, Japanese Cuisine, Encryption, Cloud Security, Cryptography, PKI, Web Application Security, CATS, Explosives Detection, Hostage Negotiation, Liquid Penetrant Testing, Swag
Looking for a different
Get an email address for anyone on LinkedIn with the ContactOut Chrome extension