Michael Brand Martinez

American Express

Cloud Security Incident Response Analyst I

February 2021 - Present

Working with multi-functional and cross-enterprise teams that define requirements, develop architecture specifications, select and pilot new technologies, develop enterprise-scale deployment plans and lead initial implementations.

Work closely with other Information Security departments, architecture and development teams, and external cloud providers on requirements, design, integration and delivery of these solutions.

• - Working with Incident response teams, identifying and integrating data sets required for security monitoring, developing use cases, creating alerts, writing playbooks, and building response capabilities.
• - Provide security and engineering expertise and guidance to the Cloud Program supporting Incident response capabilities, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Cloud Application Architecture subprograms for private and public cloud providers.
• - Led the technical design and deployment of global projects including security solutions for internal and external IaaS and PaaS clouds.
• - Build cloud-optimized architecture patterns and contribute to Enterprise Architecture governance to drive secure enablement of technology
• - Evaluate various private and public cloud technologies and tools for technical, functional, and financial feasibility.

American Express

Information Security Analyst III

January 2021 - February 2022

Assesses and identifies information security risks and vulnerabilities along with mitigation activities to address them. Characterizes systems, assesses risks and recommends administrative, operational, and technical safeguards to lower risks associated with confidentiality, integrity, availability, and compliance with policy, standards, and regulations

• - Performs broad in-depth review assessments, control testing, documents results, provides detailed updates to stakeholders, including analysis of vulnerability scans and compliance scans, and performs broadly in-depth system tuning based on threat indicators.
• - validation process to ensure that Information Security Policy and Standard documents meet or exceed industry standards, compliance requirements and customer/client expectations
• - Maintain information up to date and discoverable, increase visibility and awareness of the upcoming products that New product governance will support.
• - Provides compliance-related reports and metrics to IT leadership periodically or when requested.

Geek Squad

Advanced Repair Agent

January 2018 - January 2021

Identifies and offers technical solutions and recommendations to solve customer needs. Create and maintain a supportive environment for customers by asking the right questions, listening carefully, taking detailed notes, and partnering with other team members. Also, diagnose technology issues through various troubleshooting activities, including using specialty software and hardware—lead training and guidance activities for new team members.

• - Evaluate various private, public cloud technologies and tools for technical, functional, and financial feasibility.
• - Create and maintain a supportive environment for customers by asking the right questions, listening carefully, taking detailed notes and partnering with other team members
• - Diagnose technology issues through various troubleshooting activities including the use of specialty software
• - Drive a positive customer experience by building relationships, exhibiting empathy, and providing solutions to variety of software and hardware issues
• - Partners with other team members to ensure consistent and accurate documentation of customer requests and repairs.