Master of Science
I hold a Masters in IT with a focus on Security & Information Assurance.
My research focused on Cloud Security topics. The program culminated in a research project regarding Infrastructure as Code (IaC) security.
About Me
I’m Marc Lopez, a cloud security professional and Army veteran with a focus on digital transformation and zero trust architecture. I'm currently a professional services consultant at Zscaler.
This site was inspired by the Cloud Resume Challenge. It was a great way to build some cloud skills. Click the link to get details about it. The infrastructure for the site leverages AWS services.
Be sure to check out my social media links. Or browse the menu to learn more. Thanks for visiting.
Visitor Counter: Loading...
Current Certifications
Over my career I've earned various certifications. Click the button to view my Credly Profile.
Professional Skills
Scripting Proficiency
PythonBashPowerShell
CyberSecurity
I'm skilled at identifying risks and developing controls that meet organizations' risk tollerance.
Process Improvement
I like identifying productivity bottlenecks and working with others to develop efficient ways to meet objectives.
Leadership
I've led small teams and projects. I value mentoring direct reports to help them achieve their best.
Professional Experience
US Army Cyber Command
Systems Architect and Cybersecurity Advisor Led architecture and engineering efforts for US Cyber Command offensive mission platforms. Coordinated with vendors and enterprise stakeholders to integrate complex capabilities onto production infrastructure. Designed and implemented architecture to meet security and performance objectives. Mission teams successfully executed over 450 cyberspace operations with increasing reliability and capability.
Senior Cybersecurity Engineer Led a team of 20 skilled nation state actors to coordinate and deliver cyber effects to various networks across the globe. Leveraged open-source tools like nmap, metasploit, Wireshark, and proprietary capabilities to compromise enemy systems. Provided leadership, mentorship, and guidance to reach strategic national level objectives. Designed an Atlassian Jira workflow and dashboard system to identify bottlenecks and improve efficiency. Recreated target networks in a cyber range and environment using Vsphere GNS3 and hardware in the loop. Trained over 30 personnel on offensive techniques and used threat modeling to design novel approaches to system compromise. Briefed senior leaders including generals and congressional staff members on the impact of offensive cyber operations. Clearly communicated technical nuances to shape organizational and strategic objectives.
EdX (Part Time)
Cybersecurity Program Instructor Delivered engaging online cybersecurity lectures and discussions for a diverse set of learners at multiple universities. Utilized industry expertise and story-telling skills to simplify complex concepts. Provided empathetic support and timely interventions, contributing to increased customer satisfaction and retention.
US Cyber Command
Senior Vulnerability Researcher & Detection Engineer Developed a vulnerability management program that prioritized scanning results based on exploitability. Led research efforts to prioritize target networks for exploitation. Aligned offensive cyber tasks with broader organizational priorities. Successfully achieved initial access to adversary networks without detection. Documented best practices and received positive feedback from users across the enterprise on the clarity and usefulness of the guides. Lead threat analysis of foreign compromised infrastructure. Evaluated threat actor tactics through direct observation of their malicious activity. Automated the creation of network signatures to alert stakeholders of the scope of the threat actors’ campaigns.