Jason Duff, CISSP | Cybersecurity Architect

jason@linfrastructure.net | (727) 303.6637 | linkedin.com/in/linfrastructure

SUMMARY

Security Architect with 20+ years of experience designing, implementing, and governing enterprise-grade security architectures across cloud, network, endpoint and artificial intelligence domains. Proven track record in reducing risk exposure, driving compliance, and leading cross-functional teams to deliver secure, scalable IT environments. Adept at translating technical strategy into business outcomes and mentoring junior security professionals. Currently focused on AWS cloud security, Zero Trust architecture, and enterprise risk governance.

SKILL SETS

PROFESSIONAL EXPERIENCE

JABIL CIRCUIT, INC. | Artificial Intelligence Security Architect | St. Petersburg, FL. (Hybrid)

January 2026 – Present

• Identify and document gaps in current cloud security posture.

JABIL CIRCUIT, INC. | Cloud Security Architect | St. Petersburg, FL. (Hybrid)

August 2023 – January 2026

• Identify and document gaps in current cloud security posture.
• Develop a three-year road map intended to advance the maturity of the cloud security program.
• Evaluate cloud security solutions and vendors for proof of concept and request for proposal.
• Implement proactive technical guardrails to mitigate risk and close gaps.
• Evaluate, select design and deploy new cloud security posture management solution.
• Tune cloud security posture management solution to align with adopted frameworks/standards.
• Drive remediation of findings to bring production cloud environments into compliance with defined standards.
• Update and align cloud security standard with latest CIS benchmarks and well architected frameworks.
• Develop and implement cloud security charge back model to recover associated service/technology costs.
• Provide security consultancy during an AWS Experience Based Acceleration (EBA) to modernize container technology deployment and management.
• Provide security consultancy for endpoint/server, messaging/collaboration, cloud and network security requirements during acquisitions and divestitures.
• Assist the threat intelligence group in maturing their incident response capabilities in AWS.
• Interview potential candidates to fill architectural roles within the information security team.

DANAHER CORPORATION | Network Security Architect | Washington, DC (Remote)

September 2021 – August 2023

• Design and implement zero trust network architecture leveraging Illumio.
• Develop comprehensive architectural artifacts, including as-built and future-state materials.
• Develop comprehensive documentation to support the operation of deployed solutions.
• Develop training materials to support deployed solutions and architectures.
• Develop complex network security policies and standards.
• Evaluate vendors and new technologies for current and future information security consideration.
• Evaluate and select partners to provide support of technology solutions and services.
• Build comprehensive operating models to support the daily operation of services.
• Develop and present project charters for upcoming projects.
• Update stakeholders of current project status.
• Manage projects and resources across a highly diverse and complex enterprise landscape consisting of multiple operating companies with varying levels of technology maturity.
• Collaborate with operating company leaders to understand security needs and design/build/deploy solutions.
• Effectively communicate technical designs to stakeholders for buy in.
• Interview potential candidates to fill roles within the information security team.
• Oversee the Network Security work stream of a transformational, multi-year cyber security initiative to mature capabilities and protect confidentiality, integrity and availability of data.

JABIL CIRCUIT, INC. | Network Security Architect | St. Petersburg, FL. (On-Site)

March 2017 – September 2021

• Design reference architectures for implementation on the global network.
• Lead the implementation of new network security reference architectures.
• Lead security efforts and assist Global Network Operations in designing and implementing SDWAN architecture.
• Remediate firewall compliance drift/issues across 120+ sites/firewalls globally.
• Assist in leading security in cloud first initiatives.
• Build and maintain firewall policies utilizing Palo Alto Networks Panorama.
• Maintain Zscaler policies and infrastructure.
• Assist the threat team with incident response and SOC activities.
• Respond to incidents applicable to products that I deploy/support.
• Respond to critical issues impacting production at global facilities.
• Assist in root cause analysis/postmortem efforts when applicable.
• Participate in audits and finding remediation efforts.
• Effectively communicate technical designs to leadership for buy in.
• Maintain relationships with security vendors across the enterprise.
• Evaluate new vendors for potential integration into the security landscape.
• Review and improve current security policies and procedures.
• Consult with other towers within the organization to improve security posture.
• Collaborate with global I.T. to assist with security concerns/improvements.
• Manage and improve vendor relationships within the organization.
• Assist in selection and contract negotiations for new vendors and partners.

ZSCALER, INC. | Technical Account Manager | San Jose, CA. (Hybrid)

October 2016 – March 2017

• Account Management.
• Pre-sales architecture reviews, recommendations and consultation.
• Post-sales architecture, integration and support.
• Architecture design reviews and best practices recommendations.
• Troubleshoot complex networking, routing and security issues.
• Hold regular status update and progress overview presentations.
• Deliver quarterly business reviews with applicable executives and stakeholders.
• Guide escalations and follow through on their resolution.
• Assist with support requests.

WHOA NETWORKS, INC. | Cloud/Network Security and Systems Engineer | Hollywood, FL. (On-Site)

July 2013 – October 2016

• Assist in designing and building the underlying hardware infrastructure as well as implement a lights-out software defined data center model based on FlexPod Architecture.
• Support Palo Alto firewalls at 3 data center locations for perimeter security and IPS/IDS services.
• Build and support virtual Palo Alto firewalls deployed in customer tenants and private cloud environments.
• Assist in building and maintaining the vCloud Director infrastructure providing customer access to resources.
• Implement complex monitoring and reporting based on ScienceLogic and Kaseya for monitoring and alerting.
• Configure and maintain Veeam backup infrastructure to facilitate backup of customer data.
• Maintain the underlying hardware and hypervisors that support customer infrastructure and data.
• Monitor systems from the Network Operations Center and act upon alerts and tickets generated by the monitoring platform or submitted by customers.
• Assist in planning and operations for the NOC as well as the roles and responsibilities of the NOC team.
• Work with sales engineers to build custom cloud solutions for customers.
• Maintain accurate and complete documentation of the infrastructure as well as customer implementations.
• Migrate clients seamlessly from other cloud platforms.
• Provide Linux support for back-end infrastructure as well as customer requirements.
• Provide Windows support for back-end infrastructure as well as customer requirements.
• Build and Maintain a shared Microsoft Exchange 2010 cluster for hosting customer email.
• Assist in building, maintaining and supporting a Desktop as a Service platform based on Citrix CPSM, XenDesktop and Microsoft Remote Desktop Services.
• Configure centralized logging based on ELK stack.
• Migrate customers to and from Office365.