j
jgeib333

Jonah G

@jgeib333

Senior Security Analyst

United States
English
About me
I build and secure systems that actually hold up in the real world. My background spans security, cloud, and infrastructure, so I don’t just focus on how things look—I focus on how they perform, scale, and stay reliable under real use. Whether it’s a website, application, or underlying system, I build things properly—no shortcuts, no fluff, just solid work that holds up. Most things look fine on the surface. Very few are built on a solid foundation. That’s where I come in.... Read more

Skills

j
jgeib333
Jonah G
Offline • 
Average response time: 1 hour

See my services

Custom Websites
I will develop your secure website or web app
From$125 / projectMore details

Work experience

Co-Founder & Security/Cloud Architect

Confidential Fintech Platform • Freelance

Mar 2025 - Present1 yr 2 mos

Architecting and securing a cloud-native financial platform supporting lending and investment workflows. Designed AWS architecture including IAM, WAF, Secrets Manager, logging, and monitoring. Built DevSecOps CI/CD pipeline integrating automated OWASP security scanning using Semgrep. Implemented role-based access control and database Row Level Security (RLS) for financial data protection. Designed secure API integrations supporting payment processing and identity verification. Produced infrastructure and security documentation covering deployment, monitoring, and disaster recovery.

Sr Security Analyst

HHA Exchange/Sandata • Full-time

Jun 2021 - Sep 20254 yrs 3 mos

ed cloud security, application security, and vulnerability management across AWS, Azure, and O365. Automated AWS exposure detection using Python and boto3, reducing manual review by ~80%. Performed cloud, API, and application penetration testing to identify exploitable weaknesses. Implemented Rapid7 InsightVM vulnerability management workflows and remediation tracking. Strengthened detection engineering using InsightIDR and CrowdStrike telemetry. Built Jira and Confluence POA&M reporting dashboards used by engineering and compliance teams. Conducted vulnerability assessments and penetration testing across internal systems and SaaS platforms. Managed vulnerability remediation lifecycle using Rapid7 InsightVM. Investigated security alerts and incidents using InsightIDR SIEM and endpoint telemetry. Collaborated with engineering teams to remediate application and infrastructure security findings.

Information Security Analyst

Chemung Canal Trust Company • Full-time

Apr 2018 - May 20213 yrs 1 mo

Supported information security operations for a regional financial institution operating under FFIEC regulations. Performed vulnerability scanning, penetration testing, risk analysis, and remediation coordination. Assisted with security incident investigations and threat monitoring. Supported compliance initiatives aligned with banking regulatory frameworks.