James DeForest
Oak Ridge
Summary
Seasoned Security Engineer with background in designing, implementing, and maintaining secure systems. Consistently demonstrates strong problem-solving skills and deep understanding of cyber security principles. Previous roles involved improving system infrastructure and conducting vulnerability assessments to reduce security risks. Possesses solid communication skills, ability to work well within teams, and knack for identifying potential security threats.
Overview
29
29
years of professional experience
1
1
Certification
Work History
Security Engineer IV
RegScale
01.2023 - 05.2025
- Design and deploy Azure security services in support of enterprise federal compliance. Provision and configure core security infrastructure to include Microsoft Sentinel (SIEM) and subsequent workflows, Azure Firewall Premium, Log Analytics, Defender, Intune, Purview, and M365 native compliance solutions. Expertise in cross-subscription vulnerability management, remediation workflows, and threat surface reduction. Develop and maintain analytics rules and alert logic supporting proactive threat detection using PowerShell and custom ARM templates. Peer reviews of infrastructure hardening measures and security posture enhancements across subscriptions. Enterprise achieved SOC2 and FedRamp-High.
Principal Security Engineer
SAIC
01.2014 - 01.2023
- Design and deployment of SIEM solutions across multiple enterprise environments in support of ISO 27001. Ensure ingestion of machine data from multiple diverse vendor sources. Build and maintain knowledge objects, workflows and alert frameworks to support Security Operations Center (SOC) teams. Administer license management, implement vulnerability scanning tools, enforce security policies, and author pertinent alerts. Patch and maintain Unix and Windows systems hosting SIEM infrastructure to ensure stability, reliability, security, and performance. Implementation of managed endpoint protection platforms to strengthen threat detection and response.
Windows Team Lead
Office of Science and Technical Information (Department of Energy)
01.2008 - 01.2014
- Senior Systems Engineer. Support complex and diverse infrastructure environments. Successfully deploy a classified energy sciences network connection. Led the roll-out of two-factor authentication for multiple distinct domains. Develop and audit Windows domain policies to ensure compliance with USGCB and NIST 800-53 standards. Design and document comprehensive vulnerability and patch management programs to strengthen overall security posture. Responsible for hiring, training, and mentoring new team members.
Technical Operations Manager
Imerge Limited
01.2002 - 01.2008
- Lead the design, deployment, and ongoing maintenance of client/server infrastructure and office IT systems to support daily operations for a high-volume support facility serving a successful UK-based consumer electronics manufacturer. Oversee system uptime, updates, and scalability to meet growing business demands. Build and maintain large-scale product test-beds to support R&D and support functions. Develop and deliver technical training for industry leaders such as Crestron, Onkyo, Xantech, and Elan. Engineer advanced logic control solutions for high-profile clients, while directing the hiring and training of all U.S. personnel. Represent the company at major trade shows, driving industry visibility and engagement.
Network Manager
Computer Learning Centers
01.2000 - 01.2002
- Serve as Network Manager for a 25-campus educational organization, providing end-to-end client/server support and infrastructure oversight. Administer and maintain a complex network backbone consisting of Cisco routers and switches, ensuring high availability and optimal performance across all sites. Manage Windows-based server environments, including its early LDAP directory services for authentication and resource access control. Design and support site-to-site VPNs to securely connect geographically distributed campuses, facilitating centralized resource access and data continuity. Oversee network segmentation, IP addressing schemes, and legacy protocol support, while troubleshooting and resolving enterprise-wide connectivity and performance issues.
System Engineer
Alexandria City Public Schools
01.1996 - 01.2000
- Provide district-wide IT support from the central office for Alexandria City Public Schools, manage network and server infrastructure across the city school district. Responsibilities include configuration and maintenance of Cisco routers and switches, administration of Windows servers, and support early LDAP-based authentication systems. Ensure reliable site-to-site VPN and frame relay connectivity, perform routine backups, and deliver tier-2 support for staff and student workstations. Collaborate with school-based technicians, document network architecture, and contribute to infrastructure upgrades and technology roll-outs throughout the district.
Education
B.S. - Information Technology
A.A.S - Information Technology
Skills
- Azure security services
- Security incident response
- Vulnerability management
- Security policy enforcement
- SIEM configuration
- Cloud infrastructure design
- Cross-functional collaboration
- Compliance auditing
- Data privacy strategies
- Network architecture design
- Problem solving
- Effective communication
- Team leadership
- Technical training
- Security information and event management
- Vulnerability assessment
- Identity and Access management
- Intrusion detection and prevention
- Security compliance auditing
- Two-factor authentication implementation
- Security architecture design
- Application security
- Virtualization security management
- Network security expertise
- Incident response management
- IP addressing and subnetting
- Patch management
- Secure network architecture
- SIEM provider management
- Security awareness training
- Firewall installation
- Incident logging oversight
- BYOD program implementation
- Firewall configuration
- Cloud security
- Wireless security
- Intrusion detection
- Active directory
- Microsoft Hyper-v server
Certification
- DevOps Foundation v2
- Splunk Administrator
- Splunk Knowledge Manager
- Azure AZ-900
- Novell CNE
- Audio/Video Engineering Technology Certification (Virginia State)
Timeline
Security Engineer IV
RegScale
01.2023 - 05.2025
Principal Security Engineer
SAIC
01.2014 - 01.2023
Windows Team Lead
Office of Science and Technical Information (Department of Energy)
01.2008 - 01.2014
Technical Operations Manager
Imerge Limited
01.2002 - 01.2008
Network Manager
Computer Learning Centers
01.2000 - 01.2002
System Engineer
Alexandria City Public Schools
01.1996 - 01.2000