Hi, my name is

Sebastian Whiting

I build secure systems

Real security happens when systems, both technical and non-technical, work for and with users, not against them. Let’s build something amazing!

Resume

About Me

I am a security professional currently working in the FinTech industry. I love getting my hands dirty with everything from code, to infrastructure, to policies and beyond. Here are few of the technologies that I am currently working with: Here are a few technologies I've been working with recently:
  • Terraform
  • AWS
  • Nix/NixOS
  • Python

Experience

Information Security Engineer - Mercury
July 2022 - present
  • Implemented a vulnerability management system using AWS RDS, Python, and an open-source scanning tool to address gaps in off-the-shelf solutions.
  • Developed a logging architecture, integrating a SIEM platform with AWS services and open-source log shipping tools.
  • Built cloud solutions using Terraform across AWS and other platforms.
  • Managed annual PCI-DSS certification renewal and penetration testing for infrastructure and web applications.
  • Led efforts to obtain SOC-2 Type 1 certification and implemented policies for SOC-2 Type 2.
  • Performed vendor due diligence as part of third-party risk management.
  • Provided company-wide security training, covering best practices, tool usage, and team-specific threat mitigation.
Cybersecurity Analyst - Kitware
January 2021 - July 2022
  • Developed a Python-based asset management system integrating internal office software, cloud assets, and vulnerability management to improve visibility and reduce risks.
  • Unified data from vulnerability management, finance, endpoint protection, and physical asset tracking for enhanced IT asset visibility and reporting.
  • Deployed, tuned, and maintained a distributed intrusion detection system/SIEM to improve network monitoring and incident response.
  • Automated compliance scans and reporting in Tenable using dynamic asset tagging.
  • Developed and implemented security policies aligned with HIPAA, NIST-800-171, and NIST-800-53.
  • Designed an internal self-assessment process for NIST-800-171 and CMMC 2.0 compliance.
Nuclear Chemistry and Radiological Controls Supervisor - United States Navy
Jan 2020 - Aug 2020
  • Supervised a team of four ensuring reactor plant chemistry compliance and operational readiness.
  • Conducted internal audits and collaborated with external auditors, ensuring adherence to policies and regulatory requirements.
  • Developed maintenance and operational plans in coordination with supervisors and executive officers.
  • Led incident response efforts, including initial containment, short-term recovery, and long-term mitigation strategies.
  • Served as an instructor, consistently receiving high ratings during training audits.

Education

June 2023
Master of Science - Cybersecurity
DePaul University
GPA: 4.0

Concentration: Computer Security
Relevant Coursework:

  • IT Audit
  • Business Continuity & Disaster Recovery
  • Network Security
  • Malware Analysis
  • Distributed Systems
  • Data Structures
  • Object-Oriented Software Development
  • Information Security Management
  • Continuous Delivery and DevOps

Captstone Paper:

Understanding Human Behavior as it Relates to Security Behavior
March 2020
Bachelor of Science in Nuclear Energy Engineering Technology
Thomas Edison State University
GPA: 3.83
Washington Community High School

Achievements

BSides Peoria 2024 - Black Badge Award
Awarded a Black Badge Award for my talk on NixOS focusing on the benefits of a delcarative model for operating system configuration.
CampIT Breach Panel - December 2024
Particated in a panel discussed: Building a Cyber Resilient Organization: People, Process, Technology
BSides Peoria 2023
Presented on the importance of a human centric approach to information security.

Get in Touch

My inbox is always open. Whether you have a question or just want to say hi, I’ll try my best to get back to you!
Mail me