Security Engineer & Architect

Rory
Garshol

20 years securing complex infrastructure — from on-prem data centers to multi-cloud environments at scale. Specializing in cloud security architecture, infrastructure as code, and building security programs that actually work.

View My Work GitHub →
20+ Years in Security
Multi-Cloud Azure + AWS
9 Certifications
3 Compliance Frameworks

Certifications

Verified Credentials

Active industry certifications across cloud platforms and security disciplines.

GIAC & CompTIA

GIACGCIH
GIAC
Certified Incident Handler
GCIH
Expires Jan 2028
Active
GIACGCSA
GIAC
Cloud Security Automation
GCSA
Expires Sep 2029
Active
GIACGPCS
GIAC
Public Cloud Security
GPCS
Expires Oct 2028
Active
GIACGAB
GIAC
Advisory Board Member
GAB
Expires Sep 2029
Active
CompTIASec+
CompTIA
Security+ ce Certification
Sec+
Expires Nov 2027
Active

Amazon Web Services

AWSDOP
AWS — Professional
DevOps Engineer Professional
DOP
Expires Oct 2028
Active
AWSSAA
AWS — Associate
Solutions Architect Associate
SAA
Expires Jun 2026
Active
AWSCLF
AWS — Foundational
Cloud Practitioner
CLF
Expires Oct 2028
Active
AWSSCS
AWS — Specialty
Security Specialty
SCS
Renewal target: Oct 2026
In Progress

About

Security engineering at Staff & Architect level

I've spent two decades building and securing infrastructure — from early enterprise networks to today's multi-cloud environments. My work lives at the intersection of cloud security, infrastructure as code, and security automation.

Currently operating at Staff/Architect level with deep expertise in Azure and AWS security architecture, hub/spoke network topologies, Terraform infrastructure as code, and HIPAA compliance in healthcare environments.

I've led ransomware recovery efforts, designed multi-cloud DR strategies, and built security automation programs from the ground up. This portfolio documents that work — sanitized and packaged as reusable patterns.

Core Skills

Cloud Platforms

Azure AWS Hub/Spoke Networking Multi-Cloud DR Azure Firewall ECS Fargate

Infrastructure as Code

Terraform Reusable Modules Palo Alto NSG / Firewall Rules IaC Security Baselines

Security Engineering

Incident Response Security Automation Ransomware Recovery Threat Modeling Container Security SOC Operations

Compliance & Frameworks

HIPAA PCI-DSS SOC2 NIST CSF SANS Frameworks

Languages & Tools

Python PowerShell Bash Git Kubernetes

Projects

Terraform Modules & Architecture Docs

Reusable infrastructure patterns extracted from real healthcare and multi-cloud environments. Publishing Q1–Q2 2026.

Coming Soon

Terraform Module

Azure Hub/Spoke Network

Reusable VNet modules with NSGs, firewall rules, and subnet patterns for enterprise hub/spoke topologies.

Coming Soon

Architecture Doc

Ransomware Recovery Playbook

Timeline, decisions, and lessons learned from a real ransomware recovery and full infrastructure rebuild in Azure.

Coming Soon

Terraform Module

Multi-Cloud DR Strategy

Azure primary + AWS secondary DR design with failover/failback procedures and infrastructure as code.

Writing

Technical Blog

Security architecture, cloud infrastructure, and lessons from the field.

Published

Blog Post

Container Security Architecture

Design decisions and trade-offs when building container security in production environments — ECS Fargate, Kubernetes, and standalone Docker.

Q2 2026

Blog Post

Building Security Automation

Program design principles for security automation — what works, what doesn't, and how to scope it.

Q2 2026

Blog Post

Cloud Migration Lessons Learned

Real lessons from migrating complex on-prem infrastructure to Azure after a ransomware incident.