Australia

Detection Engineer – Vulnerability Management & Remediation, Amazon

• Member of the team responsible for vulnerability assessment, enumeration, discovery, and response.
• Lead for automation initiatives, driving efficiency and scalability in vulnerability management processes.
• Designed and implemented automation workflows to ingest and enrich CVEs with contextual data, including ExploitDB exploits.
• Developed workflows to prioritize and contextualize CVE assessments based on their real-world threat impact to Amazon.
• Automated the enablement of Qualys QIDs, streamlining vulnerability scanning and reporting processes.

Australia
Developing a benchmarking service for database engineers to efficiently evaluate and compare various database engines based on stress testing and performance metrics. The goal is to identify optimal engine configurations tailored to customer needs. This microservice is built using Java as the primary backend programming language and leverages key AWS technologies, including Lambda, Step Functions, and API Gateway. The infrastructure is provisioned across designated regions using AWS CDK, ensuring scalability, reliability, and consistency in deployment.

• Designed and implemented in-house A/B testing solutions within the Feature Control platform to support product experimentation and feature rollout.
• Ensured seamless integration of A/B testing capabilities into product development workflows, enabling precise evaluation of new designs and functionality.
• Facilitated decision-making for product teams by leveraging data-driven insights derived from geographically and user-profile-segmented tests.
• Contributed to improving platform reliability and scalability to accommodate diverse testing requirements across multiple teams.
• Collaborated with cross-functional teams to prioritize feature development using insights generated through controlled experiments.
• Enhanced the overall user experience by enabling targeted feature rollouts based on rigorous experimentation results.

Australia
As a software engineer on Amazon’s Security team, I contributed to the development of Project Aracema, an internal service designed to automate the installation and update of CrowdStrike agents on EC2 instances. This project streamlined the process for security engineers by enabling users to define agent configurations using a simplified form of CloudFormation templates. The service then handled the deployment and installation of CrowdStrike agents based on the specified parameters, improving efficiency and reducing manual effort for managing EC2 security configurations.

• Contributed to the development and leadership of Project Oasis, an initiative focused on delivering a comprehensive and unified perspective on customer experience with Amazon Relational Database Service (RDS).
• Played a foundational role as one of the initial developers involved in designing and implementing core features of the project.
• Transitioned into a team leadership role, overseeing development efforts and ensuring alignment with project goals.
• Focused on enhancing user experience through data-driven analysis and system optimization.
• Collaborated across teams to integrate diverse insights into a cohesive platform for customer experience evaluation.
• Delivered strategic improvements that directly influenced the overall functionality and usability of RDS solutions for customers.

Designed and implemented a virtual Database Administrator (DBA) service capable of autonomously troubleshooting and resolving predefined database issues. This service functioned as a virtual DBA, leveraging a rule-based diagnostic engine to identify and address common problems. For instance, it could detect and resolve issues such as MySQL database crashes on T2 instances caused by excessive load. By automating these diagnostics and remediations, the service effectively handled 40% of the ticket queue, significantly reducing manual intervention, improving response times, and enhancing system reliability. Additionally, the solution was designed to scale across various database environments and integrated seamlessly with existing monitoring and alerting systems, further streamlining operations.

• Provided technical support and troubleshooting for customers using a variety of AWS services, addressing specific issues and conducting in-depth investigations for complex problems.
• Recommended architectural improvements for customer solutions on AWS to enhance performance, reliability, and scalability.
• Communicated complex technical concepts effectively through email, call, or chat to ensure clear understanding and successful issue resolution.
• Specialized in deployment services (DevOps) within AWS, including CloudFormation, Elastic Beanstalk, ECS, CodePipeline/Build/Commit, utilizing tools such as Docker, Chef, and Git.
• Developed a comprehensive understanding of interwoven AWS services and technologies to efficiently resolve customer concerns and provide practical guidance.
• Gained extensive hands-on experience with AWS's ecosystem services while addressing diverse customer scenarios and optimizing their usage strategies.

• Doing BAU Linux/Unix/AIX server administration for Optus servers.
• Automation of day to day tasks using Bash/Python scripting.
• Installation & configuration of applications on different versions of UNIX/

LINUX.

• Incidents and RFC management with particular reference to UNIX/LINUX.
• Backup and Recovery of UNIX / Linux based systems by using EMC

Networker.

• System monitoring, preventive maintenance and performance tuning of more than 4000 physical and virtual Linux/Unix/AIX servers.
• Coordinating and liaising with internal teams for project delivery
• Plan and perform software upgrade and patching of Linux boxes.

• Participated in a team of 10 engineers to develop and maintain Noggin OCA software, ensuring alignment with organizational goals.
• Conducted thorough analysis and testing of legacy core classes to enhance performance and reliability.
• Facilitated preparation of software components for entry into the US market by addressing compliance requirements and market needs.
• Improved code readability, maintainability, and functionality through re-engineering of existing modules.
• Identified and resolved critical issues in older system components, contributing to overall software quality improvements.
• Supported seamless integration of updates while minimizing disruptions to operational workflows.

• Led the development of the Rasla project, a web application connecting users with sport complexes, trainers, sport brands, and shops, leveraging Laravel PHP framework, Eloquent ORM, Codeception testing suite, Bootstrap, MySQL, and jQuery.
• Conducted a comprehensive evaluation of leading PHP frameworks (Symfony2, Yii, FuelPHP, and Laravel) and selected Laravel 4 as the optimal choice for project needs.
• Implemented a row-level authentication system (RBAC) for Laravel 4 to enhance security; open-sourced the solution for community use ([available here](https://github.com/sirbijan/LaravelFullAuthentication)).
• Managed the installation and configuration of GitLab server; guided team members on migrating from Subversion to Git to streamline version control operations effectively.
• Integrated Codeception's Unit and Business Testing Frameworks to establish a Behavior-Driven Development (BDD) environment ensuring robust testing processes.
• Collaborated with major partners such as leading sport complexes in Tehran (e.g., Enghelab and Azadi) as well as global brands like Adidas and Nike to support partnership goals within the application ecosystem.

In charge of the installation/maintenance & security hardening of Saman Bank
softwares developed by the team.
Implementation of ActiveMQ - the open source message broker - for banking
applications message exchange
Localization of Zenoss, the open source solution for network monitoring, to fully answer monitoring needs of the company's banking softwares, implementing a broad list of protocols, including JMX, SNMP and a set of custom written shell scripts.

• Leadership and oversight of the VAS Messaging Team responsible for managing MMSC, WAP, and SMSC servers for MTN-Irancell.
• Maintenance and troubleshooting of critical MTN-Irancell server infrastructure supporting over 20 million subscribers.
• Administration of 12 SMSC servers, 46 WAPGW servers, and 16 MMS servers to ensure seamless telecommunication services.
• Troubleshooting Huawei GFEP connections with Ericsson (E///) CCNs to resolve connectivity and performance issues.
• Proposal and implementation of change requests across SMSC, WAPGW, MMS, and related services to enhance system functionality and efficiency.
• Contribution to maintaining high service quality for Iran’s second largest telecom operator with advanced technical solutions and operational strategies.

• Oversaw and coordinated the activities of the development team, acting as a technical leader and ensuring task distribution among developers.
• Conducted analysis of RFPs (Requests for Proposals), prepared detailed technical proposals, and ensured alignment with client needs.
• Led the development of "GLF," a software solution designed to automate operations for the law office of Tehran Municipality.
• Utilized Microsoft C# 2005 to develop features enabling lawyers and clients to track case progress, schedule meetings, and complete localized legal documents.
• Delivered tailored solutions to streamline administrative tasks in the legal domain through efficient software design and implementation.
• Ensured thorough testing and deployment processes to guarantee functionality, accuracy, and user satisfaction within project deliverables.

• Development and enhancement of web applications using PHP to meet client requirements.
• Administration and management of hosting services through CPanel and Plesk platforms.
• Delivery of effective solutions in line with client needs, ensuring high performance and robust functionality in web applications.
• Implementation of best practices in PHP coding to optimize application performance and maintainability.
• Monitoring, troubleshooting, and resolving hosting-related issues to ensure uninterrupted service availability.
• Coordination with clients during the development lifecycle to align deliverables with business objectives.

Yazd Science & Culture University
Bachelor's degree, Computer Software Engineering * (2000 - 2005)