Daniel Stinson-Diess

Security Engineer

Austin, Texas, United States9 yrs 6 mos experience

Highly Stable

Key Highlights

Expert in building security tools and automation.
Proven track record in incident response and threat intelligence.
Strong background in large scale data analysis for security.

Stackforce AI infers this person is a Cyber-security expert with a focus on SaaS and automation.

Contact

Skills

Core Skills

Cyber-security

Other Skills

GoCloud technologiesLog ingestionReal-time alertingAutomationIncident reporting toolsLeadershipC++NonprofitsStrategic PlanningSocial MediaResearchComputer ScienceWeb DevelopmentBash

About

I'm a security engineer with a passion for continuously learning the newest technologies before they get abused, detecting real security threats, and responding effectively with effective tooling/automation. Nothing is better than building tools which can enrich the speed and efficiency of a team to stop bad people. I've done large scale data analysis for security incidents, network-based and host-based digital forensics, reverse engineering of malware, and threat intelligence sharing. Always happy to connect with new people to learn about what challenges they're facing and any opportunities available.

Experience

9 yrs 6 mos

Total Experience

2 yrs 6 mos

Average Tenure

Current Experience

Brex

Senior Security Engineer, Security Operations

Sep 2022 – Mar 2025 · 2 yrs 6 mos · United States · Remote

Working on detection and response, infrastructure security, and corporate security with a scope across the Brex corporate and production environments.

GoCyber-security

Cloudflare

2 roles

Senior Security Engineer, Detection & Response

Apr 2022 – Sep 2022 · 5 mos

Lead more incident response processes and head building internal threat intelligence functions.

Cyber-security

Security Engineer, Detection & Response

Jan 2019 – May 2022 · 3 yrs 4 mos

Started the foundations of the Detection & Response function at Cloudflare and built out to a mature state.
This involved building a SIEM using the public cloud to reach 6 TB/day in terms of log ingestion (at low cost) with real time alerting, batched alerting, and a backing SOAR platform to contextualize alerts and enrich them before responders triage them. I built detection alerts across endpoints (EDR), network technologies and SaaS applications and triaged those same alerts as the on call incident responder.
To make the incident process more effective I built tooling to facilitate easier incident reporting from the staff, chat operation utilities for our response team and other automations to make using our security technologies easier.
To protect Cloudflare with Cloudflare we utilized our suite of application security and zero trust products so I led implementation of many of these internally including tuning the WAF detections, implementing Cloudflare Gateway via Terraform and more.

Cyber-security

Southern california edison (sce)

Cybersecurity Intern

Jun 2018 – Sep 2018 · 3 mos · Greater Los Angeles Area

Handle triaging of SOC alerts, automate response actions for most common alerts, participate in incident response produce for P1 incident. Took part in Governance, Risk, and Compliance learning sessions for breadth.

University of california, riverside

Undergraduate Research Assistant

Jun 2017 – Jul 2017 · 1 mo

Backend development using the Django framework. My project involved making the user creation and authentication system to work with a relational database .