Security Engineer · U.S. Marine Veteran
Arturo Rosas
Engineering secure systems across enterprise environments — from physical datacenters to cloud identity platforms.
About Me
I'm Art — a Security Engineer and U.S. Marine Corps veteran with a career that spans physical infrastructure, enterprise IT, cybersecurity, and financial operations. I've built, secured, and maintained systems across every layer of the stack: from racking servers and managing LTO tape libraries in a datacenter, to designing enterprise MFA rollouts and managing cloud identity platforms in Azure.
My approach is shaped by years of hands-on work in corporate environments where I've consistently bridged the gap between security engineering and the teams that depend on it. I've authored technical documentation, trained cross-functional teams, built automation to reduce manual overhead, and collaborated with networking, infrastructure, and identity teams to keep enterprise services running and secure.
I'm comfortable across platforms — Linux, Windows, and macOS — and across form factors, from datacenter hardware to mobile devices, IoT, and endpoint management. I bring a builder's mindset to security: I don't just identify problems, I create the tools, workflows, and documentation to solve them at scale.
Professional Experience
A career built across security, infrastructure, finance, and military service.
Cloud & Identity Engineering
Azure · Entra ID · Enterprise IAM
Worked extensively in Microsoft Azure and Entra ID (Azure AD), managing service principals, app registrations, and enterprise MFA configurations. Built and maintained cloud identity infrastructure supporting authentication and access control across the organization.
Leveraged Microsoft Graph API for identity and directory automation. Worked with Azure-based integrations including conditional access policies and SSO configurations. Managed BeyondTrust EPM for endpoint privilege management across the enterprise.
Security Engineer
Enterprise Cybersecurity · Authentication
Managed Symantec VIP authentication gateways and coordinated with Cisco ASA, Citrix, F5, and other enterprise networking teams to keep authentication infrastructure running and secure. Worked with the Symantec VIP API for gateway integrations and automation.
Played a key role in the enterprise-wide migration from multiple Symantec VIP hard token types to a unified HID Crescendo v3 FIDO2 security key. Performed extensive testing of hardware from vendors including Swissbit, YubiKey, and others. Handled encryption and decryption of authentication seeds, and collaborated closely with internal Ping Identity operations teams throughout the rollout.
Aggregated and processed large-scale user transaction data across multiple global regions to identify the target population for token replacement. Built data pipelines using Python (pandas) and Apache Parquet to consolidate and query datasets efficiently, enabling accurate scoping of the rollout across international offices.
Created workflows, standard operating procedures, and training materials for the new security keys. Trained engineers across the organization on the key management lifecycle and built the documentation that supported enterprise-wide adoption.
Built reporting automations using CrowdStrike for endpoint security visibility. Created automated pipelines with Python and the CrowdStrike API to replace manual compliance reporting processes.
Infrastructure & Datacenter Operations
~3 Years in a Physical Datacenter
Spent approximately three years working inside a datacenter, handling the physical infrastructure that underpins enterprise services. Maintained servers, replaced and managed hard drives, handled LTO tape backups and libraries, and performed extensive hands-on work in server cabinets and racks.
Set up and configured servers from bare metal, managed physical security controls, and gained deep familiarity with datacenter operations including power, cooling, cabling, and rack management. Worked with Splunk for log management and monitoring, and performed various system integrations.
Finance & Pharmacy Audit Operations
Healthcare & Financial Analysis
Worked in pharmacy audits, testing health plans and evaluating performance guarantees. Gained experience in the intersection of healthcare compliance, financial analysis, and operational reporting.
Built automation tools and workflows using Python with Excel, PostgreSQL, and Microsoft Access to streamline financial processes. Created email automation, mail merge solutions, and internal documentation that improved team efficiency. Developed minor tools and reporting solutions to support auditing and compliance workflows.
U.S. Marine Corps
Military Service
Served as a United States Marine, developing the discipline, leadership, and problem-solving skills that continue to shape my professional approach. Collaborated across units and organizational structures to solve complex logistical challenges under pressure.
Technical Skills
Azure & Cloud
Microsoft Azure, Entra ID (Azure AD), Microsoft Graph API, service principals, app registrations, conditional access, Active Directory, Group Policy, Windows Server
Identity & Access Management
Ping Identity, Symantec VIP (+ VIP API), HID Crescendo v3 (FIDO2), MFA, SSO, authentication gateways, BeyondTrust EPM
Endpoint & Threat Security
CrowdStrike, BeyondTrust EPM, Symantec VIP gateway management, endpoint privilege management, security reporting automation
Infrastructure & Datacenter
Server setup and maintenance, LTO tape libraries, rack and cabinet work, physical security, Splunk, networking, Cisco ASA, Citrix, F5 load balancers
Scripting & APIs
Python, PowerShell, Microsoft Graph API, Symantec VIP API, CrowdStrike API, email automation, mail merge, Excel/VBA, PostgreSQL, Microsoft Access
Platforms & Devices
Linux, Windows, macOS, mobile device management, Android, iOS, IoT, laptops, endpoint management, documentation, SOPs, cross-team training
Notable Projects
Enterprise MFA Token Migration
Symantec VIP → HID Crescendo v3 Security Keys
Performed extensive testing and hands-on engineering for the enterprise-wide migration from multiple Symantec VIP hard token types to a unified HID Crescendo v3 FIDO2 security key. Handled encryption and decryption of authentication seeds, evaluated hardware from vendors including Swissbit, YubiKey, and others, and collaborated with Ping Identity operations teams. Aggregated large-scale transaction data using Python (pandas) and Apache Parquet to identify the global target population for token replacement. Created the workflows, documentation, and training materials that supported enterprise-wide adoption.
Enterprise Authentication Gateway Operations
Symantec VIP + Cisco ASA, Citrix, F5
Managed Symantec VIP authentication gateways, coordinating across Cisco ASA, Citrix, and F5 networking teams to ensure reliable, secure enterprise authentication. Maintained gateway availability, performed upgrades, and served as the primary point of contact for authentication infrastructure across the organization.
Security Reporting Automation
CrowdStrike + Python
Built automated reporting pipelines using CrowdStrike APIs and Python to streamline endpoint security visibility and compliance reporting. Replaced manual processes with repeatable, scheduled automation that improved both speed and accuracy of security reporting.
Beyond the Terminal
When I'm not working on security infrastructure, you'll find me staying active and learning something new.
Pickleball
Chess
Running
Lifting
Cooking
Reading
Studying