Benjamin Cedar Staff DevSecOps Engineer benjamin.cedar@gmail.com

 

Staff DevSecOps Engineer with extensive experience in GitLab CI/CD pipeline development, multi-cloud infrastructure automation, and security-focused DevOps practices. Expert in infrastructure-as-code using Terraform and Ansible, containerization with Docker, and building scalable monitoring solutions. Proven track record of collaborating with security analysts and developers to deliver robust, automated solutions in cybersecurity-focused environments.

Skills

code Ansible filter_9
cloud Ansible Tower filter_7
code Java filter_7
code Jinja2 filter_8
code html filter_5
code css filter_5
cloud Elasticsearch filter_6
cloud_upload Logstash filter_7
dashboard Kibana filter_9
cloud_upload Beats filter_8
code Docker filter_8
code git filter_7
cloud GitLab-CE filter_7
input SNMP filter_5
code Python filter_4
code Bash filter_6
router Networking filter_7
computer Linux filter_7
security auditd filter_4
code Ruby filter_3
security Security Onion filter_6
assignment Project Management filter_6
cached Agile Development filter_5
assignment Scrum filter_5
code Julia filter_4
device_hub Parallel Computing filter_4
code C filter_3
code C++ filter_4
code C# filter_4
code Azure Pipelines filter_5
cloud Terraform filter_8
code Node.js filter_7
security SonarCloud filter_9
security ArmorCode filter_7
security Orca Security filter_8
cloud AWS Lambda filter_7
code API Development filter_8
security DevSecOps filter_8
security Vulnerability Management filter_8
cloud Pulumi filter_6
code Salt Stack filter_5
code Golang filter_6
dashboard Prometheus filter_7
dashboard Elastic Stack filter_8
cloud Multi-Cloud Deployment filter_8
code TypeScript filter_6
code PowerShell filter_8
cloud Kubernetes filter_7
dashboard Graylog filter_6

Certifications

GIAC Certified Intrusion Analyst
GIAC · 13198 · Expires Sep 2026
Certified Information Systems Security Professional
ISC2 · 626555 · Expires Sep 2026
GIAC Certified Incident Handler
GIAC · 40693 · Expired Aug 2025
Certified Ethical Hacker
EC-Council · ECC41428771218 · Expired Sep 2023
CompTIA Security+
CompTIA · COMP001020694781 · Expired Mar 2023

Education

Bachelor of Science in Computer Science

South Dakota State University · 2016

Work Experience

Staff DevSecOps Engineer

CNH Industrial May 2025 → Present

Provide support, tooling, and services to product development teams. Lead enterprise security automation initiatives and mentor engineering teams on secure development practices.

  • Architected and deployed enterprise SonarCloud integration platform automating code quality and security scanning across development teams
  • Developed Terraform providers for security tools including Orca Security and ArmorCode, enabling infrastructure-as-code security management
  • Built automated vulnerability remediation workflows integrating GitLab CI/CD with security scanning tools
  • Implemented user access management systems for security platforms using Node.js and AWS Lambda
  • Created security scanning automation significantly reducing manual security review time
  • Serve as technical point of contact for AWS infrastructure access and security processes across engineering teams
  • Mentor development teams on DevSecOps tool adoption and secure development practices
  • Lead security incident response and investigation activities for cloud infrastructure

DevSecOps Team Lead

CNH Industrial Jan 2024 → May 2025

Lead a team of DevOps Engineers and Security Analysts that produces security tool integrations, vulnerability analysis, and internal penetration testing.

  • Led team of DevSecOps engineers and security analysts supporting development teams across multiple product lines
  • Established security-first development practices and automated security scanning workflows
  • Implemented infrastructure-as-code security standards and compliance automation
  • Drove adoption of shift-left security practices across development teams
  • Collaborated with product teams to integrate security requirements into development lifecycle
  • Mentored junior engineers on security automation and cloud security best practices

DevOps Team Lead

Raven Industries (acquired by CNH Industrial) Feb 2022 → Jan 2024

Lead, grow, and mentor a team of DevOps Engineers who focus on building internal infrastructure for cloud applications at Raven.

  • Built and led DevOps team supporting multi-cloud infrastructure deployments for precision agriculture applications
  • Designed and implemented GitLab CI/CD standards and automated deployment processes across product teams
  • Implemented infrastructure-as-code practices using Terraform for AWS and Azure cloud environments
  • Drove adoption of containerization using Docker and microservices architecture patterns
  • Mentored team members on cloud security, DevOps automation, and infrastructure best practices

Senior DevOps Engineer - Cloud Security

Raven Industries Jun 2021 → Feb 2022

Develop and maintain automation and configuration management tooling. Implement security controls throughout the development pipelines. Monitor software services and ensure they operate at optimal performance.

  • Developed and maintained GitLab CI/CD pipelines for multi-cloud deployments across AWS and Azure environments
  • Implemented infrastructure-as-code using Terraform and Ansible for automated provisioning and configuration management
  • Built containerized application deployments using Docker with automated testing and deployment workflows
  • Established monitoring and logging infrastructure using Prometheus and Elastic Stack for production applications
  • Automated security scanning and compliance controls integrated into CI/CD pipelines
  • Collaborated with security analysts and developers to deliver tailored DevOps solutions

PLM Application Administrator

Daktronics Feb 2016 → Feb 2020

Managed objects and workflows in PTC's Windchill server. Developed solutions through configuration and customization including reports, Java classes, expression snippets, server pages, and workflows.

  • Established DevOps process for configuring and customizing systems supported by the PLM team using Azure DevOps, PowerShell, and Git
  • Developed PowerShell Module for performing System Administration specific to Windchill
  • Created PowerShell-GitOps CI/CD module for configuration file management and automated deployments
  • Improved Integration with down stream ERP system through customization using supported API in Java
  • Developed and deployed the Deviation process in Windchill
  • Developed and deployed the CAPA process in Windchill
  • Developed AVL/AML and Supplier Part processes in Windchill

Systems Engineer

Task Force Echo Feb 2019 → Mar 2020

Engineer, install, operate, and maintain critical infrastructure for USCYBERCOM.

  • Provided System Administration support for Cyber Incident Response Team
  • Used GuestFish to retrieve potential indicators of compromise for forensic analysis
  • Designed and implemented a secure network monitoring solution using SNMP, python, cron, Filebeat, and Elasticsearch
  • Designed and implemented a secure service monitoring solution using bash, cron, Filebeat, and Elasticsearch
  • Learned Kibana's Canvas expression language with very little documentation
  • Designed an infrastructure dashboard providing status light style monitoring and alerts based on rules provided by system owners, the security team, and management
  • Championed and established an infrastructure-as-code system administration process with Ansible, GitLab, and Ansible Tower

Cyber Incident Responder

SD Army National Guard Mar 2017 → Present

Maintains readiness through education and training in preparation for a cyber incident. Researches and tests cyber incident response management solutions. Monitors logs and handles cases in the event of an incident. Fall in on customer SIEM or stand up one in its absence.

  • Deployed and configured ElasticSearch cluster for SD Army National Guard
  • Earned the GCIA, CISSP, and CEH certifications
  • Deployed and configured a Graylog server, aggregating all logs in customer systems during CyberShield 2018
  • Researched and presented on Incident Response management tools such as the Hive project, Dradis CE, and GitLab CE

IT Helpdesk Technician

Daktronics Dec 2014 → Feb 2016

Support the employees of Daktronics with their computer, printer, and networking needs. Deploys desktop and laptop computers. Primarily responsible for the manufacturing departments and their machines.

  • Supported 5 manufacturing plants in Brookings, SD
  • Acted as primary support for the manufacturing plants while attending college full-time
  • Deployed an image-based disaster recovery server in the form of a FOG (https://fogproject.org/) server, automating the upload of system images based on a schedule, and decreasing the recovery time of a system-down incident from days to hours

Information Systems Specialist

SD Army National Guard Mar 2007 → Mar 2017

Provide computer systems and networking support to a client unit. Operate and maintain servers, routers, switches, trunk encryption devices, firewalls, call manager, phones, and cabling in support of mission. Perform quarterly updates as provided by General Dynamics.

  • Stood up a local area network in a tactical environment utilizing satellite dishes (VSATs), wireless bridges (CAISIs, 3ETIs), and creating an unplanned local file share on a spare laptop
  • Attended initial and update fielding trainings covering a range of networking concepts such as DMVPN
  • Acted as Subject Matter Expert and Escalated Support for all CPN equipment in the state