Andrew Tunnecliffe's Resume

Profile

Currently working as a Splunk professional services provider specialising in federal government and secure environments; previously as a cyber security analyst with a federal government department, I have a strong and growing passion for encouraging efficient and secure development lifecycles.

Technical Skills

Plenty of certifications for Splunk (Architect, Consultant, ITSI, Enterprise Security, Power User, Administration etc etc)

I don't believe in listing explicit programming, environment or platform skills as I can pick up anything very quickly. I started working as a developer for several years, then moved into cyber security. During this time I became familiar with a massive scale enterprise environment including the most complex of tooling and workflows. Once I moved to consulting, this experience was great as it let me hop between different tool sets easily as I quickly moved between different environments. At this stage I'm very confident that I can pick up any toolset and drive it efficiently and effectively.

Education

University of Canberra

Graduate Certificate of Government Informatics

Bruce, Australian Capital Territory

03/2015-12/2015

Monash University

Bachelor of Information Technology and Systems

Major in Information and Communication Security

Minor in Games Development (Basically artificial intelligence and discrete maths)

Caulfield, Victoria

2011-2014

Experience

Senior Software Engineer (Splunk Professional Services Provider), Rivium, Canberra

(2016 - Current)

Architecture, Automation, Implementation

Architected, implemented and configured many large-scale Splunk deployments
Built an automation suite for Splunk to enable ISM compliance for a volatile and secure set of projects. Including One-click multi-site indexer cluster deployment, integration with an existing search head cluster with full RBAC, including full usage logging and reporting for billing back to the project's business owner; all the way down to ISM-compliant data archival at the project's spindown.
Delivered extremely thorough Application Performance Metrics to the function level so end users can identify which section of code on which application in which environment on which server is causing performance problems in a live production environment. This was a particularly outstanding result for our client and we have since extended this monitoring into a new fully CI/CD containerised environment.

Cyber Security Analyst, Federal Government Department, Canberra

(May 2015 - 2016)

Analysis, Cyber Security, Implementation

Worked on a particularly large clustered Splunk implementation. Settings up Enterprise Security, custom TAs, apps, SAML single sign on, firewall rules, network segregation... the list goes on. I am also now the master of regular expressions thanks to creating sourcetypes for so many weird bespoke logs.
Set up a fully automated Malware Analysis station using Cuckoo (cuckoo-modified)! When a "suspicious" email hits our mail filters, it gets forwarded to Cuckoo, scanned, and then reported on automatically.
Automated/scripted masses of BaU work for the sec ops team, saving around 1-2FTE/week.
Made management love me through my creative dashboard creations in Splunk (great insights and great looks!)

IT Officer (Developer), Department of Social Services, Canberra

(February 2015 - May 2015)

Analysis, Development, Enterprise

In my first month produced a validation tool that has been implemented into a system that directly affects over 10,000 users
Updated several very outdated versions of software that were still being used to the joy of our management and security teams
Implemented an extra layer of security across our web code generator framework

On-site Technician and Consultant, ByteWiz, Melbourne & Canberra

(July 2014 - 2017)

Communication, Hardware, Software

Successfully recovered data lost in an electrical storm for large engineering firm
Constantly explaining complex issues and resolutions in simple terms

Tech Expert, Telstra, Melbourne

(January 2012 - December 2013)

Leadership, Communication, Hardware

Upgraded all (12) store PCs from Windows XP to Windows 7 in one day without an operational network
Lead "Tech Bar" to increase profits by (literally) 1,300% over the course of three months
Won awards at three separate conferences for outstanding product knowledge and communication skills. This is easy when you're passionate about the tech you're working with!

Repair Technician, Easy-Bargain Co, Melbourne

(August 2011 - February 2012)

Communication, MySQL, PHP, Hardware

Repaired and recovered data from an iPhone that was run over by a car and left overnight in the rain
Upgraded entire store database from horrid MS Access flat file to a relational MySQL system with a nice front end
Coded appointment setting and notification system

Repair Technician, ByteWiz, Melbourne

(December 2010 - October 2011)

Communication, Leadership, MySQL, PHP, Hardware

Started my own company at 17 years old!
Built website to advertise and book appointments for hardware repairs
After 9 months the company had more than 300 clients
Sold company and all assets to Easy-Bargain Co

Developer, EventScripts, Melbourne

(September 2010 - October 2012)

Python, EventScripts, PHP

First experience coding in a team!
Wrote major project "Pokémod Source", a Source mod played by over 1,000 people
Increased player count by 40% over one month through targeted (and free) social media advertising

Academic Achievements

2nd Best Overall IT System

- Monash University Industry Experience Project

I'm actually pretty proud of this so I'm going to write about it a bit more.

The task was to create a web system for a client; our client was a branch of the Uniting Care assistance group. It was interesting because the clients were almost exclusively volunteers who have almost no computer experience. Not only that but I was told by management specifically that their willingness to learn will be minimal at best.

But they were confident in Microsoft Word!

With this knowledge, I build a web system (from scratch, as the assignment required) where users were automatically authenticated from their work intranet, and each page was simply a HTML render of a word document. Adding a new page was as simple as dragging and dropping a word document onto the screen and clicking the menu item you wanted to lead to it. Some of the more elite users were given permissions to add and edit the menu items, and access to an inline editor plugin for changing the home page in an easy, drag and drop, click and type interface.

It was the easiest and most usable system I have ever created. Teaching drag and drop was not an easy task, but it ended up being a great tool that I am extremely proud of.

Highest Mark of all students

- "Secure and Trusted Software Systems" unit at Monash University

Final Word

You should Google me if you want more info. I have a fairly prominent online presence. Here are some links to get you started:

Currently living in Canberra, happy to work remotely and travel for any Australian company. Currently holding a valid federal government security clearance at a high level.

Andrew Tunnecliffe