About Skills Experience Projects Consulting Contact
CISSP · AWS SAA · Cloud Security Builder

Don't just design
security — build it.

20 years hardening enterprise infrastructure at Verizon, Fiserv, Truist, and Cisco. Now I turn security architecture into working code: zero-trust pipelines, automated compliance engines, and cloud-native defenses that run without a human in the loop.

Open to senior security architecture roles — full-time or contract / fractional. Remote-first, with on-site availability in the Atlanta metro.

Trusted with security at
· · ·
Jermaine Ragsdale

Enterprise Security Architect
Who Ships.

I am Jermaine Ragsdale — CISSP, AWS Solutions Architect, and the person who gets called when compliance meets cloud complexity. My career spans 20 years at Verizon, Fiserv, Truist, and Cisco, leading zero-trust implementations, cloud security migrations, and regulatory programs across AWS and Azure. I don't just write blueprints — I write the code to enforce them.

Most security architects hand off to engineering. I close the loop myself: Terraform modules, Lambda pipelines, OPA policy libraries, CI/CD security gates. I believe the only security worth having is security that runs automatically and proves itself with audit logs. If it requires a human to remember, it's already broken.

What surprises peopleI'm a security architect who ships the enforcement code — most don't. Blueprint and implementation come from the same hands.
0
Years Experience
0
Certifications
0
Fortune 500 Orgs

Skills & Technologies

Cloud Security Architecture

Designing and implementing enterprise-grade security across multi-cloud environments with zero-trust principles and defense-in-depth strategies.

AWS Azure Zero Trust IAM

Compliance & Governance

Translating regulatory requirements into automated controls and continuous monitoring for financial services and federal environments.

SOX PCI-DSS FedRAMP NIST 800-207 HIPAA ISO 27001

Infrastructure as Code

Automating cloud infrastructure with declarative templates, policy-as-code, and CI/CD pipelines for immutable deployments.

Terraform Bicep CloudFormation GitHub Actions

Full-Stack Development

End-to-end development from serverless backends to responsive frontends, with emphasis on secure coding practices and clean architecture.

Python JavaScript React REST APIs

Threat Detection & SIEM

Implementing security monitoring, incident response workflows, and threat intelligence feeds to detect and neutralize advanced threats.

Splunk Sentinel GuardDuty MITRE ATT&CK

AI & Large Language Models

Applying LLMs to real security problems: automated log analysis, IaC review pipelines, and local on-premise deployment for regulated environments where data cannot leave the network.

Claude ChatGPT Gemini LM Studio Amazon Bedrock Azure OpenAI

Professional Experience

11/2025 — 03/2026

Senior Cybersecurity Architect

Truist Bank via Pride One Global · Atlanta, GA

Collaborated with cross-functional teams to develop security blueprints and identify risks across enterprise systems. Assessed architecture vulnerabilities and defined security controls to strengthen Truist's cloud and infrastructure posture.

11/2024 — 11/2025

Independent Security & AI Engineering

Self-directed · Atlanta, GA

Between roles, I invested the time in hands-on building rather than waiting. Designed and shipped the security automation and AI tooling featured in my case studies — an on-prem LLM security copilot, a multi-LLM IaC security reviewer, and serverless scanning pipelines — while sharpening cloud and AI credentials (AWS AI Practitioner).

05/2023 — 11/2024

Security Research Engineer

Cisco · Atlanta, GA

Led annual DevOps security enhancements and championed secure development lifecycle adoption across 80+ teams, achieving 90% compliance with enterprise architecture guidelines. Mentored development teams in prioritizing security hardening, reducing vulnerabilities by 70%.

ScaleDrove a 70% vulnerability reduction not on one team, but across 80+ engineering teams at once.
10/2020 — 05/2023

Senior Cloud Security Engineer

Truist Bank · Marietta, GA

Designed enterprise cloud architecture leveraging AWS Security Hub, Macie, and GuardDuty, reducing threat detection time by 50%. Ensured 100% compliance with NIST CSF, FedRAMP, and PCI-DSS, reducing cloud misconfigurations by 45%.

07/2019 — 10/2020

Senior Security Engineer II

Fiserv · Marietta, GA

Guided security engineering teams in encryption strategies securing 100TB+ of sensitive data. Led enterprise-wide compliance ensuring 100% alignment with NIST, FedRAMP, ISO 27001/27002, PCI-DSS, and HIPAA standards.

ScaleEncryption strategy covering 100TB+ of sensitive financial data, held to five overlapping regulatory regimes at once.
02/2005 — 07/2019

Network Security Engineer

Verizon Communications · Richmond, VA

Spearheaded security infrastructure efforts contributing to 99.999% uptime, securing Verizon's #1 J.D. Power ranking for reliability in 2015. Prioritized high availability and disaster recovery across video network infrastructure.

Put in perspectiveThat 99.999% uptime is five-nines — under 5.3 minutes of unplanned downtime across an entire year.

Case Studies

Education & Certifications

Cloud Security & FedRAMP Advisory

I help organizations secure their cloud infrastructure and navigate federal compliance — with the same hands-on depth I've applied at Cisco, Truist, Fiserv, and Verizon. Not just recommendations. Working architecture, real controls, and documentation that satisfies auditors.

FedRAMP Readiness & Authorization

End-to-end guidance through the FedRAMP authorization process. I assess your current posture against NIST 800-53, identify gaps, design remediation plans, and prepare your SSP and supporting documentation for the 3PAO assessment.

  • NIST 800-53 gap analysis & remediation roadmap
  • System Security Plan (SSP) development
  • Control implementation & evidence collection
  • 3PAO assessment preparation
  • Continuous monitoring program design
Start a conversation →

Cloud Security Architecture

Security architecture design and review across AWS, Azure, and GCP. From network segmentation and IAM policy design to encryption strategies and logging pipelines — security built into the cloud foundation, not bolted on after.

  • Zero-trust architecture design (AWS, Azure, GCP)
  • Cloud security assessments & gap analysis
  • IAM, encryption & key management strategy
  • IaC security reviews (Terraform, Bicep)
  • SIEM pipeline design & implementation
Start a conversation →

Compliance & Security Programs

Whether you're preparing for SOC 2, ISO 27001, PCI-DSS, or HIPAA, I build the technical controls and evidence collection processes that satisfy auditors — real security posture, not checkbox compliance.

  • Multi-framework compliance (NIST, ISO, PCI, HIPAA)
  • Security program development & roadmapping
  • DevSecOps pipeline security integration
  • Threat modeling & risk assessments
  • Fractional CISO & board-level reporting
Start a conversation →
How I Work

Discovery & Scoping

A 30-minute call to understand your environment, compliance targets, and timeline. I'll tell you upfront if I'm the right fit.

Assessment & Gap Analysis

A thorough review of your architecture, policies, and controls against your target framework. You get a prioritized roadmap — not a shelf report.

Remediation & Build

Hands-on work designing and implementing controls, configurations, and documentation. I work alongside your engineering team, not in a silo.

Validation & Handoff

Pre-audit testing and evidence prep so your team walks into the assessment confident. Plus internal runbooks for independent maintenance.

Engagement Models

Engagements are remote-first with on-site availability in the Atlanta metro. Reach out with a brief description of your challenge and I'll respond within one business day.

Get in Touch