Open to opportunities

Aaron Son

@aaronson

Message

Senior Security Software Engineer specializing in secure automation, hardening, and CI/CD vulnerability workflows.

United States

Message

What I'm looking for

I’m looking for a role where I can build secure automation and hardening workflows that plug into CI/CD, partner across engineering and IT, and use AI to accelerate triage—while validating outputs through testing and review.

I’m a Senior Security Software Engineer with 8 years of experience building secure automation, hardening enterprise systems, and improving code review and vulnerability workflows across Linux, cloud, and identity environments. I integrate security checks into CI/CD to reduce risk without slowing delivery.

In my recent role at Liberty Mutual Insurance, I built Python and Bash tooling that cut vulnerability triage from days to hours for a security and infrastructure team. I integrated SAST, DAST, and dependency checks into GitHubActions and Jenkins pipelines to block high-risk builds and reduce manual review load across 40+ application releases.

I harden Linux and Windows server baselines with Terraform and policy-driven configuration checks, tightening identity and system controls across multi-account AWS. I also review secure design and code changes for internal services, surfacing issues in authentication, secrets handling, and logging before production.

I’m especially focused on using AI to speed analysis, while keeping decisions accountable through source checks, test runs, and peer review. I’ve expanded incident triage tooling with SQL and log enrichment in Splunk, documented secure coding patterns for repeatable remediation, and partnered with engineering and IT to coordinate fleet remediation and rollout sequencing.

Experience

Work history, roles, and key accomplishments

Current

Senior Security Software Engineer

Current

Liberty Mutual Insurance

Jan 2023 - Present (3 years 5 months)

Built Python and Bash automation that cut vulnerability triage from days to hours for a 12-person security and infrastructure team, validating findings before tickets were opened. Integrated SAST/DAST and dependency checks into GitHub Actions and Jenkins pipelines, blocking high-risk builds across 40+ application releases and reducing false-positive escalations by 30%.

Python BASH DAST GitHub Actions Jenkins Terraform Puppet AWS Splunk SQL

Senior Security Engineer

RateQuote

Jan 2022 - Oct 2022 (9 months)

Automated security scanning and alert enrichment with Python services, shrinking manual investigation time for application and infrastructure findings by 50%. Hardened AWS production environments with Terraform and embedded security checks into CI/CD with Jenkins and GitHub Actions to catch misconfigurations and secret leaks before staging.

Python Terraform AWS Jenkins GitHub Actions CI CD Puppet Ansible PostgreSQL MySQL

Software Engineer

Sovereign Co.

Oct 2020 - Dec 2021 (1 year 2 months)

Developed internal Python and SQL utilities that automated data validation and reduced repetitive operational checks in production support workflows. Maintained REST APIs and backend services with secure defaults, and improved incident traceability by adding logging and dashboards in Splunk, Prometheus, and Grafana.

Python SQL REST APIs Splunk Prometheus Grafana AWS Azure Terraform Linux

Software Developer

Scoutside

Aug 2018 - Oct 2020 (2 years 2 months)

Built JavaScript and TypeScript web features for internal operations tools using REST and GraphQL, improving reliability for production users. Wrote SQL queries for PostgreSQL-backed applications and implemented Git-based review workflows and lightweight build automation to reduce manual release preparation and improve service stability.