Skip to main content
Scott BlasingSB
Looking for a job

Scott Blasing

@scottblasing

I’m a senior security engineer who builds automated, high-performance detection and response systems.

United States
Message

What I'm looking for

I’m looking to build and optimize security automation—ETL-driven investigations, SIEM/SOC detections, and incident response—using high-performance engineering and strong collaboration to reduce MTTR and improve signal fidelity.

I have spent over a decade working at the intersection of data analysis, software engineering, and security, but I approach every project with the same mindset: I want to understand the first principles of the problem and the environment I work in before implementation. I don’t believe in just adding more tools to a stack. Instead, I use data-driven methodologies to find out where a workflow is breaking down or where resources cannot meet demand. In my recent work, that meant moving away from standard SIEM limitations and building custom Python engines that optimized telemetry processing from quadratic to linear. Whether I am architecting ETL pipelines, serving as an Incident Commander, or building custom security detections, my goal is to strip away the noise. I build automated systems that handle the heavy lifting so that human analysts can actually focus on high-value investigations. For me, effective security engineering requires in-depth knowledge of the environment, behaviors, and the data each generates. With a full understanding of each, I will build systems that can reliably, accurately, and efficiently solve your problems.

In recent roles, I’ve architected a multithreaded telemetry processing engine to reduce investigation package creation time by 90%, built custom SIEM parsers and MITRE ATT&CK mapped detection rules, and coordinated remediation and incident response efforts, including serving as Incident Commander to reduce Mean Time to Resolution (MTTR) by an estimated 30%.

Experience

Work history, roles, and key accomplishments

Johnson & Johnson logoJJ

Senior Security Analyst

Johnson & Johnson

Jun 2025 - Mar 2026 (9 months)

During this contract role, I bridged the gap between security governance and operational response by engineering custom automation. I optimized telemetry processing speed and built modular ETL pipelines to normalize complex data, directly reducing analyst turnaround time. By circumventing platform limitations through custom code, I transformed fragmented logs into actionable intelligence.

PythonREST APIsMicrosoft PurviewPolarsAho CorasickVSCodeJupyter Notebooks
LastPass logoLA

Senior Security Operations Analyst

LastPass

Jan 2024 - Feb 2025 (1 year 1 month)

Led high-priority incident response and proactive threat hunting across multi-cloud environments. I used a data-driven approach to coordinate containment as Incident Commander, significantly reducing recovery times. My focus was on identifying sophisticated behavioral anomalies and integrating custom software to align security operations with broader business goals.

CrowdstrikeMS SentinelKusto Query Language (KQL)TinesWizAWS
KPMG US logoKU

Senior Information Security Analyst

KPMG US

Jan 2023 - Jan 2024 (1 year)

Focused on improving signal fidelity and operational efficiency within complex ecosystems. I performed high-velocity analysis to isolate true threats from noise and established feedback loops to refine detection logic. Beyond technical remediation, I developed the standard operating procedures and mentored junior talent to harden the team's baseline.

SentinelOneMS Sentinel
Grow Financial Federal Credit Union logoGU

Information Security Specialist

Grow Financial Federal Credit Union

Jul 2018 - Dec 2022 (4 years 5 months)

Architected the enterprise-wide evolution of SIEM, DLP, and cloud security frameworks. I led the technical strategy for migrating to Azure Hybrid environments, ensuring data protection across both network and endpoint layers. I owned the full lifecycle of security posture management, from forensic analysis and alert tuning to leading regulatory audits.

Network DLPEndpoint DLPAzurePalo Alto PRISMA CloudPalo Alto NGFWEDRSIEMCloud Access Security Broker (CASB)Full Disk EncryptionProxy Configuration ManagementVulnerability ManagementVulnerability Scanning SolutionsLinux Server AdministrationWindows Server Administration
Snowcloud Services logoSS

Support Technician

Snowcloud Services

Aug 2016 - May 2018 (1 year 9 months)

Established and maintained secure infrastructure baselines for a diverse client base, including healthcare and government sectors. I focused on hardening network appliances and managing disaster recovery solutions to ensure high data availability. My work centered on provisioning secure, resilient environments across on-premises and SaaS platforms.

Ubiquiti UnifiMicrosoft 365 AdministrationNetworkingVBA ProgrammingTicketing PlatformsVoIPVPN Client ConfigurationWindows Server AdministrationLinux Server Administration
Advance Auto Parts logoAP

Industrial Engineering Tech

Advance Auto Parts

Jul 2010 - May 2016 (5 years 10 months)

I managed daily operations and IT systems, focusing on process optimization and infrastructure integrity. I used data analysis and workload forecasting to identify workflow bottlenecks and align resources with fluctuating demand. By analyzing system logic and throughput, I re-engineered manual processes to reduce operational overhead and improve efficiency in high-pressure environments.

SQLAccessOracle

Education

Degrees, certifications, and relevant coursework

Colorado Technical University logoCU

Colorado Technical University

Bachelor of Science, Information Technology

0

Grade: 3.89

Activities and societies: N/A

Bachelor of Science (B.S.) in Information Technology with a focus on Software Application Programming graduating in 2017.

Tech stack

Software and tools used professionally

Microsoft Azure logo

Microsoft Azure

GitHub logo

GitHub

McAfee DLP logo

McAfee DLP

Python logo

Python

PowerShell logo

PowerShell

Rust logo

Rust

Azure Monitor logo

Azure Monitor

Linux logo

Linux

Windows logo

Windows

LastPass logo

LastPass

Azure Active Directory logo

Azure Active Directory

Microsoft Office 365 logo

Microsoft Office 365

Qualys logo

Qualys

CrowdStrike logo

CrowdStrike

Palo Alto Networks logo

Palo Alto Networks

McAfee Endpoint Protection logo

McAfee Endpoint Protection

Amazon Web Services (AWS) logo

Amazon Web Services (AWS)

SQL logo

SQL

Azure Blob Storage logo

Azure Blob Storage

Microsoft Intune logo

Microsoft Intune

Polars logo

Polars

Wiz logo

Wiz

Prisma Cloud by Palo Alto Networks

Bash

Azure Data Explorer (Kusto)

Tines logo

Tines

SentinelOne logo

SentinelOne

Availability

Looking for a job

Location

United States

Authorized to work in

United States

Social media

Scott Blasing's LinkedIn

Job categories

Security EngineerSecurity Operations EngineerSenior Threat Hunting EngineerIncident Response AnalystSecurity Automation EngineerSenior Security EngineerIT Security EngineerInformation Security EngineerCybersecurity EngineerSoftware Security EngineerSecurity Software EngineerNetwork Security EngineerSystems Security EngineerData Security Engineer

Skills

PythonRustBASHPowerShellSQLVersion ControlAgile MethodologiesSoftware Development LifecyclePolarsREST APIsMicrosoft PurviewMicrosoft DefenderMicrosoft Entra IDVulnerability ManagementDigital ForensicsDetection EngineeringCrowdstrikeGitHubLinuxWindowsSIEMKusto Query Language (KQL)Automation

Interested in hiring Scott?

You can contact Scott and 90k+ other talented remote workers on Himalayas.

Message Scott

People also viewed

View all talent

Find your dream job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan