Robert Brent Goodall
EXPERTISE
BIO
Senior Cybersecurity Architect with extensive technical and consulting expertise in designing, developing, and implementing secure, highly-available bare-metal, cloud and microservices architecture. Proven track record delivering secure and scalable solutions across AWS, GCP, Azure, and Oracle Cloud for strategic partners including Department of Defense and Fortune 500 clients in transportation, banking, and healthcare verticals. Specializes in security-first infrastructure design, cloud migration, and compliance implementation. CISSP, CEH, CASP, Security+, CCSK
WORK EXPERIENCE
Senior Technical Architect
Perficient
March 2019 - August 2024
Led strategic engagements with Department of Defense and Fortune 500 clients, driving Digital Business Transformation through planning, designing, and migrating on-premise workloads to cloud platforms while implementing high-availability infrastructure and ensuring security compliance. • Designed and implemented enterprise-scale Terraform Infrastructure-as-Code deployments integrated with GitOps workflows, enabling consistent management of cloud resources, containers, and applications across AWS, GCP, Azure, and Oracle Cloud platforms. • Drafted detailed Statements of Work and Software Billing of Material (SBOM) for client engagements, tailored to specific technical requirements and business objectives. • Served as key member of Red Hat Center of Excellence (CoE), architecting multi-cloud, hybrid and on-premise solutions to enable high-availability and autoscaling for OpenShift Container Platform. • Reduced microservice deployment times by more than 50% through implementing automated CI/CD pipelines with GitHub Actions and GitLab, while enhancing security posture by integrating both DAST and SAST testing tools into the workflow. • Enhanced security posture by developing and implementing Open Policy Agent (OPA) Constraint Templates for cluster management access control, network traffic governance, and container privilege escalation prevention. • Improved system resilience, security, and observability by implementing Istio service mesh across Kubernetes platforms with mutual TLS (mTLS), enhancing zero-trust architecture and enabling advanced traffic management capabilities. • Developed custom Dockerfiles, Kubernetes manifests, and Helm Charts for streamlined microservices management and deployment. • Produced comprehensive technical documentation including design documents, diagrams, source code repositories, and implementation journals.
Information Systems Security Engineer
Northrop Grumman
February 2016 - February 2019
Served as primary hands-on cybersecurity point of contact, ensuring compliance of information systems with CMMC, RMF, and FedRAMP frameworks, resulting in successful Authority to Operate (ATO) and securing six contracts exceeding $15M. • Authored comprehensive security documentation including Information System Security Policies (ISSP), System Security Plans (SSP), and Security Assessment Reports in support of Risk Management Framework requirements. • Led design and implementation of FIPS 140-2 compliant secure mobile cloud PoC on bare-metal infrastructure, leveraging RHEL, RHEV, OpenShift, and OpenStack (TripleO). • Conducted manual and automated security assessments and audits to proactively identify and mitigate system vulnerabilities and infrastructure risks. • Provided continuous monitoring and management through Security Information and Event Monitoring (SIEM) technologies, ensuring prompt detection and response to security events. • Developed and managed Plans of Action & Milestones (POA&M) based on DISA STIGs, SCAP, CIS Benchmarks, and ACAS (Nessus) security assessment findings. • Applied comprehensive cybersecurity expertise throughout the system development lifecycle, ensuring appropriate security features and safeguards were designed, integrated, and implemented across all information systems in accordance with NIST Special Publications 800-53 and 800-171. • Automated remediation of critical security findings through custom PowerShell and Bash scripts, reducing manual intervention and accelerating vulnerability closure.
Information Assurance Manager
United States Navy
June 2016 - February 2017
Led and managed comprehensive assessment, monitoring, implementation, remediation, and training of cybersecurity measures across the entire fleet, including developing and delivering Electronic Key Encryption best practices. • Successfully implemented and validated security controls for mission-critical fleet systems, resulting in successful audit completion of "Cyber Vulnerabilities Impacting Defense Critical Infrastructure". • Conducted and oversaw comprehensive security and vulnerability assessments across squadron vessels, identifying and 1 of 2 prioritizing remediation efforts to maintain optimal operational readiness. • Managed Security Incident and Event Management (SIEM) platform, enabling real-time detection, analysis, and response to security events across fleet infrastructure. • Developed and delivered comprehensive cybersecurity training curriculum for junior personnel covering security awareness, access management protocols, and advanced vulnerability assessment techniques.
Sole Proprietor
Command-Line Solutions
September 2011 - June 2016
Led and mentored technical team delivering comprehensive Managed Services and Managed Security Services to small and medium legal firms throughout the tri-state region. • Drove business development through technical sales presentations, product demonstrations, and drafting comprehensive managed services agreements. • Developed, configured, and implemented comprehensive endpoint protection ecosystem including Endpoint Detection and Response (EDR), Next-Generation Firewalls, Host Intrusion Detection/Prevention Systems (HIDS/HIPS), and Network Intrusion Detection/Prevention Systems (NIDS/NIPS) tailored to specific client security requirements and threat profiles. • Architected and deployed custom remote Cloud Desktop solution using Azure Windows Server 2012, Terminal Services, Azure Active Directory and hardened Group Policy Objects, enabling secure remote work capabilities. • Designed, implemented, and managed Active Directory domains for small businesses, significantly improving operational efficiency through centralized authentication, streamlined access controls, and optimized network attached storage solutions. • Administered and secured diverse client infrastructure including 50+ workstations and 30+ mobile devices using self-hosted open source Remote Monitoring & Management (RMM) and Mobile Device Management (MDM) platforms
Submarine Radioman
United States Navy
February 2005 - May 2010
Served with distinction in multiple technical roles: Top Secret/SCI LAN Administrator, Electronic Warfare Support Measures (ESM) Supervisor, and Radio Supervisor. • Awarded Navy Achievement Medal for diagnosing and repairing mission-critical RHEL server, ensuring operational continuity during deployment. • Established and configured classified TS/SCI PXE network with advanced Public Key Infrastructure (PKI) and Mandatory Access Control (MAC) implementation. • Managed Electronic Key Management System (EKMS) responsibilities, including procurement, distribution, and lifecycle management of cryptographic keys. • Built and maintained secure Submarine LAN infrastructure using VMware vSphere/ESX, hosting Windows Server 2008 R2 and RHEL virtual environments. • Implemented and managed complex Active Directory Group Policies to maintain strict access controls across classified systems.
CERTIFICATIONS
CISSP
ISC2
Issued: 4/7/2025 - Expires: 4/7/2029
Credential ID: 590888
CEH
EC-Council
Issued: 12/16/2016 - Expires: 12/16/2019
Credential ID: ECC75660825067
CASP
CompTIA
Issued: 12/2/2016 - Expires: 12/2/2019
Credential ID: COMP001021101442
Security+
CompTIA
Issued: 12/2/2016 - Expires: 12/2/2019
Credential ID: COMP001021101442
CCSK
Cloud Security Alliance
Issued: 1/1/1970
Verified Security Engineer
8+ years of experience
Preferred commitment: Full Time
Languages
Skills
Impressed by Robert Brent Goodall's profile?
Take the next step and bring this top talent to your team
Hire Robert for your team