David Lloyd — Principal @ Neudesic Security Practice | Azure Expert

About

Cloud Security Architect with 17+ years designing and implementing enterprise security frameworks. Expert across Microsoft Azure security (Defender for Cloud, Sentinel, Entra ID, Azure Policy) and Zero Trust, with strong security automation/IaC, container/Kubernetes security, and compliance (ISO 27001/27002, NIST SP 800-53, SOX, GDPR, PCI-DSS). Focused on scalable, secure, high-performance architectures and measurable outcomes.

Experience

Principal Consultant, Cloud Security Practice

Neudesic (an IBM Company) • Remote / U.S. • Nov 2023 – Present

Strategic planning and implementation of security frameworks for mission-critical workloads in Azure (e.g., SAP).
Designed Zero Trust governance for data, apps, and identities across multi-cloud.
Automation with Microsoft Defender for Cloud and Logic Apps to improve detection/response.
Aligned implementations to ISO 27001/27002 and NIST SP 800-53; improved risk posture with CAF/WAF.

Director, Information Technology

Trusted Tech Team • Irvine, CA • Feb 2020 – Oct 2023

Led Zero Trust architectures and cloud security posture management.
Automated threat response using Logic Apps and Defender for Cloud.
Designed secure CI/CD for containers and Kubernetes.
Drove compliance: ISO 27001, NIST SP 800-53, PCI-DSS.

Manager, Information Technology

South Orange County Wastewater Authority • Dana Point, CA • Nov 2016 – Feb 2020

Executed cloud-first strategy; migrated core services to Azure AD and SaaS.
Implemented Conditional Access, Identity Protection, SSO; consolidated SaaS with Entra ID.
Delivered scalable model for identity-based access and governance.

Engineer, Information Technology

DAS Health Solutions • Newport Beach, CA • Nov 2008 – Oct 2016

Adopted early Azure services to modernize client environments.
Automated deployments/monitoring/reporting with PowerShell (foundation for CI/CD).
Managed multi-tenant AD with secure provisioning and policy enforcement.

Skills

IaC (Bicep), Azure DevOps, GitHub Actions 5/5

Automation
PowerShell 5/5

Automation
Microsoft Azure 5/5

Cloud
Landing Zones / CAF 5/5

Cloud
Azure Policy & Governance 5/5

Cloud
Kubernetes / Defender for K8s 5/5

Containers
Zero Trust / Identity 5/5

Security
Microsoft Defender for Cloud 5/5

Security
Microsoft Sentinel (SIEM/SOAR) 5/5

Security
Compliance: ISO 27001 / NIST 800-53 5/5

Security

Certifications

CISSP

ISC2 • Issued Aug 2024 • Expires Aug 2027

CISM

ISACA • Issued Sep 2024 • Expires Sep 2027

Certified Chief Information Security Officer (C|CISO)

EC-Council • Issued Aug 2024 • Expires Aug 2027

Certified Kubernetes Administrator (CKA)

CNCF • Issued Dec 2023 • Expires Dec 2026

Microsoft Certified: Cybersecurity Architect Expert

Microsoft • Issued Dec 2023 • Expires Dec 2024

Microsoft Certified: Azure Virtual Desktop Specialty

Microsoft • Issued Jan 2024 • Expires Jan 2025

Microsoft Certified: Azure Solutions Architect Expert

Microsoft • Issued Nov 2020 • Expires Nov 2025

Professional Cloud Architect

Google Cloud

CCNA

Cisco