Jerry Bennett

Cybersecurity | Software Development | Technical Communication

For nearly three years, I taught cybersecurity to people entering the field—network security, threat intelligence, incident response, the whole curriculum. Before that, I worked as a software developer and implemented security measures for political campaigns. Now I'm looking to apply all of that in hands-on security roles.

I hold current certifications (Security+ CySA+ CSAP ISC2 Associate) and I'm building AWS serverless applications. I can explain complex security concepts clearly—something you learn when you've taught 100+ students with different backgrounds and learning styles.

Fairfield County, CT area or remote.

Background

My path to cybersecurity wasn't a straight line. Before tech, I spent years in education and youth services, running programs and managing teams. I learned how to explain complex ideas clearly, build trust quickly, and stay calm under pressure.

Education & Training

  • Flatiron School - Cybersecurity Engineering (2021): Immersive, hands-on training covering network security, threat intelligence, incident response, SIEM management, and GRC frameworks
  • Flatiron School - Software Engineering (2017-2018): Full-stack web development including Ruby/Rails, JavaScript, React, and database design
  • Udacity - Front-End Web Developer (2017): Modern JavaScript, React, and Redux

Cybersecurity

Security work from campaign environments, lab training, and current certifications (Security+, CySA+, CSAP, ISC2 Associate).

Threat Intelligence
Experience with Cyber Kill Chain, Diamond Model, and MITRE ATT&CK frameworks. I've used these to identify indicators of compromise, map attack patterns, and analyze threat actor behavior in lab environments.
Threat AnalysisDiamond ModelKill ChainMITRE ATT&CK
SIEM & Monitoring
Hands-on experience with Splunk, ELK Stack, Wireshark, Wazuh, and Kali Linux. I've used these tools for log analysis, packet capture, network traffic analysis, and anomaly detection.
SplunkELK StackWiresharkKali LinuxWazuh
Incident Response
Applied incident response procedures during campaign security incidents—detection, containment, eradication, and recovery. Quick response was critical in time-sensitive political environments.
DetectionContainmentEradicationRecovery
Applied Security
Implemented VPNs, multi-factor authentication, endpoint security controls, and Google Workspace security policies during political campaigns. Reduced cyber incidents by 30% through practical security measures.
VPNMFAEndpoint SecurityGoogle Workspace

Full-Stack Development

I've been building web applications since 2017—from small business websites to fintech platforms to my current AWS serverless project. I approach development with a security-first mindset.

Current Tech Stack

What I'm Working With
Frontend:   React 18, TypeScript (strict mode), Vite, TailwindCSS
Backend:    Python, Node.js, Ruby/Rails
Database:   DynamoDB, PostgreSQL, SQL
Cloud:      AWS Lambda, S3, CloudFront, API Gateway
Tools:      Git, Docker, AWS SDK, Zod validation
AI Tools:   Claude Code, Gemini, ChatGPT
Focus:      Security, accessibility (WCAG 2.1 AA), performance

Development Approach

  • AI-Assisted Development - I use Claude Code to accelerate implementation while maintaining architectural control. I make the design decisions and research solutions—AI handles the implementation details.
  • Security First - Input validation, authentication, and data protection are built in from the start, not added later.
  • Type Safety - TypeScript strict mode for compile-time safety, Zod for runtime validation.
  • Cost-Conscious Architecture - My current AWS project targets a $100/month development budget through serverless architecture and efficient resource use.
  • Accessibility - WCAG 2.1 AA compliance from the start.
  • Performance - Optimized load times, efficient queries, measured results.

AWS & Cloud

Experience designing and implementing serverless applications on AWS with focus on cost optimization and scalability.

Services & Tools

Compute & Storage
Lambda for serverless compute, S3 for object storage, CloudFront for CDN delivery. Cost-optimized architecture patterns for different application scales.
LambdaS3CloudFront
Database & APIs
DynamoDB for NoSQL data storage, API Gateway for REST APIs. Efficient data modeling and access patterns.
DynamoDBAPI Gateway
💰Cost Examples

This portfolio site: S3 + CloudFront for under $2/month. Current SEC filing analytics project: $100/month during development, scaling to ~$800/month for production workloads.

Technical Training & Instruction

Nearly three years teaching cybersecurity to 100+ students at Flatiron School. I can develop curriculum, deliver technical training, and explain complex security concepts to diverse audiences—a skill that translates well to security awareness training, team onboarding, and stakeholder communication.

100+ Students
Multiple cohorts across cybersecurity fundamentals and advanced topics
80% Graduation Rate
50% improvement through personalized support and curriculum refinement
20% Proficiency Increase
Measured improvement through practical lab assessments

SEC Filing Analytics Platform

Currently building a serverless financial analytics application for SEC filing analysis. Using AI-assisted development (Claude Code) to accelerate implementation while making all architectural decisions.

Backend
6 Lambda microservices, S3-centric data architecture, DynamoDB metadata, CloudFront CDN. Development budget: $100/month, production estimate: ~$800/month.
LambdaPythonDynamoDBS3CloudFront
Frontend
React 18, TypeScript strict mode, Vite, TailwindCSS, Recharts. WCAG 2.1 AA accessible, mobile-first design, Zod validation.
React 18TypeScriptViteTailwindCSS

Architecture

  • S3-Centric Storage - S3 for bulk data, DynamoDB for metadata. Cost-optimized.
  • Serverless Compute - Lambda functions for auto-scaling and pay-per-use.
  • Authentication Bridge - Stateless API security for scalable access control.
  • Global CDN - CloudFront for fast global delivery.

Cybersecurity Instructor

Lead Cybersecurity Instructor at Flatiron School (Dec 2021 - Aug 2024), delivering comprehensive training programs to 100+ students across multiple cohorts. Covered network security, threat intelligence, SIEM management, incident response, and compliance frameworks through hands-on labs and real-world scenarios.

Topics Covered

  • Network Security - TCP/IP, OSI model, firewalls, VPNs, network protocols, traffic analysis
  • Threat Intelligence - Cyber Kill Chain, Diamond Model, MITRE ATT&CK, threat actor identification
  • SIEM & Monitoring - Splunk, ELK Stack (Elasticsearch, Logstash, Kibana), log analysis, alert tuning
  • Incident Response - Detection, containment, eradication, recovery, post-incident review
  • Security Tools - Wireshark packet analysis, Nmap network discovery, Kali Linux, penetration testing basics
  • GRC & Compliance - Governance frameworks, risk management, NIST standards, security policies
Impact & Results

Achieved 80% graduation rate (50% improvement over baseline) through continuous curriculum refinement and personalized student support. Increased student technical proficiency by 20% measured through practical lab assessments. Boosted engagement ratings by 15% over three quarters through scenario-based learning modules on emerging threats.

Campaign Security Implementation

Cybersecurity strategy and implementation for political campaigns (DigiDems, 2018 & 2020), protecting voter data and internal communications during high-stakes election cycle. Led technical operations for distributed team of 40+ staff and volunteers working remotely across multiple locations.

Security Measures & Impact

  • VPN & MFA Implementation - Deployed secure communications infrastructure reducing cyber incidents by 30% during 6-month campaign cycle
  • Security Training Program - Conducted real-time threat simulations and phishing prevention workshops, improving security readiness by 40%
  • Google Workspace Administration - Managed MFA deployment, application permissions, and device security policies for secure remote operations
  • IT Operations Optimization - Configured network security settings and secure remote access, reducing technical downtime by 25%
  • Direct Support - Provided IT support for 50+ users including device setup, troubleshooting, and hardware repair during time-sensitive operations

Current Certifications

CompTIA Security+
Foundation-level security certification covering network security, compliance, operational security, threats and vulnerabilities, and application security.
Valid: Aug 2021 - Dec 2026
CompTIA CySA+
Cybersecurity Analyst certification focused on threat detection, data analysis, and security monitoring using SIEM tools. Validates hands-on analytical skills for SOC environments.
Valid: Dec 2023 - Dec 2026
CompTIA CSAP
Security Analytics Professional stackable certification earned by holding both Security+ and CySA+, demonstrating comprehensive security analysis capabilities.
Valid: Dec 2023 - Dec 2026
Associate of ISC2
ISC2 associate member demonstrating commitment to the cybersecurity profession and adherence to (ISC)² code of ethics.
Valid: Nov 2024 - Nov 2025

Professional Experience

Independent Software Developer
Self-Employed | Remote | May 2025 - Present
  • Building serverless financial analytics application using AI-assisted development (Claude Code)
  • Designing AWS architecture including service selection, cost optimization, and security implementation
  • 6 Lambda microservices with S3-centric architecture, DynamoDB, CloudFront CDN—targeting $100/month development budget
  • React 18, TypeScript strict mode, Python backend with WCAG 2.1 AA accessibility and Zod validation
Lead Cybersecurity Instructor
Flatiron School | Remote | Dec 2021 - Aug 2024
  • Delivered cybersecurity training to cohorts of up to 40 students covering network security, threat intelligence, SIEM, incident response, and compliance
  • Achieved 80% graduation rate (50% improvement) and 20% increase in technical proficiency through curriculum refinement and personalized support
  • Designed hands-on labs using Wireshark, Splunk, ELK Stack, and cyber ranges for practical skill development
  • Developed scenario-based modules on emerging threats, increasing engagement ratings by 15% over three quarters
Campaign Technology & Security Specialist
DigiDems, LLC | Houston, TX (Remote) | May 2020 - Nov 2020
  • Implemented VPNs, MFA, and endpoint controls, reducing cyber incidents by 30%
  • Trained 40+ campaign staff on security practices through real-time simulations and phishing prevention, improving readiness by 40%
  • Managed Google Workspace Administration (MFA, permissions, device policies) for secure distributed team operations
  • Provided IT support for 50+ users including setup, troubleshooting, and hardware repair during time-sensitive operations
Software Engineer
CapStack Analytics, LLC | Remote | Feb 2019 - May 2020
  • Developed financial analytics platform in startup environment
  • Built notes and flagging system using React, Redux, and Ruby on Rails for issue tracking and team communication
  • Worked with cross-functional teams to improve application functionality, scalability, and user experience
Campaign Technology Organizer
DigiDems, LLC | Greensboro, NC (On-site) | May 2018 - Nov 2018
  • Developed and implemented cybersecurity protocols for federal campaign, reducing breach risks by 30% compared to similar campaigns
  • Trained 10-40 staff and volunteers on secure practices including phishing prevention, secure communications, and device security
  • Provided hands-on IT support managing campaign technology tools and coordinating technical needs across departments
Web Developer
Freelance (Self-Employed) | Remote | Feb 2014 - June 2018
  • Developed and maintained custom websites for small businesses using HTML, CSS, JavaScript, jQuery
  • Implemented SEO strategies (keyword optimization, link building, performance improvements) driving 300% average traffic increase
  • Managed client relationships, gathered requirements, and delivered tailored solutions across multiple platforms
Owner/Operator
Port Coffeehouse | On-site | Nov 2007 - Nov 2013
  • Co-owned and operated independent coffeehouse managing P&L, staffing, inventory, vendor relations, and customer service
  • Recruited, trained, and supervised team while establishing operational procedures and maintaining service quality
  • Designed and maintained company website, managed digital presence and online marketing campaigns
  • Oversaw supply chain, cost control, and resource allocation for 6-year operation

Get in Touch

I'm seeking roles where technical knowledge and clear communication both matter. If you're looking for someone who can explain complex security concepts, develop training programs, or work with teams across technical levels, let's talk.

What I'm Looking For

  • Security Awareness Training - Developing and delivering security training programs for non-technical staff
  • Technical Instruction - Teaching cybersecurity, development, or cloud technologies to adult learners
  • Curriculum Development - Creating educational content and training materials for technical topics
  • Developer Education - Technical writing, documentation, developer relations, or similar roles
  • Security Roles with Training Responsibilities - Security engineer, analyst, or implementation roles that include team training or awareness programs
💼Connect on LinkedIn

The best way to connect professionally is through LinkedIn: linkedin.com/in/jerry-bennett

Send a Message

I typically respond within 24 hours.

All fields are required