Skip to main content
Aaron Stovall

AARON STOVALL

Senior Network Security Engineer

LinkedIn GitHub Resume Email
// ABOUT

Professional Summary

I don't wait for the threat landscape to change — I build infrastructure that's already ready for it.

Senior Network Security Engineer with over 15 years of experience designing, securing, and automating enterprise-scale network infrastructure. Deep specialization in Palo Alto Panorama-managed HA environments across PA-7080, PA-5400, PA-3000, and PA-1400 series platforms, Check Point Multi-Domain Management Systems, and Cisco/Meraki ecosystems, with a proven track record of improving incident response times, leading global firewall operations, and building automation that eliminated 40% of manual effort across security teams.

At TikTok, led network security operations within the USDS enclave, directing a global Panorama environment alongside a full Meraki SD-Access network while aligning to NIST, CISA, and ISO 27001 frameworks. Served as the Tier 3 escalation lead for the most complex cross-domain production issues spanning routing, switching, wireless, firewall policy, and VPN. Prior to that, spent over a decade at TE Connectivity progressing through three title promotions while managing a Check Point MDMS environment with thousands of HA-configured firewalls, leading network security integrations for mergers and acquisitions across a global portfolio, and building the Python automation that modernized how the team operated at scale.

Most recently, completed a contract at Rady Children’s Hospital engineering against PA-7080 and PA-5400 platforms in a healthcare environment with strict compliance requirements, and independently designed a full-stack network management platform in Rust and SvelteKit, integrating APIs across Palo Alto Panorama, Cisco Catalyst Center, Cisco ISE, and Juniper Mist into a unified control plane.

Equally capable as a software engineer, writing production code in Python, Rust, Go, and TypeScript. Every system I’ve built and every architecture I’ve designed has been driven by a single question: how would someone break this? That offensive mindset, combined with deep defensive experience and real programming ability, is what I bring to the table.

0+ Years Experience
0 Employers
0 Vendor Platforms
0% Faster Response
0% Less Manual Work
// EXPERIENCE

Work History

  • Served as a contract network engineer specializing in firewall request fulfillment, policy troubleshooting, and firewall analysis across the hospital’s Palo Alto Panorama-managed HA environment, supporting PA-7080 and PA-5400 series firewalls.
  • Developed custom automation tools leveraging the Palo Alto Networks API to streamline firewall operations, policy validation, and configuration analysis across the PA-7080 and PA-5400 platforms.
  • Built solutions for Cisco Catalyst Center integration, utilizing both the platform API and direct SSH operations to automate network device management and configuration tasks across the hospital’s switching infrastructure.
  • Performed in-depth firewall troubleshooting and traffic analysis to resolve complex connectivity and security policy issues in a healthcare environment governed by strict HIPAA compliance and patient data protection requirements.
  • Processed and fulfilled daily firewall change requests, coordinating with clinical and IT teams to ensure policy changes maintained security posture while supporting operational needs across a 24/7 healthcare facility.
  • Designed and developed a full-stack enterprise network management platform using Rust (Axum) for the backend and SvelteKit with TypeScript for the frontend — purpose-built to deliver unified visibility and control across multi-vendor network infrastructure from a single pane of glass.
  • Built integrated firewall policy analysis modules supporting overlap detection, shadow rule identification, and rule optimization across Palo Alto environments, including automated import and comparison of large-scale rulesets with thousands of entries.
  • Developed network diagnostic and traffic analysis tools with real-time data visualization, enabling granular inspection of application-level traffic patterns, security posture assessment, and rapid identification of policy gaps.
  • Engineered API integrations across Palo Alto Panorama, Cisco Catalyst Center, Cisco ISE, and Juniper Mist platforms, providing centralized orchestration and telemetry collection across disparate vendor ecosystems through a unified interface.
  • Implemented a full SSH client with support for legacy and modern device interaction, alongside certificate management systems for key lifecycle operations — enabling both automated bulk operations and interactive terminal sessions against network infrastructure.
  • Created enterprise authentication and session management frameworks supporting multiple credential types, role-based access control, and secure multi-user deployment scenarios with persistent encrypted session handling.
  • Architected the platform with a modular, extensible design philosophy — each vendor integration, analysis tool, and management interface built as an independent module, allowing rapid onboarding of new vendor ecosystems without rearchitecting the core.
  • Directed daily operations for a global Palo Alto Panorama-managed HA environment with PA-3000 and PA-1400 series firewalls, alongside a Cisco Meraki infrastructure of MX routers, MS switches, and wireless access points; improved incident resolution times by 20% via proactive automation and live collaboration with engineering teams.
  • Engineered multi-cloud network security architectures across Azure and Oracle Cloud, improving security posture by 30% through automation-driven deployments and advanced threat modeling using Python and Go.
  • Built a custom Ansible Tower environment to automate firewall and network configurations, cutting manual effort by 40% and enabling consistent, secure provisioning at scale across hundreds of devices.
  • Authored internal compliance tooling and led regulatory audits, achieving 100% adherence to frameworks including NIST, CISA, and ISO 27001, while reducing audit prep overhead through automation.
  • Developed and deployed biometric 2FA solutions using TruU and Prisma APIs, improving user experience and reducing security incidents by 15% through seamless biometric verification workflows.
  • Led Tier 3 troubleshooting efforts for complex issues involving network infrastructure, wireless connectivity, firewall policies, and VPN services, often resolving escalations that impacted production services.
  • Participated in 24/7 on-call operations, ensuring rapid incident response and maintaining uptime for critical infrastructure across global environments.
  • Managed global firewall operations across a Check Point Multi-Domain Management System (MDMS) with thousands of HA-configured firewalls, processing daily inbound requests and leading site security integrations and posture reviews as part of M&A activities across TE Connectivity’s global portfolio.
  • Developed Python applications to automate firewall imaging, policy updates, health checks, and log analysis for a 6,000-device refresh project, significantly accelerating deployment timelines and reducing manual effort across the team.
  • Built custom tooling for policy validation, scanning firewall configurations in batch to detect violations and untracked access patterns, remediating through targeted rule updates and establishing repeatable audit workflows.
  • Partnered with SOC analysts to enhance detection workflows using Python-based log parsing and anomaly flagging, improving incident triage response times. Served as lead point of contact for major incidents on the west coast team for 24/7 on-call operations.
  • Reduced security incident rates by 10% via QA validation, HA failover testing, and automated remediation during infrastructure changes. Conducted security reviews, evaluations, and risk assessments supporting the development of security policies and procedures.
  • Oversaw multi-site IT operations for West Coast facilities, coordinating upgrades, greenfield deployments, and on-site security integrations aligned with corporate standards. On-site work accounted for 35–45% of responsibilities.
  • Developed and implemented comprehensive vulnerability management programs, reducing security risks by 20% through proactive assessment, remediation planning, and automated reporting.
  • Established team standards for technical and operational management of security platforms. Led DevOps initiatives and collaborated with cross-functional teams to standardize infrastructure security across new and acquired sites, ensuring scalable, secure growth.
  • Provided helpdesk administration and network support, handling user support and system troubleshooting across the organization.
  • Managed global SAP backup operations and device administration, maintaining system reliability across multiple facilities.
  • Managed network administration, user support, and multi-site infrastructure support, maintaining uptime and providing device administration across the organization.
// SKILLS

Technical Expertise

Security & Firewalls

Firewalls 0%
Policy & Orchestration 0%
Security Architecture 0%
Network Security Arch 0%
Palo Alto 0%
Risk Management 0%
Check Point 0%
API Development 0%

Networking

Networking Fundamentals 0%
OSI Troubleshooting 0%
Switches 0%
Routers 0%
Cisco 0%
Architecture Diagrams 0%

Development

Python 0%
Rust 0%
TypeScript 0%
Go 0%

Automation & DevOps

DevOps Engineering 0%
Automation 0%
// COMPETENCIES

What I Bring

Security Architecture

Zero Trust, NIST, CIS, CISA

Firewall Architecture

Palo Alto, Check Point, Fortinet

Network Engineering

Cisco Catalyst, Meraki, Aruba

Automation & DevOps

Python, Ansible, CI/CD, IaC

Development

Rust, TypeScript, Python, Go

Incident Response

Tier 3 escalation, 24/7 on-call

Security-Focused Design

Threat modeling, least privilege

Custom Tooling

API-driven analysis & automation

M&A Integration

Perimeter reviews, service stacks

// ACCOMPLISHMENTS

Achievements & Impact

20%

Global Firewall Operations Leadership

Directed PA-7080, PA-5400, Check Point MDMS, and Meraki infrastructure globally. Improved incident response time by 20%.

40%

DevOps & Automation at Scale

Reduced manual tasks by 40% through Python & Ansible automation. Built custom Ansible Tower environment for hundreds of devices.

Enterprise Platform Development

Full-stack Rust + SvelteKit platform integrating Palo Alto, Catalyst Center, ISE, and Juniper Mist into a unified interface.

100%

Cross-Functional Architecture Expertise

Deep cross-disciplinary skillset spanning infrastructure engineering to secure protocol design and full-stack software development.

Custom Tooling & Operational Impact

Tools adopted by adjacent teams across organizations. Improved operational efficiency and significantly reduced time-to-resolution.

Team Leadership

Led west coast security teams. Built autonomous, high-performing workforces delivering consistent results in 24/7 operational environments.

Want the full picture?

Download My Resume

(PDF, 2 pages)

Also available on
// EDUCATION

Where It Started

Bachelor of Science — Game Software Development

Westwood College, Upland, CA |

Specialized in modular architecture, engine design, and performance-optimized software engineering. Established a strong foundation in low-level systems programming.

// PORTFOLIO

DevOps Portfolio

These projects reflect how I approach infrastructure tooling — purpose-built, automated, and engineered to solve real operational problems.

gh0stinthemirr0r
active Platform

VERTEX

Palo Alto Command & Control Platform

Native desktop application built for network engineers and security operations teams managing enterprise Palo Alto Networks firewall infrastructure at scale. Built with Tauri 2 (Rust backend + SvelteKit 5 frontend), it ships as a lightweight, browser-free binary for Windows and macOS. The platform consolidates what would typically require dozens of separate tools into a single unified interface.

RustTauri 2.0SvelteKitTypeScriptPalo Alto APISSH
Private Repository
2024 – Present
active Platform

PRISM

Cisco Catalyst Intelligence Platform

Windows desktop application built with Tauri (Rust backend) and SvelteKit/Svelte 5 (frontend) designed for network engineers managing large-scale Cisco Catalyst switching infrastructure. Connects to Cisco Catalyst Center via REST API and to individual network devices via SSH and serial console.

RustTauri 2.0SvelteKitTypeScriptCatalyst Center APISSH
Private Repository
2024 – Present
active Platform

GHOSTWAVE

Wireless Analysis & Security Auditing Platform

Cross-platform desktop wireless network analysis and security auditing platform. Built with Tauri 2 (Rust backend) and SvelteKit (frontend), it provides a comprehensive suite of tools for Wi-Fi infrastructure management — from network scanning and RF analysis to security auditing and compliance reporting.

RustTauri 2.0SvelteKitTypeScriptSQLiteD3.js
Private Repository
2024 – Present
active Platform

GhostOps

Unified Endpoint Intelligence Platform

Cross-platform desktop application that serves as a single source of truth for a machine’s hardware state, performance telemetry, and diagnostic health. Continuously polls system hardware at 1-second intervals, collecting deep telemetry — CPU, GPU (NVIDIA/AMD), memory, disks, network, sensors, battery, and processes — with 90-day local SQLite retention. Converges the capabilities of AIDA64, SolarWinds, NZXT CAM, and CrowdStrike into one self-hosted application.

RustTauri 2.0SvelteKitTypeScriptAxumSQLiteNVML
Private Repository
2024 – Present
active Platform

GhostAI

Network Infrastructure AI Assistant

Enterprise-grade, custom-trained AI platform purpose-built for network infrastructure operations. Ingests and learns from authoritative documentation across Palo Alto Networks, Cisco, and Juniper Networks to create a domain-specialized AI assistant. Combines a fine-tuned model (LoRA/QLoRA) with hybrid RAG retrieval (BM25 via Meilisearch + vector search via pgvector) to deliver deep, citation-backed answers.

RustTauri 2.0SvelteKitTypeScriptvLLMMeilisearchpgvector
Private Repository
2024 – Present
active Network Tool

ORION

Enterprise Terminal Client — SSH, Serial, RDP

Enterprise-grade terminal client for Windows that unifies SSH, serial console, and RDP session management into a single desktop application. Built to replace SecureCRT, MobaXterm, and PuTTY for network engineers and infrastructure teams.

RustTauri 2.0SvelteKitTypeScriptxterm.jsrussh
Private Repository
2024 – Present
active Network Tool

GHOSTTERM

GPU-Accelerated Terminal Emulator

GPU-accelerated, cross-platform terminal emulator built with Rust and WebGPU. Delivers sub-5ms input latency and 120fps rendering via SDF text shaders, with native Starship-compatible prompts, Clink-style readline with fuzzy history search, and Powerline rendering — eliminating external prompt dependencies entirely.

RustWebGPUTauri 2.0SvelteKitTypeScript
Private Repository
2024 – Present
stable Network Tool

GP-Medic

GlobalProtect VPN Diagnostic Tool

Desktop diagnostic and troubleshooting tool for Palo Alto Networks GlobalProtect VPN environments. Built with Svelte 5, Tauri 2, and Rust, it targets Windows and helps IT teams quickly identify and resolve VPN connectivity issues through real-time monitoring, log analysis, and automated diagnostics.

RustTauri 2.0Svelte 5TypeScriptSQLite
Private Repository
2024 – Present
stable Network Tool

PA-DIAG

Palo Alto Firewall Diagnostics Automation

Enterprise-grade desktop application for automating Palo Alto Networks firewall diagnostics. Connects to PAN-OS firewalls over SSH and automates the collection, monitoring, and analysis of diagnostic data — replacing what would otherwise be a tedious, error-prone manual process of running dozens of CLI commands during an active incident.

RustTauri 2.0SvelteTypeScriptSSH
Private Repository
2024
stable Network Tool

GHOST

Cyberpunk SSH Terminal Manager

Cyberpunk-themed SSH terminal manager built as a cross-platform desktop application using Tauri (Rust backend) with a SvelteKit + Tailwind CSS frontend. Provides session management, encrypted credential storage, and an integrated xterm.js terminal with WebGL rendering.

RustTauriSvelteKitTypeScriptxterm.jsrusshSQLite
Private Repository
2024
stable Network Tool

GHOSTXFER

File Management & Synchronization Tool

Cross-platform desktop file management and synchronization tool built with Tauri (Rust backend) and SvelteKit (frontend). Features a dark neon-themed UI with dual-pane file browsing, folder sync, mirror mode, P2P transfers, and remote connectivity via SFTP, SCP, and FTP.

RustTauriSvelteKitTypeScriptrusshSQLite
Private Repository
2024
active Utility

Chameleon

Desktop Widget Platform for DevOps

Desktop widget platform for Windows, built with Tauri 2 (Rust backend) and SvelteKit 5 (frontend). Provides customizable, always-on-screen widgets for system monitoring and DevOps workflows with desktop pinning, theming, and deep hardware telemetry.

RustTauri 2.0SvelteKitTypeScriptSQLiteWMINVML
Private Repository
2024 – Present
stable Utility

RSAT-VISION

Modern RSAT Management Portal

Windows desktop application providing a modern, unified management portal for Remote Server Administration Tools (RSAT). Built with Tauri 2 (Rust backend) and Svelte 5 (TypeScript frontend), it replaces the manual PowerShell/Control Panel workflow with a polished GUI featuring a cyberpunk/glassmorphism design.

RustTauri 2.0Svelte 5TypeScriptPowerShellWin32
Private Repository
2024
stable Utility

TICKET-TRACKR

Local-First Helpdesk Ticket Manager

Lightweight, locally powered desktop application for IT professionals to manage helpdesk support tickets. Built with Svelte 5 and Tauri 2, it stores everything in a local SQLite database — no server, no cloud dependency, no account required. Fast, private, and self-contained.

RustTauri 2.0Svelte 5TypeScriptSQLite
Private Repository
2024
stable Utility

GHOST-USB-REPAIR

USB Device Management & Repair

Windows desktop application for USB device management and repair. Built with Rust/Tauri backend and Svelte/Tailwind CSS frontend, it provides real-time device detection, health diagnostics, repair tools, file inventory analytics, and a system overview dashboard.

RustTauriSvelteTypeScriptTailwind CSSChart.js
Private Repository
2024
// FREQUENTLY ASKED QUESTIONS

Common Questions

For your convenience, some common questions addressed below.

I'm currently open to offers, and even when I'm not actively seeking, I remain open to hearing about compelling opportunities.

I appreciate the opportunity, but my true passion lies in security. I'm most effective — and most energized — when I'm working at the intersection of network security and software development.

While I prefer full-time roles, I'm also open to long-term W2 contract opportunities.

Absolutely — I can work full time.

I'm most active on LinkedIn, though the contact form on this site works as well. LinkedIn is the most reliable way to reach me.

LinkedIn

My preferred email is aaronstovall@pm.me.

aaronstovall@pm.me

My LinkedIn profile is available at the link below.

linkedin.com/in/aaron-stovall

My GitHub profile is available at the link below.

github.com/gh0stinthemirr0r

Mythos Systems is the brand under which several of my enterprise software projects are built and released.

mythossys.io