Skip to main content
Aaron Stovall

AARON STOVALL

Senior Network Security Engineer

LinkedIn GitHub Resume Email
// ABOUT

Professional Summary

I don't wait for the threat landscape to change — I build infrastructure that's already ready for it.

Senior Network Security Engineer with over 15 years of experience designing, securing, and automating enterprise-scale network infrastructure. Deep specialization in Palo Alto Panorama-managed HA environments across PA-7080, PA-5400, PA-3000, and PA-1400 series platforms, Check Point Multi-Domain Management Systems, and Cisco/Meraki ecosystems, with a proven track record of improving incident response times, leading global firewall operations, and building automation that eliminated 40% of manual effort across security teams.

At TikTok, led network security operations within the USDS enclave, directing a global Panorama environment alongside a full Meraki SD-Access network while aligning to NIST, CISA, and ISO 27001 frameworks. Served as the Tier 3 escalation lead for the most complex cross-domain production issues spanning routing, switching, wireless, firewall policy, and VPN. Prior to that, spent over a decade at TE Connectivity progressing through three title promotions while managing a Check Point MDMS environment with thousands of HA-configured firewalls, leading network security integrations for mergers and acquisitions across a global portfolio, and building the Python automation that modernized how the team operated at scale.

Most recently, completed a contract at Rady Children’s Hospital engineering against PA-7080 and PA-5400 platforms in a healthcare environment with strict compliance requirements, and independently designed a full-stack network management platform in Rust and SvelteKit, integrating APIs across Palo Alto Panorama, Cisco Catalyst Center, Cisco ISE, and Juniper Mist into a unified control plane.

Equally capable as a software engineer, writing production code in Python, Rust, Go, and TypeScript. Every system I’ve built and every architecture I’ve designed has been driven by a single question: how would someone break this? That offensive mindset, combined with deep defensive experience and real programming ability, is what I bring to the table.

0+ Years Experience
0 Employers
0 Vendor Platforms
0% Faster Response
0% Less Manual Work
// EXPERIENCE

Work History

  • Served as a contract network engineer specializing in firewall request fulfillment, policy troubleshooting, and firewall analysis across the hospital’s Palo Alto Panorama-managed HA environment, supporting PA-7080 and PA-5400 series firewalls.
  • Developed custom automation tools leveraging the Palo Alto Networks API to streamline firewall operations, policy validation, and configuration analysis across the PA-7080 and PA-5400 platforms.
  • Built solutions for Cisco Catalyst Center integration, utilizing both the platform API and direct SSH operations to automate network device management and configuration tasks across the hospital’s switching infrastructure.
  • Performed in-depth firewall troubleshooting and traffic analysis to resolve complex connectivity and security policy issues in a healthcare environment governed by strict HIPAA compliance and patient data protection requirements.
  • Processed and fulfilled daily firewall change requests, coordinating with clinical and IT teams to ensure policy changes maintained security posture while supporting operational needs across a 24/7 healthcare facility.
  • Designed and developed over a dozen enterprise-grade desktop applications using Rust (Tauri 2.0) and SvelteKit/TypeScript, purpose-built for network security engineering, firewall operations, and infrastructure automation.
  • Built a unified Palo Alto firewall management platform (VERTEX) consolidating real-time telemetry monitoring, automated diagnostics across 115+ troubleshooting scenarios, policy authoring and hygiene analysis, blast radius assessment, upgrade orchestration, and a 21-tool integrated network operations suite.
  • Developed a Cisco Catalyst Center operations platform (PRISM) with SSH terminal management, ISE 802.1X compliance analysis, configuration compliance checking, port health scoring, and confidence-based inactive port reclamation with full rollback capability.
  • Engineered a post-quantum secure terminal system (GHOSTSHELL) implementing Open Quantum Safe (OQS) cryptography throughout the entire application stack, including Kyber key exchange, Dilithium signatures, quantum-safe TLS, and encrypted vault storage to ensure data integrity and forward-looking security.
  • Created specialized diagnostic tools for Palo Alto GlobalProtect VPN troubleshooting (GP-MEDIC) and firewall incident analysis (PA-DIAG), automating 60+ diagnostic commands in parallel with statistical analysis, anomaly detection, and TAC-ready report generation.
  • Built a wireless network security auditing platform (GHOSTWAVE) with RF spectrum analysis, rogue AP classification, WPA3 transition scoring, PCI compliance checking, and penetration test report generation with evidence collection.
  • Developed enterprise SSH/RDP/serial terminal clients (GHOST, ORION) with encrypted credential vaults, vendor-aware command libraries for PAN-OS and Cisco IOS/NX-OS/ASA, legacy algorithm support, and serial console management for direct infrastructure access.
  • Built a domain-specialized AI assistant (GHOSTAI) trained on Palo Alto, Cisco, and Juniper documentation via fine-tuned models (LoRA/QLoRA) with hybrid RAG retrieval (BM25 + vector search), delivering citation-backed answers to complex networking questions.
  • Developed a unified endpoint intelligence platform (GhostOps) providing real-time hardware telemetry at 1-second intervals, embedded REST API with WebSocket streaming, configurable alert engine with webhook delivery, benchmark suite, and fleet monitoring via mDNS discovery.
  • Created a GPU-accelerated terminal emulator (GHOSTTERM) with sub-5ms input latency, 120fps WebGPU rendering via SDF text shaders, native Starship-compatible prompts, and an automation engine supporting workflow scripting, macro recording, and Lua/Python extensions.
  • Built a cross-platform file management and synchronization tool (GHOSTXFER) with dual-pane browsing, folder comparison, bidirectional sync, mirror mode with SHA-256 verification, P2P transfers via embedded SFTP server, and real-time file watching.
  • Developed a Windows desktop widget platform (Chameleon) for system telemetry and DevOps workflows with NVIDIA NVML GPU monitoring, network traffic tracking, built-in shell execution, desktop pinning via Win32 shell integration, and a customizable theme system.
  • Created a Windows RSAT management portal (RSAT-VISION) replacing manual PowerShell workflows with a polished GUI for discovering, installing, and launching all 21 RSAT capabilities with WSUS bypass logic for enterprise environments.
  • Built a lightweight local-first helpdesk ticket management application (Ticket Trackr) with SQLite-backed storage, PDF/DOCX report export, real-time dashboard, and customizable theme system for IT professionals.
  • Foundational member of the US-based network security team, leading architectural designs to safeguard TikTok’s global infrastructure within the USDS enclave.
  • Directed daily operations for a global Palo Alto Panorama-managed HA environment with PA-3000 and PA-1400 series firewalls, alongside a Cisco Meraki infrastructure of MX routers, MS switches, and wireless access points; improved incident resolution times by 20% via proactive automation and live collaboration with engineering teams.
  • Engineered multi-cloud network security architectures across Azure and Oracle Cloud, improving security posture by 30% through automation-driven deployments and advanced threat modeling using Python and Go.
  • Built a custom Ansible Tower environment to automate firewall and network configurations, cutting manual effort by 40% and enabling consistent, secure provisioning at scale across hundreds of devices.
  • Developed security best practices, protocols, and policies aligned with industry standards including NIST, CIS, and ISO 27001. Ensured compliance with internal policies, GDPR, HIPAA, and PCI-DSS through audits, risk management, and automated compliance tracking.
  • Authored internal compliance tooling and led regulatory audits, achieving 100% adherence to frameworks including NIST, CISA, and ISO 27001, while reducing audit prep overhead through automation.
  • Designed and implemented advanced network security architectures including firewalls, VPNs, IDS/IPS systems, and network access controls, enabling secure connectivity across distributed environments.
  • Developed and deployed biometric 2FA solutions using TruU and Prisma APIs, improving user experience and reducing security incidents by 15% through seamless biometric verification workflows.
  • Led incident response efforts, performing root cause analysis and deploying corrective measures. Reduced risk exposure by 30% through vulnerability assessments, penetration tests, and audits.
  • Monitored network traffic using analytics and machine learning-enhanced tooling to improve threat detection and response capabilities.
  • Led Tier 3 troubleshooting efforts for complex issues involving network infrastructure, wireless connectivity, firewall policies, and VPN services, often resolving escalations that impacted production services across multiple teams and vendor boundaries.
  • Participated in 24/7 on-call operations, ensuring rapid incident response and maintaining uptime for critical infrastructure across global environments.
  • Spearheaded multiple projects and authored comprehensive documentation for internal teams, streamlining deployment and support processes for firewalls, BYOD networks, and VPN solutions.
  • Deployed critical security patches across infrastructure, cutting exploitation risks by 40% through coordinated rollouts and validation testing.
  • Managed global firewall operations across a Check Point Multi-Domain Management System (MDMS) with thousands of HA-configured firewalls; led site security integrations and posture reviews as part of M&A activities across TE Connectivity’s global portfolio.
  • Developed Python applications to automate firewall imaging, policy updates, health checks, and log analysis for a 6,000-device refresh project, significantly accelerating deployment timelines and reducing manual effort across the team.
  • Built custom tooling for policy validation, scanning firewall configurations in batch to detect violations and untracked access patterns, remediating through targeted rule updates and establishing repeatable audit workflows.
  • Optimized Check Point MDMS configurations for over 3,000 devices, streamlining efficiency with automated policy updates and standardized configurations across all managed domains.
  • Engineered and automated RBAC frameworks, standardizing access controls across infrastructure teams; integrated SAML/OAuth authentication and increased adherence to identity policies by 20%.
  • Designed and maintained identity and access control standards, processes, and procedures in line with company policies and best practices, enhancing SSO and OAuth implementations for improved authentication and system security.
  • Automated compliance and audit processes, ensuring 100% adherence to SOX, NIST, and CIS standards. Provided oversight on compliance with internal policies, external regulatory requirements, and local data privacy laws.
  • Conducted security integrations during mergers and acquisitions, reducing risk exposure by 20% through robust playbooks and automation tools.
  • Collaborated with project and cross-functional teams, setting priorities, balancing workloads, and driving execution through strong communication. Proactively engaged with technology and business partners to ensure compliance with assessments and performed quality assurance validations prior to closure.
  • Partnered with SOC analysts to enhance detection workflows using Python-based log parsing and anomaly flagging, improving incident triage response times. Served as lead point of contact for major incidents on the west coast team for 24/7 on-call operations.
  • Participated in major IT and special projects as an internal compliance consultant, providing direction, reviews, and support with a focus on regulatory concerns.
  • Conducted security reviews, evaluations, and risk assessments, assisting in the development and implementation of actionable recommendations and security policies.
  • Analyzed the company’s information security architecture, including hardware and software components, standardizing security practices across the infrastructure.
  • Deployed advanced Web Application Firewalls (WAFs) and Intrusion Detection Systems (IDS) to protect critical web services and applications.
  • Conducted comprehensive vulnerability management programs, reducing exposure to external threats by 25% through proactive assessment and remediation.
  • Collaborated across network and security teams to align firewall operations with broader organizational objectives. Improved project delivery timelines by 15% through Python-based automation of configuration updates and streamlined policy management.
  • Automated routine tasks including policy enforcement, health checks, and failover testing, improving operational efficiency by 40%.
  • Reduced security incident rates by 10% via QA validation, HA failover testing, and automated remediation during infrastructure changes.
  • Oversaw multi-site IT operations for West Coast facilities, coordinating upgrades, greenfield deployments, and on-site security integrations aligned with corporate standards. On-site work accounted for 35–45% of responsibilities.
  • Identified security and technology risks through established vulnerability management and penetration testing programs, leading proactive vulnerability scans and remediation efforts that reduced network risk by 20%.
  • Developed and implemented information security policies, procedures, standards, and guidelines, aligning with best practices and compliance requirements across the organization.
  • Established team standards for technical and operational management of security platforms and monitored internal control systems to maintain appropriate access levels and ensure adherence to security policies.
  • Implemented greenfield network deployments for business expansion projects, ensuring timely delivery while upholding security standards across new and acquired sites.
  • Created custom Python tools for network diagnostics, improving troubleshooting efficiency by 35% and reducing time-to-resolution for complex infrastructure issues.
  • Led DevOps initiatives and collaborated with cross-functional teams (facilities, network, security) to standardize infrastructure security across new and acquired sites, ensuring scalable, secure growth.
  • Partnered with cross-functional teams to ensure scalable, secure growth across enterprise operations through process automation and consistent policy enforcement.
  • Managed 24/7 helpdesk operations handling P0 through P3 incident triage, escalation, and resolution across the organization.
  • Managed network isolation and firewall systems, maintaining perimeter security and internal segmentation.
  • Provided Tier 2 network engineering support, troubleshooting connectivity, switching, and routing issues across the enterprise infrastructure.
  • Managed SAP global backups using Veritas NetBackup, ensuring data integrity and disaster recovery readiness.
  • Managed the break/fix team, coordinating hardware repairs, replacements, and on-site support across facilities.
  • Maintained Netgear and Cisco network infrastructure including switches, routers, and wireless access points across the manufacturing environment.
  • Partnered with the engineering team to onboard all new systems, ensuring network connectivity and security compliance for production equipment.
  • Maintained comprehensive documentation for new systems, industrial robots, and IoT devices integrated into the network.
  • Provided user support and multi-site infrastructure administration, ensuring reliable connectivity across all operational facilities.
// SKILLS

Technical Expertise

Security & Firewalls

Firewalls 0%
Policy & Orchestration 0%
Security Architecture 0%
Network Security Arch 0%
Palo Alto 0%
Risk Management 0%
Check Point 0%
API Development 0%

Networking

Networking Fundamentals 0%
OSI Troubleshooting 0%
Switches 0%
Routers 0%
Cisco 0%
Architecture Diagrams 0%

Development

Python 0%
Rust 0%
TypeScript 0%
Go 0%

Automation & DevOps

DevOps Engineering 0%
Automation 0%
// COMPETENCIES

What I Bring

Security Architecture

Zero Trust, NIST, CIS, CISA

Firewall Architecture

Palo Alto, Check Point, Fortinet

Network Engineering

Cisco Catalyst, Meraki, Aruba

Automation & DevOps

Python, Ansible, CI/CD, IaC

Development

Rust, TypeScript, Python, Go

Incident Response

Tier 3 escalation, 24/7 on-call

Security-Focused Design

Threat modeling, least privilege

Custom Tooling

API-driven analysis & automation

M&A Integration

Perimeter reviews, service stacks

// ACCOMPLISHMENTS

Achievements & Impact

20%

Global Firewall Operations Leadership

Directed PA-7080, PA-5400, Check Point MDMS, and Meraki infrastructure globally. Improved incident response time by 20%.

40%

DevOps & Automation at Scale

Reduced manual tasks by 40% through Python & Ansible automation. Built custom Ansible Tower environment for hundreds of devices.

Enterprise Platform Development

Full-stack Rust + SvelteKit platform integrating Palo Alto, Catalyst Center, ISE, and Juniper Mist into a unified interface.

100%

Cross-Functional Architecture Expertise

Deep cross-disciplinary skillset spanning infrastructure engineering to secure protocol design and full-stack software development.

Custom Tooling & Operational Impact

Tools adopted by adjacent teams across organizations. Improved operational efficiency and significantly reduced time-to-resolution.

Team Leadership

Led west coast security teams. Built autonomous, high-performing workforces delivering consistent results in 24/7 operational environments.

Want the full picture?

Download My Resume

(PDF, 2 pages)

Also available on
// EDUCATION

Where It Started

Bachelor of Science — Game Software Development

Westwood College, Upland, CA |

Specialized in modular architecture, engine design, and performance-optimized software engineering. Established a strong foundation in low-level systems programming.

// PORTFOLIO

DevOps Portfolio

These projects reflect how I approach infrastructure tooling — purpose-built, automated, and engineered to solve real operational problems.

gh0stinthemirr0r
active Platform

VERTEX

Palo Alto Command & Control Platform

Native desktop application built for network engineers and security operations teams managing enterprise Palo Alto Networks firewall infrastructure at scale. Built with Tauri 2 (Rust backend + SvelteKit 5 frontend), it ships as a lightweight, browser-free binary for Windows and macOS. The platform consolidates what would typically require dozens of separate tools into a single unified interface.

RustTauri 2.0SvelteKitTypeScriptPalo Alto APISSH
Private Repository
2024 – Present
active Platform

PRISM

Cisco Catalyst Intelligence Platform

Windows desktop application built with Tauri (Rust backend) and SvelteKit/Svelte 5 (frontend) designed for network engineers managing large-scale Cisco Catalyst switching infrastructure. Connects to Cisco Catalyst Center via REST API and to individual network devices via SSH and serial console.

RustTauri 2.0SvelteKitTypeScriptCatalyst Center APISSH
Private Repository
2024 – Present
active Platform

GHOSTWAVE

Wireless Analysis & Security Auditing Platform

Cross-platform desktop wireless network analysis and security auditing platform. Built with Tauri 2 (Rust backend) and SvelteKit (frontend), it provides a comprehensive suite of tools for Wi-Fi infrastructure management — from network scanning and RF analysis to security auditing and compliance reporting.

RustTauri 2.0SvelteKitTypeScriptSQLiteD3.js
Private Repository
2024 – Present
active Platform

GhostOps

Unified Endpoint Intelligence Platform

Cross-platform desktop application that serves as a single source of truth for a machine’s hardware state, performance telemetry, and diagnostic health. Continuously polls system hardware at 1-second intervals, collecting deep telemetry — CPU, GPU (NVIDIA/AMD), memory, disks, network, sensors, battery, and processes — with 90-day local SQLite retention. Converges the capabilities of AIDA64, SolarWinds, NZXT CAM, and CrowdStrike into one self-hosted application.

RustTauri 2.0SvelteKitTypeScriptAxumSQLiteNVML
Private Repository
2024 – Present
active Platform

GhostAI

Network Infrastructure AI Assistant

Enterprise-grade, custom-trained AI platform purpose-built for network infrastructure operations. Ingests and learns from authoritative documentation across Palo Alto Networks, Cisco, and Juniper Networks to create a domain-specialized AI assistant. Combines a fine-tuned model (LoRA/QLoRA) with hybrid RAG retrieval (BM25 via Meilisearch + vector search via pgvector) to deliver deep, citation-backed answers.

RustTauri 2.0SvelteKitTypeScriptvLLMMeilisearchpgvector
Private Repository
2024 – Present
active Network Tool

ORION

Enterprise Terminal Client — SSH, Serial, RDP

Enterprise-grade terminal client for Windows that unifies SSH, serial console, and RDP session management into a single desktop application. Built to replace SecureCRT, MobaXterm, and PuTTY for network engineers and infrastructure teams.

RustTauri 2.0SvelteKitTypeScriptxterm.jsrussh
Private Repository
2024 – Present
active Network Tool

GHOSTTERM

GPU-Accelerated Terminal Emulator

GPU-accelerated, cross-platform terminal emulator built with Rust and WebGPU. Delivers sub-5ms input latency and 120fps rendering via SDF text shaders, with native Starship-compatible prompts, Clink-style readline with fuzzy history search, and Powerline rendering — eliminating external prompt dependencies entirely.

RustWebGPUTauri 2.0SvelteKitTypeScript
Private Repository
2024 – Present
stable Network Tool

GP-Medic

GlobalProtect VPN Diagnostic Tool

Desktop diagnostic and troubleshooting tool for Palo Alto Networks GlobalProtect VPN environments. Built with Svelte 5, Tauri 2, and Rust, it targets Windows and helps IT teams quickly identify and resolve VPN connectivity issues through real-time monitoring, log analysis, and automated diagnostics.

RustTauri 2.0Svelte 5TypeScriptSQLite
Private Repository
2024 – Present
stable Network Tool

PA-DIAG

Palo Alto Firewall Diagnostics Automation

Enterprise-grade desktop application for automating Palo Alto Networks firewall diagnostics. Connects to PAN-OS firewalls over SSH and automates the collection, monitoring, and analysis of diagnostic data — replacing what would otherwise be a tedious, error-prone manual process of running dozens of CLI commands during an active incident.

RustTauri 2.0SvelteTypeScriptSSH
Private Repository
2024
stable Network Tool

GHOST

Cyberpunk SSH Terminal Manager

Cyberpunk-themed SSH terminal manager built as a cross-platform desktop application using Tauri (Rust backend) with a SvelteKit + Tailwind CSS frontend. Provides session management, encrypted credential storage, and an integrated xterm.js terminal with WebGL rendering.

RustTauriSvelteKitTypeScriptxterm.jsrusshSQLite
Private Repository
2024
stable Network Tool

GHOSTXFER

File Management & Synchronization Tool

Cross-platform desktop file management and synchronization tool built with Tauri (Rust backend) and SvelteKit (frontend). Features a dark neon-themed UI with dual-pane file browsing, folder sync, mirror mode, P2P transfers, and remote connectivity via SFTP, SCP, and FTP.

RustTauriSvelteKitTypeScriptrusshSQLite
Private Repository
2024
active Utility

Chameleon

Desktop Widget Platform for DevOps

Desktop widget platform for Windows, built with Tauri 2 (Rust backend) and SvelteKit 5 (frontend). Provides customizable, always-on-screen widgets for system monitoring and DevOps workflows with desktop pinning, theming, and deep hardware telemetry.

RustTauri 2.0SvelteKitTypeScriptSQLiteWMINVML
Private Repository
2024 – Present
stable Utility

RSAT-VISION

Modern RSAT Management Portal

Windows desktop application providing a modern, unified management portal for Remote Server Administration Tools (RSAT). Built with Tauri 2 (Rust backend) and Svelte 5 (TypeScript frontend), it replaces the manual PowerShell/Control Panel workflow with a polished GUI featuring a cyberpunk/glassmorphism design.

RustTauri 2.0Svelte 5TypeScriptPowerShellWin32
Private Repository
2024
stable Utility

TICKET-TRACKR

Local-First Helpdesk Ticket Manager

Lightweight, locally powered desktop application for IT professionals to manage helpdesk support tickets. Built with Svelte 5 and Tauri 2, it stores everything in a local SQLite database — no server, no cloud dependency, no account required. Fast, private, and self-contained.

RustTauri 2.0Svelte 5TypeScriptSQLite
Private Repository
2024
stable Utility

GHOST-USB-REPAIR

USB Device Management & Repair

Windows desktop application for USB device management and repair. Built with Rust/Tauri backend and Svelte/Tailwind CSS frontend, it provides real-time device detection, health diagnostics, repair tools, file inventory analytics, and a system overview dashboard.

RustTauriSvelteTypeScriptTailwind CSSChart.js
Private Repository
2024
// FREQUENTLY ASKED QUESTIONS

Common Questions

For your convenience, some common questions addressed below.

I'm currently open to offers, and even when I'm not actively seeking, I remain open to hearing about compelling opportunities.

I appreciate the opportunity, but my true passion lies in security. I'm most effective — and most energized — when I'm working at the intersection of network security and software development.

While I prefer full-time roles, I'm also open to long-term W2 contract opportunities.

Absolutely — I can work full time.

I'm most active on LinkedIn, though the contact form on this site works as well. LinkedIn is the most reliable way to reach me.

LinkedIn

My preferred email is aaronstovall@pm.me.

aaronstovall@pm.me

My LinkedIn profile is available at the link below.

linkedin.com/in/aaron-stovall

My GitHub profile is available at the link below.

github.com/gh0stinthemirr0r

Mythos Systems is the brand under which several of my enterprise software projects are built and released.

mythossys.io