Home » Dr. Alan F. Castillo Cloud Architect and DevSecOps Subject Matter Expert SME

Dr. Alan F. Castillo Cloud Architect and DevSecOps Subject Matter Expert SME

Dr. Alan F. Castillo Cloud Architect and DevSecOps Subject Matter Expert SME

President

Dr Alan F. Castillo DevSecOps SME Cloud Architect CyberSecurity Subject Matter Expert
  • aws certified cloud solutions architect
  • aws certified developer
  • comptia security+ ce certification

How I do Cloud Migrations

“Rationalization, Refactoring, and Migration” is our approach to cloud migration from a monolith application environment or a no cloud to a fully operational cloud service platform.

Application Rationalization

At the Application Rationalization stage, I do assess the current state of your applications. Then, we determine the best suitable migration strategy for your organization based on your proposing cloud migration timeline, technological (language, frameworks, containers, etc.) competency and strategy, project budget, organizational culture, and other factors. So, based on the assessment and the consultation I provide, you can choose to,

  1. Rehost migrating applications on Infrastructure as a Service (IaaS).
  2. Refactor the applications for Platform as a Service (PaaS).
  3. Replatform applications without major re-architecture for IaaS or PaaS.
  4. Rebuild or rewrite applications on PaaS.
  5. Retire applications and replace retired applications with Software as a Service (SaaS).

Then, as per the selected migration strategy, I will provide consultation support to plan the cloud migration process with my team. (from determining the cloud environment (single or multi-cloud) to creating data migration plans.)

Application Refactoring

Generally, there are four methods of application refactoring for cloud migration.

  1. Complete refactoring – over 50% of code rewrite and database updates.
  2. Minimum viable refactoring – slight modifications to the applications, mostly incorporating cloud-native security and management, and public cloud database into the migrated workload.
  3. Containerization refactoring – Applications move into containers.
  4. Serverless application refactoring – Applications move into serverless architecture.

We help our customers to determine the suitable application refactoring approach and, if applicable, the guidance to adopt a mixed refactoring approach with the implementation support.

Migration

Execution of the migration plan works in four key milestones or stages.

  1. Data backup – backup existing data and servers safely and easily retrievable.
  2. Deployment – provisioning, connecting, and testing individual components of the cloud environment.
  3. Data Migration – migrating the existing data to the cloud environment.
  4. Testing – performing testing to the entire cloud environment including, data and security testing

 

I mainly contribute my expertise in your cloud migration journey with data migration support, application deployment to AWS platform with Kubernetes, and AWS Landing Zone configuration.

We can also extend support to achieve total stakeholder buy-in and help with cloud vendor management. I am an AWS Certified Solutions Architect-Associate and an AWS Certified Developer-Associate. So, If your organization signs-in to the cloud training programs with CCT, I, with my team, also facilitate employee training as part of the cloud migration project.

How I do Application DevSecOps

I am a DevSecOps Subject Matter Expert SME, and my name records among the Peerlyst “Top 50 Influential DevSecOps Professionals”. So, if you are seeking expert advice and support to customize or reconfigure CI/CD pipelines to the DevSecOps standards, you are with the right consultation team.

Often, when companies embrace DevOps culture, they have to turn back on traditional application security tools and testing processes. I configure DevOps environments to integrate security monitoring and management at every phase of the DevOps cycle for hybrid and multi-cloud organizations.

Following are the key work that I do in the DevSecOps domain.

Plan Pre-Commit Phase – Implementation support for execution of security analysis and creating test plans.

Code Commit-Time Phase – Advisory support to enforce Git controls for passwords and API keys, and selection and deployment of linting tools.

Build (Build-Time Phase) – Implementation of Static Application Security Testing (SAST), Software Composition Analysis (SCA) tools, and rule sets that provide feedback for developers.

Test (Test-Time Phase) – Implementation support to run SAST, Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST) analysis.

Release and Deploy (Deploy-Time Phase) – Automation of Configuration Management. Application penetration testing and vulnerability scanning. Advisory support to implement bug bounty programs, threat intelligence programs, and scheduled security scanning to automate continuous security monitoring. Cloud Security Compliance and Governance assessments.

How I do Cloud Architecture Development

Having a degree of Doctor of Management in Organizational Leadership with a specialization in Information Systems and Technology (Cloud Computing), I believe that I am uniquely qualified in bring the right balance between both business and technical skills when developing cloud architectures to catering to customer needs.

Additionally, my six years of experience in the military and over twenty years of experience in project management and production management in the information technology industry could train my cohesive vision to DOD as well as public and private sector cloud solution architecture. Currently, I hold memberships in Cloud Security Alliance, Institute of Electrical and Electronics Engineers Computer Society, Military Police Regimental Association, and American Psychological Association, where I continuously update my solutions with up-to-date cloud technology advances.

Dr. Alan F. Castillo Cloud Architect CyberSecurity and DevSecOps Subject Matter Expert

Dr Alan F Castillo, entrepreneur and founder, Cloud Architect, a foremost expert in CyberSecurity and DevSecOps, the combination of development operations with security infused coding for impactful innovation.

Born in Omaha, Nebraska, United States of America and son of a foreign student who graduated from the United States Air Force Academy, Dr. Castillo was raised in Tempe, Arizona. Dr. Castillo served his country in the United States Marine Corps from 1991 to 1997, where he attained the rank of Sergeant. Cited by superior officers as a “born leader,” “a team player,” and “head and shoulders above his peers,” he was awarded multiple commendations during his military career.

Dr. Castillo was conferred by the University of Phoenix with the degree of Doctor of Management in Organizational Leadership with a Specialization in Information Systems and Technology (Cloud Computing), (Doctoral Study: A Quantitative Study of the Relationship between Leadership Practice and Strategic Intentions to use Cloud Computing).

The purpose of the study was to explore the use of a theoretical model that links leadership practice, attitudes of business process outsourcing, and strategic intention to use cloud computing, while also exploring the individual relationships between leadership practice and intention to use cloud computing, leadership practice and attitudes toward business process outsourcing, and attitudes toward business process outsourcing and the strategic intention to use cloud computing. Five questions guided the study:
  1. Does a theoretical model consisting of leadership practice, attitudes of business process outsourcing, and strategic intention of leadership to use cloud computing fit observed data?
  2. Is there a relationship between leadership practice and strategic intentions of leadership to use cloud computing?
  3. Is there a relationship between leadership practice and attitudes toward business process outsourcing?
  4. Is there a relationship between attitudes toward business process outsourcing and strategic intention of leadership to use cloud computing?
  5. Is there a relationship between leadership practice and strategic intentions of leadership to use cloud computing with attitudes toward business process outsourcing as a mediator?
The Doctoral Study dissertation “A Quantitative Study of the Relationship Between Leadership Practice and Strategic Intentions to Use Cloud Computing” is available for purchase exclusively at ProQuest at the URL https://dissexpress.proquest.com/dxweb/search.html with the UMI Publication Number 3583230.
Castillo, A. F. (2014). A quantitative study of the relationship between leadership practice and strategic intentions to use cloud computing. (Doctoral Dissertation). Retrieved from ProQuest Dissertations and Theses. (Publication No. 3583230)

Dr. Castillo also holds Masters of Business Administration in Management from Western International University, a Bachelor of Science in Management from Park University, and numerous technical certifications from Amazon AWS Web Services, VMware, Milestone VMS, Fortinet, DevSecOps and Microsoft.

Dr. Castillo was honored as one of the top 50 Influential DevSecOps Professionals and DevSecOps Subject Matter Expert SME by Peerlyst.

Dr. Castillo founded Castillo Technologies, LLC dba Cloud Computing Technologies in 2000 to address an emerging digital transformation demands and provide cloud security leadership. Since 2002, Castillo Technologies has been awarded more than 140 federal contracts. The company was also awarded the premier GSA STARS I, GSA STARS II, and Seaport-e contracts over the last decade. Castillo Technologies public sector clients include United States Department of Homeland Security, United States Department of the Army, United States Department of Energy, United States Department of Veterans Affairs, and United States Air Force. Private sector clients include a number of Fortune 5000 companies located throughout the Southwestern United States.

Dr Alan F Castillo is an associate member of the American Psychological Association (APA), a member of the Institute of Electrical and Electronics Engineers (IEEE) Computer Society, Cloud Security Alliance, National Defense Industrial Association, and the Military Police Regimental Association. He also donates time and expertise locally to Big Brother Big Sisters of Central Arizona.

An expert at integrating security into CI CD pipelines, Dr Castillo develops a comprehensive DevSecOps secure coding strategy and implementation for large enterprise development teams.  This delivers a fully automated, scalable, immediate feedback, and stage visible, for enhance developer team productivity.

Further reading about significance of DevSecOps Cloud Architect and CyberSecurity Subject Matter Expert SME.

About Cloud Computing Technologies

Cloud computing technology is a rapidly evolving paradigm in modern technology. Today, cloud computing is on the move of transforming the business model and strategies of SMEs, public agencies, as well as mega-scale enterprises by accelerating innovation while reducing cost.

Castillo Technologies LLC or Cloud Computing Technologies, founded by Dr. Alan F Castillo, is a premier cloud computing solutions provider based in the US catering to a diverse range of cloud computing-related services. We at Cloud Computing Technologies are specialized to work in both public and private sector organizations, including federal agencies, Department of Defense, DoD prime contractors, Fortune 500 organizations, as well as small businesses.

We, as an organization, have a strong base of research expertise on leadership practice and strategic intentions to use cloud computing and over 20 years of experience in the field. Refer to the research study I did on Leadership and Strategic Intentions to use Cloud Computing as a record that speaks to my consultation propensity to combine business processes with the inherent benefits of cloud computing for innovation.

At CCT, I deliver value in providing:

  • Cloud Migration Services
  • Application DevSecOps Solutions
  • Cloud Architecture Development services
  • Cloud Security Compliance and Governance solutions

Feel free to contact me for architectural evaluations, analysis, and designs related to AWS and Azure Cloud Architectures. Also, I have contributed to a range of cloud architecture development projects in the United States Department of Homeland Security, United States Department of the Army, United States Department of Energy, United States Department of Veterans Affairs, United States Air Force, and many Fortune 5000 companies by overseeing the development, enhancement, and maintenance of robust cloud service designs.

Dr. Alan LinkedIn profile: Dr. Alan F. Castillo DM-IST, MBA, AWS-CSA AWS-CDEV

sdvosb-brain

Empowering Client Success
with Cutting-Edge AI Solutions

Service-Disabled Veteran-Owned Small Business (SDVOSB)

Small Disadvantaged Business

Small Disadvantaged Business (SDB)

Small Disadvantaged Business leads to enhanced innovation and creativity, as these businesses often offer unique perspectives and solutions shaped by their diverse backgrounds. Moreover, partnering with Small Disadvantaged Business can provide access to specialized skills and capabilities that might otherwise be overlooked, contributing to improved competitiveness and efficiency.

GSA Schedule

Transforming for Innovation, Sustainability and Security

LEARN HOW
Further information about Dr Alan F Castillo.