Jordan Phillip Bray Sr.

Professional Summary

Dedicated and detail-oriented professional who transitioned from law enforcement to information security, with extensive experience adhering to New Jersey Attorney General Guidelines, CJIS compliance, and aligning security practices with the NIST Cybersecurity Framework (CSF). Proven expertise in access control, evidence handling, incident response, risk assessment, and regulatory compliance. Adept at safeguarding sensitive data, enforcing security protocols, and ensuring adherence to state and federal guidelines. Skilled in delivering role-based training and implementing security measures that enhance organizational resilience and operational continuity.

Certifications

• AWS Certified Cloud Practitioner
• AWS Certified Solutions Architect – Associate
• Cisco Certified Network Administrator
• CompTIA Linux+
• CompTIA Security+
• Google Cybersecurity Professional Certificate
• ISC² Certified in Cybersecurity (CC)
• ISC² Certified Cloud Security Professional (CCSP)
• ISC² Certified Information Systems Security Professional (CISSP)
• Microsoft Azure Fundamentals (AZ-900)
• Microsoft Azure Administrator (AZ-104) (currently pursuing)
• NJPTC Certified Firearms Instructor
• NJPTC Methods of Instruction
• NJPTC Field Training Officer
• NJPTC Drugs for Patrol (Risk Assessment)

Employment History

Epitome LLC, Baltimore, Maryland March 2025 – Present

• Define and design system architecture based on business and technical requirements.
• Develop and document system specifications, workflows, and integration plans.
• Ensure scalability, reliability, and security in system designs.
• Install, configure, and deploy systems, servers, and applications.
• Integrate software, hardware, and networking components.
• Automate deployments using scripting and orchestration tools (e.g., Terraform).
• Monitor system performance and troubleshoot issues proactively.
• Apply patches, updates, and security enhancements to maintain integrity.
• Manage cloud and on-premises infrastructure (AWS, Azure, VMware).
• Implement security controls to protect systems against cyber threats.
• Ensure compliance with NIST, ISO 27001, HIPAA, and other standards.
• Conduct risk assessments and vulnerability management.
• Develop automation scripts and workflows for repetitive tasks.
• Optimize performance through tuning and resource planning.
• Implement CI/CD pipelines for streamlined software deployment.
• Diagnose and resolve hardware, software, and network issues.
• Respond to system failures, outages, or security incidents.
• Collaborate with IT, development, network, and cybersecurity teams.
• Create detailed documentation for configurations and procedures.
• Train IT staff and end-users on system functionalities.
• Stay updated on new technologies and best practices.
• Evaluate and recommend tools, frameworks, and upgrades.

Cumberland County Sheriff’s Office, Bridgeton, New Jersey June 2017 – Present

• Managed physical access controls: monitored entry points, verified credentials, and enforced policies.
• Delivered role-based security training on environmental controls, PII protection, and threat detection.
• Ensured compliance with SOPs for law enforcement and courthouse operations.
• Secured and processed sensitive biometric and identity data with strict access controls.
• Maintained chain-of-custody procedures for evidence handling and forensic integrity.
• Conducted security investigations and threat assessments using analytical tools.
• Utilized authorized investigative software while ensuring audit logging and compliance.
• Patrolled secured areas, identified vulnerabilities, and enforced safety protocols.
• Performed evidence searches, contraband inspections, and security audits.
• Protected CJIS data with strict access controls and secure dissemination processes.
• Controlled access to CJIS systems, ensuring only authorized personnel entry.
• Enforced PII protection by restricting non-CJIS staff from viewing sensitive screens.
• Followed FBI and NJ State Police directives for CJIS operating procedures.
• Implemented secure handling and storage to prevent data misuse or disclosure.

Macy’s, Hamilton Township, New Jersey August 2015 – June 2017

• Prepared detailed security reports and managed evidence in compliance with policies.
• Identified and responded to theft, fraud, and internal threats through incident response.
• Applied analytical techniques to assess vulnerabilities and reduce security risks.
• Ensured adherence to legal standards for apprehensions, searches, and evidence preservation.

Education

• Master of Science in Criminal Justice, Southern University A&M College, Baton Rouge, LA (3.9 GPA)
  January 2022 – December 2022
• Bachelor of Science in Criminal Justice, Wilmington University, Vineland, NJ (3.77 GPA)
  January 2020 – August 2021
• Criminal Justice (Police & Corrections Academy), Camden County College, Camden, NJ
  August 2017 – June 2018
• High School Diploma, Cumberland Regional High School, Seabrook, NJ
  September 2006 – June 2010

Achievements

• Magna Cum Laude, Alpha Phi Sigma National Criminal Justice Honor Society (Wilmington University’s Eta Beta Chapter)
• Dean’s List (Fall 2020, Spring 2021, Summer 2021)
• Physical Training Award (Camden County College Police Academy Class 72)
• Academic Award (Camden County College Corrections Academy 96)

Technical Projects & Achievements

• Smart Static Website | AWS Cloud Security Project
  Designed, deployed, and secured a scalable static website hosted on AWS S3, leveraging CloudFront for global delivery, ACM for SSL/TLS, WAF for traffic filtering and DDoS protection, Route 53 for custom DNS, and CloudWatch for monitoring and alerts.
• Silent Scalper | Serverless Pipeline with AWS & Terraform
  Architected and automated a file-processing pipeline using AWS Lambda, API Gateway, DynamoDB, and Terraform IaC. Implemented secure file validation, IAM role management, and CloudWatch metrics.
• NIST Compliance Chatbot | Azure & AI Integration
  Built an intelligent chatbot with Azure OpenAI, Cognitive Search, App Service, and Functions. Secured with Microsoft Entra ID MFA, Application Insights telemetry, and aligned to NIST SP 800-series.
• OpenVPN & CA Server | AWS EC2 Network Security
  Deployed a secure remote access solution using OpenVPN and a custom CA on EC2. Configured client authentication, encryption, certificate management, and UFW firewall rules under NIST/FedRAMP compliance.
• Healthcare Patient Data Platform | Azure & HIPAA Compliance (In Progress)
  Developing a HIPAA-compliant patient data platform using Azure Functions, Cosmos DB, Azure AD JWT auth, and secure DevOps CI/CD pipelines with Application Insights logging.