Resume

I am a cybersecurity strategist and architect dedicated to building world-class, data-driven security defense programs that function as strategic business enablers. I specialize in architecting and implementing some of the world's most complex and large-scale threat detection and response ecosystems, with deep expertise in Google Cloud, SIEM, and SOAR technologies. My approach fuses security engineering, data science, and cloud architecture to translate security data into actionable intelligence and automated response. By developing these sophisticated capabilities, I help organizations move beyond reactive defense, enabling them to manage enterprise risk effectively, protect critical assets, and innovate securely on a global scale.

Summary

Mitchell Rudoll

A visionary cybersecurity leader and strategist at the intersection of data science, cloud architecture, and security engineering. I specialize in transforming enterprise security from a cost center into a competitive advantage by designing the sophisticated threat detection and response ecosystems that modern businesses need to thrive. My work with leading global companies focuses on leveraging technologies like Google SecOps, SIEM, and SOAR to manage enterprise risk and drive significant revenue growth.

DFW, TX
CCSP, GCP CDL, GCP PCA, GCP PCSE, GCP PSOE

Thought Leadership and Recognition

Author of Future of the SOC: Evolution or Optimization, Future of the SOC: Transform the How, and co-contributor to Deloitte's Future of the SOC alongside Anton Chuvakin.
Guest on the Google Cloud Security Podcast
Presented at Google Cloud NEXT 2024, Google Cloud NEXT 2023
2025 Google Cloud Developer Expert (Champion Innovator - Security), 2024 Google Cloud Champion Innovator, 2023 Google Cloud Champion Innovator.

Education

Master of Science in Cybersecurity

New York University Tandon School of Engineering, Brooklyn, New York

Academic Achievement Award

Bachelor of Arts in Computer Science, minoring in Italian

University of Minnesota - Twin Cities, Minneapolis, Minnesota

Faculty-directed research regarding Machine Learning / Natural Language Processing, Association for Computing Machinery, Study Abroad and Intern in Florence, Italy

Full-Time PSEO (Postsecondary Enrollment Options)

University of Minnesota - Twin Cities, Minneapolis, Minnesota

During Junior and Senior years of high school

Professional Experience

Specialist Master, Google Cloud Security Alliance

2023 - Present

Deloitte & Touche LLP

Architected and led the technical delivery of multiple simultaneous SIEM and SOAR migration projects for a diverse portfolio of global clients, including a multinational manufacturer, a global semiconductor software corporation, a U.S. automotive giant, a global QSR, and a U.S.-based financial exchange. Directed seven cross-functional teams, managing all aspects of threat detection engineering, data ingestion and ETL, platform integrations, and SOAR playbook automation. Orchestrated seamless transitions to Chronicle SIEM and SOAR from legacy systems including ArcSight, LogicHub, Qradar, Phantom, Securonix, Splunk, and XSOAR.

Manager, Google Cloud Security Alliance

2023

Deloitte & Touche LLP

Led delivery of advanced SIEM migration and deployment solutions for global enterprises and government agencies. Drove innovations in threat detection engineering, custom third-party integrations, and incident response automation.

Senior Consultant, Google Cloud Security Alliance

2021 - 2023

Deloitte & Touche LLP

Led concurrent cybersecurity engagements across diverse sectors, implementing Google Chronicle SIEM with a focus on detection rule development, posture assessment, incident response playbooks, and advanced analytics capabilities.
Architected and developed a cloud-native advanced analytics platform to enhance enterprise cybersecurity threat detection and response capabilities (PACE). Led a team of 15 engineers and data scientists, overseeing planning, prioritization, and SCRUM task execution.
Established and led the creation of a global Google Chronicle practice, defining standards and procedures for scoping, staffing, and technical delivery. Developed and delivered technical training materials to several global member firms.

Security Engineer II

2020 - 2021

The Michaels Companies

Insourced management and administration of enterprise IDM platform, managing virtualized server infrastructure, application integrations, and user lifecycle management automation.
Developed cyber threat intelligence program, delivering weekly briefings to executive stakeholders. Coordinated with vulnerability management partners to drive applicable remediations and drove threat detection content development within QRadar, Netskope, FireEye, and Proofpoint.
Provided guidance to application teams across various company verticals as a Security Architect, specializing in Cloud migration and application modernization projects. Additionally created learning modules surrounding security best practices and industry standards to be taught to all engineers in a technology-agnostic manner.

Engineer, ECHO (Event Correlation and Hunting Operations) & TIDE (Threat Intelligence Detection Engineering)

2019 - 2020

Target Corporation

Architected and built application to generate synthetic events to test all data feeds to SIEM to validate data pipeline stability and health, and expanded to test and validate all of Target's rule-based detection capabilities.
Onboarded and migrated data feeds to onboard applications into custom ELK SIEM, parsing logs for proper consumption, and developing feature parity to COTS SIEMs using Python and JS. Additionally developed threat intelligence-driven rule-based threat detection content within SIEM.
Created Grafana alerting on per-pipeline basis to better identify and remediate platform issues, and began foundation of program to automate the construction and development of net-new pipeline alerting.