8+ years of experience in information security, with six years in cloud security. Adept at the implementation of zero-trust architecture, cloud workload protection, identity and access management, cloud network security, CSPM solutions, network security architecture, encryption, incident response planning, and the integration of security into cloud native applications and services while staying abreast of evolving threat landscapes and security best practices. Highly skilled in managing different internal and external stakeholders. Ability to communicate complex security concepts and stay current with industry trends.
- Knowledge and Experience
- Cloud Migration & Landing Zones Security
- Perimeter Security (WAF &DDoS)
- CASB, CSPM, SIEM/SOAR, SAST AND DAST.
- Zero Trust Architecture and Zscaler.
- Secure Software Development Lifecycle (SSDLC), Threat Modeling.
- Proficient in applying secure coding practices and integrating security measures into the development process.
- Security risk Assessment, Third-Party Risk Management, and Vendor risk Management Analyst
- NIST, FedRAMP, CIS Controls
- Proven ability in securing the CI/CD pipeline {Shift Security Left}
- Microsoft Purview enabled environment (Word, Excel, PowerPoint, and Visio)
- OWASP Top 10 knowledge
- Knowledgeable in Microsoft Entra ID/Azure Active Directory Premium, Defender for Office.
- Defense In-depth.
- Working in Agile Development environment AWS Security
- Management and Governance
- Identity & Access Management
- AWS Security Hub Azure Security
- Azure Security Operations
- Microsoft Defender for Cloud, Azure Monitor, Defender for Office 365.
- IAM
- Azure Active Directory
- Privileged Identity Management, Conditional Access Policies, MFA, CyberArk, AD Identity Protection, Role-Based Access Control (RBAC), Single sign-on (SSO), multi-factor authentication (MFA) Authentication, Access Review.
- Azure CIS Benchmark compliance Azure Security Center and Azure Sentinel for security monitoring and incident response
- Platform Protection -VNET, Front Door, Web Application Firewall, Azure Key Vault, Azure DDoS protection.
- Data and Application Security
- Azure Key Vault, Certificates, Secrets, and Keys.
- Microsoft security on-premises solutions RECENT PROJECT:
- Conducted a Gap analysis on our resource logging to determine areas where current practices deviated from industry standards, to identify potential improvements in our security posture, and to ensure compliance with regulatory requirements.
- Designed and implemented enterprise Azure security architectures, enhancing application and infrastructure security solutions.
- Leveraged Azure Sentinel and other SIEM solutions to optimize threat detection and response, integrating security into the Secure Software Development Lifecycle (S-SDLC).
- Recognized as an internal expert on Azure security, contributing to strategic planning and the development of innovative security solutions that significantly impact the achievement of functional results.
- Spearheaded the design of Azure security architecture for cloud-native services, establishing a robust security framework across IaaS platforms.
- Contributed to the development and implementation of new products, processes, and standards, improving existing practices and driving strategic security goals.
- Applied a broad perspective to provide innovative solutions to complex issues, enhancing security practices and contributing to the company's recognition as a technical and business leader in security.
