Summary
Experience
Lead Cloud Security ArchitectApex Innovations
- Led architectural design and implementation of multi-cloud security framework (AWS, Azure), reducing critical security vulnerabilities by 40% across 500+ production services.
- Developed and enforced security policies and automated compliance checks, achieving 99% adherence to SOC 2 and ISO 27001 standards.
Senior Cloud Security EngineerVisionary Tech Solutions
- Architected secure network configurations and access controls for AWS cloud infrastructure supporting 100+ applications, preventing 15+ potential data breaches annually.
- Developed custom security automation scripts using Python and Terraform, reducing manual security review time by 30 hours per week.
Information Security EngineerSecureNet Solutions
- Implemented SIEM solutions (Splunk) to monitor security events, reducing false positives by 35% and improving threat detection accuracy.
- Performed vulnerability assessments on corporate networks and applications, identifying and resolving over 100 critical security flaws.
Projects
Automated Cloud Security Posture Management (CSPM) Tool
- Developed an open-source Python tool to automatically scan AWS and Azure environments for common security misconfigurations, reducing manual review time by 60%.
- Integrated with Slack for real-time alerts on identified violations, improving incident response speed by 30%.
- Contributed to the community with comprehensive documentation and modular architecture, facilitating wider adoption.
Serverless Security Auditing Framework
- Designed and implemented a framework using AWS Lambda and Step Functions to continuously audit serverless function configurations against security best practices.
- Achieved a 95% accuracy rate in detecting policy violations, significantly reducing the attack surface of serverless applications.
- Published a blog post detailing the framework's architecture and deployment, garnering over 5,000 views.
Container Image Vulnerability Scanner Integration
- Integrated an open-source vulnerability scanner (e.g., Trivy) into a CI/CD pipeline for Docker images, automating security checks for 100+ container builds.
- Reduced critical vulnerability count in development images by 70% before deployment to production environments.
- Enhanced security gates to block builds with high-severity vulnerabilities, preventing deployment of insecure software.
Education
Carnegie Mellon UniversityMaster of Science in Cybersecurity
- Achieved a 3.9/4.0 GPA, specializing in Cloud Security and Cryptography.
- Published a research paper on "Zero Trust Architectures in Multi-Cloud Environments" in a peer-reviewed journal.
- Awarded the university's Cybersecurity Innovation Scholarship for two consecutive years.
University of WashingtonBachelor of Science in Computer Science
- Graduated Magna Cum Laude with a 3.8/4.0 GPA.
- Recipient of the Dean's List for all eight semesters.
- Developed a secure communication protocol for IoT devices as a capstone project.
Skills
Cloud Platforms
AWS (EC2, S3, IAM, VPC, Security Hub, GuardDuty, Lambda)Azure (Sentinel, Security Center, AD, Key Vault, AKS)Google Cloud Platform (GCP Security Command Center, IAM, GKE)Serverless SecurityContainer Security (Kubernetes, Docker)
Security Tools & Technologies
SIEM (Splunk, ELK Stack)IDS/IPS, WAF (Cloudflare, AWS WAF)DLP, EDR (CrowdStrike, Carbon Black)Vulnerability Management (Nessus, Qualys)IAM/PAM (Okta, CyberArk)DevSecOps (Aqua Security, SonarQube)
Governance, Risk & Compliance
ISO 27001SOC 2NIST CSFGDPR, CCPARisk Assessment & ManagementSecurity Auditing
Programming & Scripting
PythonGoBashTerraformCloudFormationAnsible
Networking & Infrastructure
TCP/IP, DNS, VPNFirewalls, Routers, SwitchesZero Trust ArchitecturesMicrosegmentationHybrid Cloud Networking