Security Engineer / Architect

The candidate is an experienced Information Security professional with expertise in managing and securing IT infrastructures, applications, and data. They have demonstrated skills in Security Architecture, Risk Management, Vulnerability Management, and Security Operations, with a particular focus on cloud security, application security, and security event monitoring. They have worked extensively with tools like Snyk, Checkmarx, Rapid 7, Fortinet, and AWS services such as CloudTrail and GuardDuty. With a strong background in SDLC security, the candidate has integrated security practices into development pipelines and conducted threat modeling for applications. They are proficient in managing and improving security operations, incident response, and continuous monitoring through SIEM tools such as Rapid 7 InsightIDR. Their experience includes leading organizations through the implementation and certification of ISO standards, including ISO 27001, ISO 22301, and ISO 27701, while ensuring compliance with data protection regulations. The candidate has also led vulnerability management programs, including performing vulnerability assessments, penetration testing, and remediation efforts. With numerous certifications, including CISSP, CISM, and CEH, the candidate has successfully enhanced security postures, implemented security strategies, and collaborated with stakeholders to ensure alignment with regulatory requirements and industry standards. They have also demonstrated a proven track record of handling security incidents, reducing vulnerabilities, and improving the overall security environment within organizations.