Security Engineer / Architect

Introduction:

A highly skilled cybersecurity professional with 14 years of experience in information security, software development, and infrastructure. Expertise in vulnerability management, secure coding, and compliance automation. Adept at conducting security assessments, performing penetration testing, and implementing security best practices. Experienced in integrating security tools with CI/CD pipelines to enhance application security. Skilled in collaborating with development teams to ensure secure code practices and mitigate risks. Proficient in cloud security, identity management, and risk assessment. Strong knowledge of OWASP, PCI, and NIST frameworks for regulatory compliance. Passionate about cybersecurity education and mentoring professionals in the field. Extensive experience in automating security processes and optimizing security workflows. Dedicated to enhancing organizational security posture through proactive threat detection and mitigation.

Responsibilities:

• Conducted vulnerability assessments and implemented remediation strategies.
• Performed static and dynamic application security testing (SAST/DAST).
• Integrated security tools with CI/CD pipelines for DevSecOps implementation.
• Conducted code reviews and assisted developers in secure coding practices.
• Created and managed security compliance rules for Windows and Linux environments.
• Developed and automated security monitoring and threat detection tools.
• Managed vulnerability reports and ensured compliance with OWASP, PCI, and NIST standards.
• Configured and managed cloud security in AWS and Azure environments.
• Collaborated with customers and stakeholders to improve security processes.
• Provided cybersecurity training and mentoring to teams and professionals.