Security Engineer / Architect

SAN0492
Download CV

About Candidate

The candidate is an experienced Security Analyst with a solid background in vulnerability management and cybersecurity. With extensive expertise in overseeing vulnerability teams and spearheading the identification and mitigation of zero-day vulnerabilities, the candidate has worked across various industries, including finance and consulting. They have developed and implemented comprehensive vulnerability remediation lifecycles, applying risk-based methodologies to prioritize remediation efforts. The candidate has experience in configuring compliance checks using industry best practices, leveraging tools like Nexpose, Tanium, and Qualys for vulnerability and compliance scans. In addition, they have automated daily processes using Python and maintained databases in MSSQL. The candidate has also worked in reducing attack surfaces, conducting vulnerability scans, and managing compliance through tools like Qualys, Kenna, and ServiceNow. They have played a crucial role in incident response, conducting forensic investigations using Azure Defender for Cloud and various SIEM tools like Arcsight, Qradar, and Splunk. Additionally, the candidate possesses AWS Security knowledge.
Experienced Security Analyst with expertise in vulnerability management and compliance.

Proven track record in leading and coordinating vulnerability management teams.

Skilled in identifying and mitigating zero-day vulnerabilities across various industries.

Developed and implemented a robust vulnerability remediation lifecycle from detection to verification.

Utilizes risk-based methodologies to prioritize vulnerability remediation efforts effectively.

Configures compliance checks following best practices using CIS.

Proficient in automating daily processes using Python to enhance efficiency.

Experienced in maintaining and managing MSSQL databases.

Conducts vulnerability and compliance scans using tools like Nexpose (Rapid7) and Tanium.

Proficient in scanning internet-facing assets using Qualys.

Worked extensively with AWS Security for cloud infrastructure protection.

Reduced attack surface by performing detailed vulnerability and compliance scans.

Managed incident response and forensic investigations to determine root causes of security incidents.

Experienced with SIEM tools, including Arcsight, Qradar, and Splunk, for security monitoring.

Conducted forensic analysis using Azure Defender for Cloud to investigate security incidents.

Skilled in handling large-scale vulnerability scans and compliance assessments for organizations.

Applied PowerShell scripts for custom compliance checks and automation.

Worked on security practices and tools for major clients in finance and consulting industries.

Demonstrated proficiency in managing security risk and implementing security measures in enterprise environments.

Strong technical and analytical skills in the cybersecurity domain, with an emphasis on proactive vulnerability management and incident investigation.

Skills

Vulnerability Management, Compliance Checks, Zero-Day Vulnerability Mitigation, Risk-Based Vulnerability Management, Vulnerability Remediation Lifecycle, CIS Best Practices, Python Automation, MSSQL Database Management, Nexpose (Rapid7), Tanium, Qualys, AWS Security, Forensic Investigation, SIEM Tools (Arcsight, Qradar, Splunk), Azure Defender for Cloud, PowerShell Scripting, Incident Response, Attack Surface Reduction, Cloud Security, Security Risk Management.

Be the first to review “Security Engineer / Architect”

Your Rating for this listing