I have a professional experience in Information Security-focused endeavors I have exhibited astute analytical skills in tackling complex security challenges, resulting in successive promotions to his current position as a security engineer III. My adeptness in developing innovative solutions while diligently maintaining compliance with Enterprise policies has been a vital component of his accomplishments• Experience working in and collaborating with Network/ Endpoint Security, SOAR, CSIRT, Cloud Security, Platform Security• Comprehensive expertise in industry-standard security tools for Windows, Linux, and Mac systems (VDI, servers, workstations, etc.)• Adept at managing Threat and Vulnerability Management processes.• Proficient in implementing Identity/Privileged Access Management (IAM-PAM) solutions, ensuring secure access control, user authentication, Role-Based Access Control (RBAC) and authorization across diverse IT systems and applications.• Experience in security frameworks and ensuring compliance with standards such as PCI-DSS, HIPAA, NIST, ISO27001, FISMA, SOC, and GDPR• Skilled in firewall and networking technologies, including Palo Alto Firewall, VPNs, NetBIOS, SNMP, Telnet, SSH, and ARP• In-depth understanding of networking protocols, such as TCP/IP, HTTP, HTTPS, DNS, firewalls, proxies, IDS, intrusion prevention systems (IPS), and network access control (NAC)• A versatile information security expert with extensive experience in threat and vulnerability management, security analysis and architecture, policy design, risk assessment, incident response, ethical hacking, and solution implementationProficient in client/server and web-based solution design, evaluation, and implementation, focusing on identity and access management, public key infrastructure, cybersecurity, authentication, and credentialing.• Skilled in creating Carbon Black watchlist rules utilizing the MITRE ATT&CK Framework to detect malware, ransomware, and malicious activities.• Experienced in network scanning, port checking, filtering, and vulnerability identification.• Adept in security incident handling using SIEM tools such as QRadar and LogRhythm, and penetration testing with Rapid7, IBM App Scan, Qualys, Tenable, Burp Suite, Nmap, and Wireshark.• Supporting CSOC investigations to identify potential security incidents and deploying Tenable IO, Tenable AD, and CrowdStrike for malware and cyber-attack prevention.