Security Analyst
CurrentLed participation in external security audits (ISO 27001 & SOC 2 Type II)Spearheaded a project to revamp IAM permissions of internal privileged access management systemEvaluated and managed third-party security risks, ensuring alignment with security frameworksManaged application security programs, including SAST and DAST tools, to ensure product securityUtilized native cloud security tools to prepare actionable threat intelligence reportInvestigated and implemented security controls for internal incidentsCollaborated with cross-functional teams to enhance security and ensure complianceConducted regular threat assessments and incident response exercises, improving overall security postureParticipated in threat modeling exercises with broader teams to determine the scope of identified risksConducted cybersecurity awareness training and workshops for internal employees