Seasoned cybersecurity professional with over 5+ years of multifaceted defensive and offensive security experience in an enterprise SaaS-based company. Strong technical knowledge and deep experience in security logging and monitoring, vulnerability assessment, risk-based analysis, and vulnerability mitigation. A skilled security expert adept at implementing tools and leveraging programming/scripting languages to solve practical day-to-day security challenges. Operational experience with AWS, Microsoft Azure, and Google Cloud. Proven track record in conducting or managing incident response for organizations, investigating targeted threats. Extensive knowledge of common penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc. Up-to-date with Tactics, Techniques, and Procedures (TTPs) and security information and event management (SIEM) tools. Strong understanding of encryption technologies (e.g., TLS, HMAC, RSA, AES, PKI) and Web-related technologies (e.g., HTTP, SOAP, REST, TCP/IP). Ability to work autonomously in a fast-paced, cross-functional environment and comfortable with ambiguity. Experience leading a penetration testing team. Good working knowledge of Open Source security solutions. Familiar with security frameworks and certifications including NIST Cybersecurity Framework (CSF), Center for Internet Security (CIS) Controls, and MITRE ATT&CK.