Senior Aws Cloud Security Architect
CurrentResponsibilities • Utilized threat modeling tools and methodologies to identify potential vulnerabilities and attack vectors (Microsoft Visio to draw and analyze (DFD) Data flow Diagram)• Conducted thorough assessments to identify the components and boundaries of the systems/Application under consideration. Applied the STRIDE framework to categorize threats into different main categories.• Identify and assess security risk and vulnerability, taking into account potential threats and their impact on the organization.• Utilized threat modeling tools and methodologies to identify potential vulnerabilities and attack vectors (Microsoft Visio to draw and analyze (DFD) Data flow Diagram)• Ensure that cloud infrastructure and applications comply with relevant regulations, standards, and internal policies (e.g., GDPR, HIPAA, SOC 2, ISO 27001).• Collaborated with Solution Architects and development teams to design and implement mitigation strategies based on the identified threats.• Engaged with customers and stakeholders on successful planning and execution of validation engagements.• Develop action plans to address compliance gaps and vulnerabilities and work with relevant teams to implement corrective measures.• Integrate security measures into the entire software development lifecycle and infrastructure provisioning process.• Implement risk mitigation strategies and work with IT teams to address critical security vulnerabilities and exposures. • Assess and select security tools, technologies, and services that enhance the security posture of the cloud environment. • Maintain relationships with cloud service providers (e.g., AWS) to understand their security offerings and ensure alignment with organizational security requirements.• Stay informed about emerging security threats and vulnerabilities, and proactively adapt security measures to address them.