Cyber Security Specialist
CurrentResponsible for protecting computer systems, networks, and data from potential attacks, damage, or unauthorized access, with the primary objective of ensuring the confidentiality, integrity, and availability of information and technological resources, as well as business continuity.Conducting risk assessments and analyses to identify security vulnerabilities and threats (threat prevention, vulnerability scanning with Nessus, OpenVAS, etc.) through the development and implementation of security measures based on NIST, ISO 27001, MITRE ATT&CK & D3FEND frameworks.Administration of NGFW (Next Generation Firewall) and endpoint protection with Fortinet technology to reduce the attack surface and early threat detection with IDS and IPS.Analysis and correlation of security events collected in real-time with Wazuh SIEM to take appropriate actions and minimize response times.Conducting information security awareness and training campaigns for users to help them detect threats and avoid scams, phishing, ransomware, credential theft, etc.networking devices, etc.), as well as applications and microservices running in Docker containers. Automation of maintenance tasks with Ansible.Projects and Achievements:Redesigned the network based on best practices and networking standards. These tasks involved reconfiguring IP addressing and installing a DNS server to prevent users from accessing resources through IP addresses, facilitating the administration of such resources.I implemented an Identity and Access server based on LDAP (FreeIPA) with the aim of allowing users to access the network with their own credentials, instead of using a generic one that would imply a serious security breach and be non-compliant.I proposed and carried out the installation, configuration, and periodic testing of a streaming backup solution for all PostgreSQL databases used by several applications to prevent potential information loss as part of the DRP (Disaster Recovery Plan).