- Interprets business goals, and communicates them to engineering and operations teams. Introduced security framework, automated processes and drove security controls and assessments relevant to compliance with regulatory requirements for AWS, GCP, and Cloudflare- Created an AWS Workspaces-based virtual desktop environment that enables 50+ users to securely access corporate applications remotely- Design and security oversight of next-generation firewalls, intrusion prevention systems, DDoS solutions, SSL-terminating load balancers, WAF, and security groups- Configured Elastic-based SIEM platforms to include obtaining Cloud environment data - Redesigned regulatory compliance audits based on PCI DSS, CCPA, and SOC2 information security requirements. Collaborated with internal and external audit groups to maintain regulatory compliance- Performed security incidents root cause analysis, monitoring, event triage, response, and postmortem, coordinate with team members and management

- Updated security policies and procedures, ensuring compliance with regulatory standards, boosting compliance scores- Implemented a multilayer Cloud security (AWS, Cloudflare, GSuite, and Okta) including enhanced anti-virus and anti-spam software, which reduced malware risk- Championed efforts to test/validate the ability of 1000+ email accounts to withstand phishing attempts. Provided helpful feedback to senior management using SpyCLoud and Agari- Modernized policies for 17,000 end-users in the data protection area- Expanded AWS cloud security monitoring, security incidents triage response, coordinating with other team members, and documented incidents- Created AWS Lambda-based ( Python ) automated workflow to address security-related incidents and deployed ELK-based SIEM

- Accounted for possible Information Security project challenges on constraints including, risks, resources, scope, strategic financial planning, and forecasting - Launched penetration testing of web and mobile applications, improving security posture. Mastered SDLC process (logging, infrastructure hardening, security audit, network segmentation) for messenger, payment, and streaming projects- Supervised a team of 4 Infrastructure Security analysts- Promoted and directed security awareness training for 800+ employees- Headed SIEM implementation, guided programmers and DevOps on Splunk (onboarded *nix, web apps, kubernetes, and cloud logs). Conducted security operations for 40+ security events- Proposed and executed AWS cloud security framework for necessary contributions from company’s departments

- Provided information security, technical support regarding security best practices and threat management for a $863.1M Loan Portfolio financial institution with 20+ financial centers, and 8000+ employees that resulted in increased cybersecurity- Slashed and mitigated company security risks through the installation of a comprehensive security program. Performed security compliance audits, ensuring adherence to industry standards and regulations like COBIT and PCI DSS- Coordinated and delegated security assurance activities to five subordinates distributed globally to deliver company Information Security projects on time- Promoted a culture of security consciousness to reduce human-related security risks by conducting 10+ security awareness training sessions for 8,000+ users worldwide- Chosen as AWS Security lead. Composed roadmap and strategy for AWS cloud security. Hardened cloud environment, including Office365, Azure, and AWS Security- Devised firewalls, IPS, SIEM, DLP, and endpoint security to reduce malicious attacks. Rolled out vulnerability management program using Qualys for 2000+ servers- Assembled a SOC and log management using Splunk Enterprise Security (*nix, web apps, Windows, Qualys, Databases, Network, and Office365 logs). Strengthened Core Banking security logs monitoring- Improved and maintained an information security reporting system based on Splunk and SharePoint BI

- High Privileged Accounts Monitoring project- Prevented critical security breaches using Qualys-based vulnerability management system for 300+ servers. Analyzed security incidents that reduced detection and response time- Conducted security assessments on the company's resources and on-premise data centers, as well as penetration tests of mobile applications, and Internet banking - Implemented Information Security solutions, including Thin client compliance with information security legislation and Secure Mobile Access System for government databases