Security&Compliance Engineer
Current- Conducting application security assessments and POCs, creating policies and utilizing strategic engineering procedures to maintain and improve the enterprise security posture- Making sure organization workflows complies with established standards like ISO, TÜV, PCI-DDS and providing evidences during audits- Monitoring and patching vulnerabilities in cloud (AWS) and on-prem systems by using Crowdstrike, Rapid7, Github, Cloudflare (~92% drop on critical, ~85% drop on severe, ~80% drop on moderate findings)- Established AWS Organizations and Control Tower and configured AWS Identity Center with Entra ID for SSO