• Architected and led the implementation of advanced cybersecurity frameworks.• Directed comprehensive vulnerability assessments and penetration testing initiatives, integrating internal andexternal evaluations to identify and mitigate high-impact security risks across enterprise infrastructurespreemptively.• Optimized and aligned Fortinet security policies with business imperatives and regulatory mandates (NIST, ISO,PCI-DSS), ensuring consistent compliance and operational efficiency.• Oversaw offensive security operations, including red teaming and social engineering, crafting tailored attacksimulations that enhanced organizational resilience to adversarial threats.• Orchestrated the deployment of enterprise EDR solutions (CrowdStrike, Symantec), customizing advanceddetection and response mechanisms to elevate threat visibility significantly and incident response efficiency.• Led multi-domain penetration testing, encompassing web applications, APIs, mobile platforms, and ActiveDirectory, successfully identifying critical vulnerabilities and enforcing robust remediation strategies.• Directed high-stakes red team engagements, emulating advanced persistent threats (APT) to expose and fortifysystemic vulnerabilities, aligning outcomes with strategic defense enhancements.• Collaborated with executive leadership and cross-functional teams, ensuring the seamless integration ofsecurity architecture into corporate operations, aligning cybersecurity strategies with business objectives.• Delivered expert consultation on compliance and configuration reviews, guiding internal audits and PCI DSSsegmentation to ensure rigorous adherence to security standards and mitigate risk exposure.• Completed significant security infrastructure deployments, including:• Fortinet NAC Solution• Arcon PAM• Nessus and Tenable Security Center• LogRhythm SIEM solution• Invicti Vulnerability Assessment Tool• Audio Code Call Recording Solution

• Played a pivotal role in driving the successful implementation and maintenance of Information Security Management Systems (ISMS) in alignment with ISO 27001 standards.• Collaborated closely with the lead implementer and team members, handling critical tasks like risk assessment, control implementation, and documentation management.• Contributed to drafting policies, conducting training sessions, and facilitating internal audits to ensure adherence to information security best practices and regulatory requirements.• Helped the organization achieve ISO 27001 certification, reinforcing its commitment to robust information security measures.• Streamlined documentation processes for improved efficiency and spearheaded security awareness initiatives, leading to a reduction in security incidents.• Possess a strong understanding of ISO 27001 standards, effective communication, and analytical skills, driving continual improvement of the ISMS.