34 years of hands-on experience in cybersecurity across multiple domains.
Strong understanding of security principles, risk management, and threat mitigation.
Experience implementing security baselines and standards (e.g., CIS, NIST, OWASP).
Familiarity with security tools such as Tenable, Qualys, CrowdStrike, Splunk, Palo Alto, etc.
Knowledge of identity and access management (IAM), secure authentication, and least privilege principles.
Exposure to cloud security (AWS, Azure, GCP) and secure configuration practices.
Strong analytical and problem-solving skills with attention to detail.
Monitor security tools such as SIEM, endpoint protection, vulnerability scanners, and firewalls to ensure continuous visibility across the environment.
Ensure all systems, devices, and components within the network are consistently compliant with defined security policies, standards, and configurations.
Implement and maintain security controls across systems, networks, applications, and cloud environments.
Apply and enforce security standards and hardening guidelines (e.g., CIS Benchmarks, NIST).
Conduct regular security assessments, audits, and configuration reviews.
Collaborate with cross-functional teams (IT, DevOps, Cloud, Application) to embed security into design and operations.
Support incident response activities and perform root cause analysis for security events.
Maintain and update documentation for security policies, procedures, and configurations.
Assist in compliance initiatives by aligning security practices with regulatory and industry standards (e.g., ISO 27001, SOC 2, GDPR).
Continuously evaluate and improve security posture through gap analysis and remediation planning.
Proficiency in scripting (Python, Bash, PowerShell) for automation and remediation.
Exposure to Zero Trust architecture and microsegmentation.
Certifications such as:
CompTIA Security+
Certified Information Systems Security Professional (CISSP)
