Summary
Cloud Security Engineer with hands-on experience securing AWS environments, improving CI/CD pipelines, and automating detection and response. Skilled at identifying risks early and partnering with developers to close gaps quickly and cleanly.
Experience
- Secure modernization project across multiple AWS accounts & regions.
- Investigate alerts across AWS, Azure AD, M365, and networks.
- Strengthen guardrails, WAF, and IAM access practices.
- Standardize response with runbooks/playbooks.
- Led cloud security operations for detection, incident response, and HIPAA/NIST/CIS compliance.
- Supported incident response + vulnerability remediation.
- Performed SIEM tuning to enhance alert fidelity.
- Managed IT/security ops: Azure, on-prem, Jira, patching, access control.
- Ran org-wide phishing awareness campaigns to improve security behavior.
Projects
My implementation of the Cloud Resume Challenge using AWS. AWS S3 static site + CloudFront + Route 53 + DynamoDB + Lambda (Python). IAM Privilege Checkser
A small, focused command-line tool for statically analyzing AWS IAM policy JSON.
AWS Secure EnvironmentA minimal but secure AWS environment with Terraform that enables logging, least privilege IAM, and a small private network footprint.
Security PipelineImplements a secure CI/CD pipeline using GitHub Actions to automatically scan: Terraform, Kubernetes manifests and Python application code.