Hard Skills

- Cloud Security Architecture (AWS, Azure, GCP)

- Identity & Access Management (IAM, SSO, MFA)

- Vulnerability & Penetration Testing

- Cloud-native Security Tools (AWS Security Hub, Azure Security Center, GCP Security Command Center)

- SIEM & SOAR Integration (Splunk, Cortex XSOAR)

- Container & Microservices Security (Kubernetes, Docker)

- Encryption & Data Privacy Protocols

- Network Segmentation & Firewall Configuration

- Automated Security Incident Response (Python, Bash scripting)

Soft Skills

- Analytical Thinking & Problem Solving

- Communication & Cross-functional Collaboration

- Critical Incident Handling

- Continuous Learning & Adaptability

- Attention to Detail

- Strategic Planning & Risk Management

*SecureCloud Solutions, San Francisco, CA*

June 2022 – Present

- Lead the development and implementation of a unified cloud security framework that reduced security incidents by 40% year-over-year.

- Designed automated threat detection workflows using AWS GuardDuty, Security Hub, and custom Lambda functions, decreasing manual monitoring efforts.

- Conduct regular vulnerability assessments and PenTest exercises across AWS, Azure, and GCP environments, providing actionable remediation strategies.

- Collaborate with DevOps teams to embed security best practices within CI/CD pipelines, enhancing secure deployment frequency by 30%.

- Manage incident response protocols, coordinating cross-team efforts to neutralize threats and notify stakeholders promptly.

*Cloud Security Engineer*

*InnovateTech, Los Angeles, CA*

August 2019 – May 2022

- Implemented multi-layered security controls in Azure and GCP, including configured Cloud Armor and Web Application Firewalls to mitigate DDoS and application-layer attacks.

- Developed comprehensive IAM policies, integrating role-based access control (RBAC) and SSO solutions to enforce least privilege.

- Conducted quarterly security audits and compliance checks to meet GDPR, SOC 2, and internal policies, achieving 100% compliance.

- Automated routine security audit reports and alert escalation using Python scripts, reducing manual effort by 25 hours monthly.

- Spearheaded a cloud security awareness program for 50+ teams, emphasizing secure coding and cloud configurations.

*Cloud Operations & Security Intern*

*TechStart Inc., Remote*

Summer 2018

- Assisted in configuring monitoring dashboards and threat detection alerts in GCP’s Security Command Center.

- Conducted research and simulated phishing attacks to evaluate organizational preparedness, leading to improved training modules.

- Supported the deployment of a cloud-based VPN solution, enhancing secure remote access capabilities.

**Bachelor of Science in Computer Science**

University of California, Berkeley

*2015 – 2019*

- AWS Certified Security – Specialty (2023)

- Certified Cloud Security Professional (CCSP) – ISC² (2024)

- Microsoft Certified: Security, Compliance, and Identity Fundamentals (2022)

Zero-Trust Cloud Gateway Deployment

Designed and deployed a Zero-Trust architecture for a SaaS company’s multi-cloud setup, incorporating adaptive access controls and continuous risk evaluation, leading to a 50% decrease in unauthorized access attempts.

Automated Cloud Threat Hunting Toolchain

Developed a Python-based automation suite that collects and analyzes logs from various cloud platforms, supporting proactive threat hunting processes and reducing mean time to detect (MTTD) from 4 hours to under 1 hour.

- English (Native)

- Spanish (Fluent)