Cloud Security Engineer
๐ Long Beach, CA, USA
Cloud Security Engineer with 4+ years of experience designing and securing enterprise-scale multi-cloud environments across AWS and Azure. Expertise in Zero Trust architectures, SIEM-driven threat detection, and DevSecOps automation using Sentinel, Splunk, Terraform, and GitHub Actions. Strong background in NIST, ISO 27001, SOC 2, and HIPAA compliance.
Salary
USD 80,000 โ 90,000
SentinelOne
Mar 2025 โ Present
Architect unified security framework across Azure integrating Entra ID, Defender for Cloud, and GuardDuty, reducing unauthorized access incidents by 47%. Engineer AI-assisted detection pipelines in Microsoft Sentinel using KQL and ML analytics, cutting mean detection time by 60%. Lead automated compliance program using Python, Terraform, and Bicep in GitHub Actions. Spearhead Kubernetes container security across AKS and EKS. Define enterprise DevSecOps standard blocking 1,200+ vulnerabilities pre-production. Architect Zero Trust framework per NIST 800-207. Own regulatory compliance strategy across NIST CSF 2.0, SOC 2 Type II, ISO 27001, and HIPAA.
Capgemini
Jun 2020 โ Dec 2023
Architect enterprise CSPM program deploying Prisma Cloud across 6 AWS accounts and 4 Azure subscriptions, reducing critical misconfigurations by 82%. Engineer compliance automation using AWS Config, Terraform, and Azure Policy. Streamline ISO 27001 and PCI-DSS audit readiness, reducing manual audit effort by 70%. Conduct cloud security assessments for 6 enterprise clients across healthcare, BFSI, and telecom. Uncover 40+ critical IAM privilege escalation paths through cloud penetration testing. Engineer cloud-native threat detection pipeline integrating AWS CloudTrail, VPC Flow Logs, and GuardDuty into Splunk. Deploy 20+ automated SOAR playbooks in Phantom, reducing alert noise by 60%.
MSc ยท Cyber Security
2024 โ 2025