Poonam Siyag

Information Security Engineer

📍 Remote (US)

🟢Aping In

Information Security Engineer with experience in SOC 2, HIPAA, PCI DSS, ISO 27001, GDPR, and HITRUST compliance. Skilled in incident response, vulnerability management, cloud security (AWS/GCP), Splunk, CrowdStrike, and privacy frameworks. Holds CEH v12, CompTIA Security+, and CCNA certifications.

Skills

SOC 2 Type 1 & 29/10

Splunk (SPL)8/10

PCI DSS8/10

HIPAA8/10

ISO 270017/10

Okta (SSO/MFA) (7/10)CrowdStrike (7/10)GDPR / CPRA (7/10)Vulnerability Management (7/10)Incident Response (7/10)Wiz (CSPM) (6/10)Cisco Umbrella (6/10)Cloudflare (WAF/TLS) (6/10)Linux (CentOS) (6/10)OneTrust (6/10)PowerShell (6/10)Python (6/10)Tenable Nessus (6/10)AWS (VPC, Security Groups) (6/10)Git (5/10)

Work Experience

Information Security Engineer

Nextiva Inc.

Sept 2022 — Mar 2026

Led annual evidence collection for SOC 2, HIPAA, PCI DSS, ISO 27001, GDPR, and HITRUST audits. Remediated control gaps, triaged alerts via Splunk/CrowdStrike/SpyCloud, architected CPRA/GDPR privacy workflows, reviewed firewall configs, built Splunk dashboards, and managed 150+ application inventory with Okta SSO/MFA.

Security Engineer Intern

The University of Texas at Dallas (Information Security Office)

Apr 2021 — Sept 2022

Hardened CentOS servers, renewed SSL certificates, deployed Microsoft Defender for Endpoint on Linux, and monitored IDS/IPS and EDR alerts in Splunk across Vectra, Snort, and Microsoft Defender.

Systems Engineer

Infosys Ltd.

May 2018 — Dec 2019

Migrated databases and applications from Lotus Notes to SharePoint, automated folder creation in SharePoint via PowerShell reducing manual effort by 25%, and built an inventory management web app using C#, ASP.NET, and SQL Server.

Education

The University of Texas at Dallas

MSc · Cyber Security Technology and Policy

? – 2022

Rajasthan Technical University

BTech · Computer Science Engineering

? – 2018