Cyber Security Engineer
Cybersecurity Engineer with 4+ years of hands-on experience designing and implementing security controls across cloud, endpoint, identity, and application environments. Experienced in IAM enforcement, EDR deployment, vulnerability management, SIEM-based threat detection, and SOAR-driven automation across AWS and Azure. Strong foundation in GRC documentation and compliance alignment to NIST CSF, NIST 800-53, and CIS Controls.
Capital One
Oct 2024 โ Present
Designed and deployed security controls across identity, endpoint, cloud, and application layers including IAM policy enforcement, EDR via CrowdStrike Falcon, SIEM-based detection in Splunk and Microsoft Sentinel, and Zero Trust access controls. Built MITRE ATT&CK-mapped detection rules in SPL and KQL, led vulnerability management lifecycle using Nessus, implemented SOAR automation via Python/PowerShell/Azure Logic Apps, integrated CTI feeds, performed forensic investigations using Velociraptor and KAPE, and maintained GRC/compliance documentation aligned to NIST CSF, NIST 800-53, and CIS Controls.
Isparrow HR Solutions
Jun 2021 โ Dec 2023
Designed and deployed security controls across identity, endpoint, and application layers for 30+ client environments including Active Directory hardening, SIEM-based detection (ELK Stack, Splunk, IBM QRadar), and CIS benchmark-aligned infrastructure controls. Led vulnerability management using Nessus, OpenVAS, and Qualys, implemented IAM controls, built Python-based IOC enrichment automation, and supported GRC compliance alignment to NIST 800-53 and CIS Controls across multi-client environments.