Cybersecurity Team Lead

The candidate has 14 years of experience in cybersecurity, security engineering and critical infrastructure protection. He led SOC, GRC and penetration testing teams in large enterprise and government environments, securing a 10,000 user environment with more than 800 servers. He has deep expertise in SIEM, IAM, PAM, vulnerability management, network architecture and implementing ISO 27001, NIST 800 53 and national cybersecurity frameworks. He played a key role in national cybersecurity readiness for a major global event, implementing more than 30 technical and administrative controls. His background includes DevSecOps integration, supply chain security and deployment of modern security architectures.

Led a six person cybersecurity team across SOC GRC and penetration testing securing a 10,000 user environment. Source: Lead a 6 person cybersecurity team securing a 10,000 user environment Conducted a national cybersecurity gap assessment and implemented 30 controls for a major global event. Source: implemented 30 technical and administrative controls within an 18 month window Introduced DevSecOps integrating SAST and DAST into the development lifecycle. Deployed and operated a SIEM with more than 75 log sources transforming security operations. Designed and operated a vulnerability management program scanning over 10,000 IPs with strict remediation SLAs. Implemented PAM DNS layer security microsegmentation and DLP to reduce insider and exfiltration risks. Led POCs for strategic security technologies including NAC IPS and DDOS protection. Supported internal and external audits achieving zero major non conformities. Designed and operated enterprise network and security architectures including firewalls VPN WAF and segmentation. Built a disaster recovery site with a 48 hour RTO and 20 rack infrastructure.