SOC Engineering, Multi-Cloud Solutions Architect, DevSecOps, PAM, Threat Analysis, Vulnerability Management.
Aktualisiert am 11.03.2025
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 11.03.2025
Verfügbar zu: 100%
davon vor Ort: 100%
Cloud Security
Cloud Architect
Security Engineering
DevSecOps
SIEM
IT-Security
Cyberark
CyberDefense
SOC

Einsatzorte

Einsatzorte

Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

1 year 9 months
2023-06 - now

Privileged Access Management

Technical Lead Engineer
Technical Lead Engineer
  • Designed and built the privileged access management environment from scratch on Cyberark.
  • Onboarded resources (Servers and applications) and teams.
  • Currently building processes for auto-onboarding of servers to PAM following the zero trust model
  • Designed, built, and managed the platform for credential management, migrated already existing secrets, and onboarded teams.
  • Managed the PAM build and run teams including budgets required for the execution and run of the PAM project.
  • Built dashboards necessary for tracking every piece concerning the PAM project helping to reduce guesses during forecasts and providing solid reporting capabilities to upper management.
  • Reduced PAM project build costs by up to 15% by reviewing license usage, misconfigurations, and practicing frugal engineering.
  • Reduced PAM project run costs by automating several recurrent practices.
  • Coordinated webinars that helped to train colleagues on the importance of security with regards to privilege access.
  • Collaborated with transversal colleagues to design and implement GenAI solution for Solvay
Solvay
Brussels
2 years
2021-06 - 2023-05

Managed the administration and security configuration

Senior Information Security Engineer
Senior Information Security Engineer
  • Managed the administration and security configuration of the edge network security platform for 6 customer-facing applications, set up, onboarded, and monitored critical endpoints, and managed network lists and WAF on the edge.
  • Implemented Bot mitigation strategies and controls reducing the attack impact on the customer facing applications(CFA?s) during hyped article sales.
  • Implemented Security incident response on ServiceNow for the Security Operations center(SOC)
  • Worked with ServiceNow to implement the automation of Security Operations Center(SOC) runbooks.
  • Designed and carried out user acceptance(UA)tests on SOC use cases required for Security incident response.
  • Built custom bi-directional integrations between AWS security tools to ServiceNow.
  • Codesigned and implemented the Zalando CMDB(Configuration Management Database)
  • Built and managed systems for hosting tools required for both cyber defense and offense (blue and red ) teams
  • Leveraged open-source tools to build systems that find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds, and the CMDB
  • Designed, built, and managed CI/CD pipelines for the deployment of the SOC codebase.
  • Reviewed and patched systems regularly to minimize vulnerabilities and possibilities of a potential breach.
  • Built dashboards used for monitoring resources deployed both in our cloud environment and on the edge.
Zalando
Berlin
3 years 1 month
2019-11 - 2022-11

Security incidents response and resolution

Security Incident Response Analyst
Security Incident Response Analyst
  • Security incidents response and resolution
  • Coordinated Post-incident reviews with teams and writing of Post-mortems
  • Designed, reviewed, and published runbooks needed for various security incidents.
  • Designed SOC use cases needed for the implementation of a robust SIEM/SOAR solution
  • Managed the lifecycle of vulnerabilities and external coordination with security research platform(HackerOne).
  • Carried out security monitoring and threat hunting exercises.
  • Designed dashboards for security reporting and stakeholder management.
  •  Developed incident assessment and triage document for Legal related incidents.
  • Collaborated with the Product Security team to ensure secure coding guidelines are followed.
  • Onboarded and trained newbies on security incidents (End to end).
  • Built in-house security documentation platform
Zalando
Berlin
9 months
2019-03 - 2019-11

Developed the guide for secure coding in the Adidas agile environment

Application Security Engineer
Application Security Engineer
  • Developed the guide for secure coding in the Adidas agile environment.
  • Performed security assessments on Adidas homegrown applications.
  • Collaborated with the security architecture team in planning, and designing the cloud security blueprint.
  • Identified security vulnerabilities and determined solutions to fix them.
  • Performed server and software updates and upgrades
  • Set up web application firewalls
  • Performed regular scanning and testing for applications
  • Interfaced with dev teams to perform secure architecture reviews, threat modeling, assessment, and post-mortems,
  • Coordinated security trainings, and performed validations of security findings
  • Built automations for scans, alerts, and reporting.
  • Built pipelines for the propagation of applications/tests following secure SDLC
Adidas
Herzogenaurach
2 years 1 month
2015-03 - 2017-03

Performed Incident/Security incident response and resolution

Security Analyst
Security Analyst
  • Performed Incident/Security incident response and resolution
  • Performed Vulnerability Management
  • Built Scripts various automations necessary for security incident response
  • Identified security vulnerabilities and determined solutions to fix them.
  • Performed regular systems patching
  • Wrote and implemented various documentations including runbooks for security incident response
Lift Saxum
Lagos

Aus- und Weiterbildung

Aus- und Weiterbildung

2020:

Information Security

Master's Degree

FH-Kiel, Germany


2014:

Computer Science

Bachelor's Degree (B.Sc)

Anambra State University, Nigeria


CERTIFICATIONS

  • Microsoft Security, Compliance and Identity
  • Exabeam Fusion SIEM for Security Analysts
  • Amazon Web Services Cloud Practitioner
  • ServiceNow Certified Implementation Specialist - Security Incident Response
  • ServiceNow Vulnerability Response Implementation Badge
  • ServiceNow Security Operations Fundamentals Badge
  • ServiceNow Vulnerability Response Implementation Badge
  • ServiceNow CMDB Fundamentals ILT Badge

Kompetenzen

Kompetenzen

Top-Skills

Cloud Security Cloud Architect Security Engineering DevSecOps SIEM IT-Security Cyberark CyberDefense SOC

Produkte / Standards / Erfahrungen / Methoden

SUMMARY

  • Effective problem-solving Security Engineer with expertise in security operations center (SOC), Cloud security and automation, IAM -Privileged Access Management, Vulnerability management, SIEM, EDR/XDR, MDM, Edge Network Security, WAF, Threat Intelligence, Monitoring and reporting. I have experience with leading SOC teams, building strategies for security maturity with a reputation for resolving complex technical challenges, improving stakeholder engagement and satisfaction. 
  • I have a Master?s degree in Information Engineering with a specialization in Information Security. Eager to contribute to an out-of-the-box thinking team that is relentless in innovating security posture or building a security focused team from scratch.


SKILLS

Technical Skills

  • Log Forensics
  • SIEM
  • WAF(Web Application Firewall)
  • Virtualization
  • Email Analysis
  • DLP (Data Loss Prevention)
  • Endpoint Security
  • Cloud Security Investigations and Response
  • Developing Security Playbooks
  • Python
  • Bash
  • Linux
  • AWS
  • Vulnerability Management
  • Docker
  • Kubernetes
  • Ansible
  • Cryptography
  • PAM (Privileged Access Management).


Soft Skills:

  • Self Motivating
  • Excellent Communication
  • Multitasking
  • Problem-Solving
  • Teamwork
  • Persistence

Einsatzorte

Einsatzorte

Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

1 year 9 months
2023-06 - now

Privileged Access Management

Technical Lead Engineer
Technical Lead Engineer
  • Designed and built the privileged access management environment from scratch on Cyberark.
  • Onboarded resources (Servers and applications) and teams.
  • Currently building processes for auto-onboarding of servers to PAM following the zero trust model
  • Designed, built, and managed the platform for credential management, migrated already existing secrets, and onboarded teams.
  • Managed the PAM build and run teams including budgets required for the execution and run of the PAM project.
  • Built dashboards necessary for tracking every piece concerning the PAM project helping to reduce guesses during forecasts and providing solid reporting capabilities to upper management.
  • Reduced PAM project build costs by up to 15% by reviewing license usage, misconfigurations, and practicing frugal engineering.
  • Reduced PAM project run costs by automating several recurrent practices.
  • Coordinated webinars that helped to train colleagues on the importance of security with regards to privilege access.
  • Collaborated with transversal colleagues to design and implement GenAI solution for Solvay
Solvay
Brussels
2 years
2021-06 - 2023-05

Managed the administration and security configuration

Senior Information Security Engineer
Senior Information Security Engineer
  • Managed the administration and security configuration of the edge network security platform for 6 customer-facing applications, set up, onboarded, and monitored critical endpoints, and managed network lists and WAF on the edge.
  • Implemented Bot mitigation strategies and controls reducing the attack impact on the customer facing applications(CFA?s) during hyped article sales.
  • Implemented Security incident response on ServiceNow for the Security Operations center(SOC)
  • Worked with ServiceNow to implement the automation of Security Operations Center(SOC) runbooks.
  • Designed and carried out user acceptance(UA)tests on SOC use cases required for Security incident response.
  • Built custom bi-directional integrations between AWS security tools to ServiceNow.
  • Codesigned and implemented the Zalando CMDB(Configuration Management Database)
  • Built and managed systems for hosting tools required for both cyber defense and offense (blue and red ) teams
  • Leveraged open-source tools to build systems that find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds, and the CMDB
  • Designed, built, and managed CI/CD pipelines for the deployment of the SOC codebase.
  • Reviewed and patched systems regularly to minimize vulnerabilities and possibilities of a potential breach.
  • Built dashboards used for monitoring resources deployed both in our cloud environment and on the edge.
Zalando
Berlin
3 years 1 month
2019-11 - 2022-11

Security incidents response and resolution

Security Incident Response Analyst
Security Incident Response Analyst
  • Security incidents response and resolution
  • Coordinated Post-incident reviews with teams and writing of Post-mortems
  • Designed, reviewed, and published runbooks needed for various security incidents.
  • Designed SOC use cases needed for the implementation of a robust SIEM/SOAR solution
  • Managed the lifecycle of vulnerabilities and external coordination with security research platform(HackerOne).
  • Carried out security monitoring and threat hunting exercises.
  • Designed dashboards for security reporting and stakeholder management.
  •  Developed incident assessment and triage document for Legal related incidents.
  • Collaborated with the Product Security team to ensure secure coding guidelines are followed.
  • Onboarded and trained newbies on security incidents (End to end).
  • Built in-house security documentation platform
Zalando
Berlin
9 months
2019-03 - 2019-11

Developed the guide for secure coding in the Adidas agile environment

Application Security Engineer
Application Security Engineer
  • Developed the guide for secure coding in the Adidas agile environment.
  • Performed security assessments on Adidas homegrown applications.
  • Collaborated with the security architecture team in planning, and designing the cloud security blueprint.
  • Identified security vulnerabilities and determined solutions to fix them.
  • Performed server and software updates and upgrades
  • Set up web application firewalls
  • Performed regular scanning and testing for applications
  • Interfaced with dev teams to perform secure architecture reviews, threat modeling, assessment, and post-mortems,
  • Coordinated security trainings, and performed validations of security findings
  • Built automations for scans, alerts, and reporting.
  • Built pipelines for the propagation of applications/tests following secure SDLC
Adidas
Herzogenaurach
2 years 1 month
2015-03 - 2017-03

Performed Incident/Security incident response and resolution

Security Analyst
Security Analyst
  • Performed Incident/Security incident response and resolution
  • Performed Vulnerability Management
  • Built Scripts various automations necessary for security incident response
  • Identified security vulnerabilities and determined solutions to fix them.
  • Performed regular systems patching
  • Wrote and implemented various documentations including runbooks for security incident response
Lift Saxum
Lagos

Aus- und Weiterbildung

Aus- und Weiterbildung

2020:

Information Security

Master's Degree

FH-Kiel, Germany


2014:

Computer Science

Bachelor's Degree (B.Sc)

Anambra State University, Nigeria


CERTIFICATIONS

  • Microsoft Security, Compliance and Identity
  • Exabeam Fusion SIEM for Security Analysts
  • Amazon Web Services Cloud Practitioner
  • ServiceNow Certified Implementation Specialist - Security Incident Response
  • ServiceNow Vulnerability Response Implementation Badge
  • ServiceNow Security Operations Fundamentals Badge
  • ServiceNow Vulnerability Response Implementation Badge
  • ServiceNow CMDB Fundamentals ILT Badge

Kompetenzen

Kompetenzen

Top-Skills

Cloud Security Cloud Architect Security Engineering DevSecOps SIEM IT-Security Cyberark CyberDefense SOC

Produkte / Standards / Erfahrungen / Methoden

SUMMARY

  • Effective problem-solving Security Engineer with expertise in security operations center (SOC), Cloud security and automation, IAM -Privileged Access Management, Vulnerability management, SIEM, EDR/XDR, MDM, Edge Network Security, WAF, Threat Intelligence, Monitoring and reporting. I have experience with leading SOC teams, building strategies for security maturity with a reputation for resolving complex technical challenges, improving stakeholder engagement and satisfaction. 
  • I have a Master?s degree in Information Engineering with a specialization in Information Security. Eager to contribute to an out-of-the-box thinking team that is relentless in innovating security posture or building a security focused team from scratch.


SKILLS

Technical Skills

  • Log Forensics
  • SIEM
  • WAF(Web Application Firewall)
  • Virtualization
  • Email Analysis
  • DLP (Data Loss Prevention)
  • Endpoint Security
  • Cloud Security Investigations and Response
  • Developing Security Playbooks
  • Python
  • Bash
  • Linux
  • AWS
  • Vulnerability Management
  • Docker
  • Kubernetes
  • Ansible
  • Cryptography
  • PAM (Privileged Access Management).


Soft Skills:

  • Self Motivating
  • Excellent Communication
  • Multitasking
  • Problem-Solving
  • Teamwork
  • Persistence

Vertrauen Sie auf Randstad

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.