• Providing security engineering services while developing cybersecurity awareness solutions
• Available for freelance/contract engagements in cloud security, SOC operations and security architecture
• Building cybersecurity awareness platform (CyberRaxha) addressing social engineering and online scams, available on Apple App Store and Google Play Store
• Implementing secure cloud infrastructure on AWS (EC2, S3, CloudFront, Route 53) with DevSecOps best practices
• Designed and deployed GitLab CI/CD pipeline with integrated security scanning and automated testing
• Developing full-stack security solutions using Node.js, React, and Express.js with secure API architecture
• Applying hands-on security expertise to mobile application security for iOS and Android platforms

• Leading enterprise security initiatives for identity verification platform serving millions of users across Europe
• Architected and deployed complete Microsoft Security stack including Endpoint Manager (Intune), Microsoft Entra ID, Microsoft Defender for Endpoint and Microsoft Purview DLP, securing 500+ corporate endpoints
• Designed and implemented SOC playbooks for incident response, threat hunting and escalation procedures, reducing mean time to respond (MTTR) by 45%
• Led security operations including 24/7 incident management, threat analysis and coordination with CSIRT teams for P1/P2 security events
• Conducted comprehensive AWS cloud security assessments and implemented IAM policies, security groups, and monitoring configurations aligned with ISO 27001 and NIST frameworks
• Performed penetration testing using BurpSuite, OWASP ZAP and MobSF for mobile applications, identifying and remediating critical vulnerabilities before production release
• Implemented file integrity monitoring and vulnerability management using Wazuh, achieving 95% vulnerability remediation rate within SLA
• Orchestrated security audits for call center providers and third-party partners, ensuring compliance with data protection regulations and company security standards
• Performed OS hardening across Windows, macOS, and Linux endpoints using CIS Benchmarks, reducing attack surface by 60%
• Worked on ISO 27001, DORA compliance initiatives, successfully passing external audits with no major findings

• Led enterprise security initiatives for global food delivery platform with 30,000+ employees across 50+ countries
• Project Lead: Directed infrastructure security transformation program with $2M budget, coordinating cross-functional teams across 15+ entities globally
• Successfully deployed SentinelOne EDR solution to 30,000+ endpoints across Windows, macOS, and Linux systems in under 16 months, integrating with SOC operations and achieving 99.8% deployment success rate
• Built and managed strategic relationships with entity managers across different regions, ensuring security solution alignment with local compliance requirements
• Led PCI-DSS compliance project for payment processing systems, implementing security controls and achieving Level 1 Service Provider certification
• Managed critical security incident escalations in collaboration with SOC and CSIRT teams, maintaining 99.5% SLA for P1 incidents
• Conducted zero trust architecture proof-of-concept, evaluating solutions from leading vendors and presenting recommendations to C-level executives
• Developed custom security analytics dashboards in Splunk and Python for threat detection, application performance monitoring, and incident correlation
• Coordinated vulnerability assessments and penetration testing engagements with thirdparty security vendors, managing remediation tracking and validation
• Implemented container security solutions with antivirus integration and cloud server hardening for AWS and Azure environments
• Mentored junior security engineers (team of 5), conducted training sessions for entity managers on new security products, and developed technical documentation

• Co-founded cybersecurity startup, securing seed funding through investor pitches and demonstrations
• Architected AI-powered threat intelligence platform using Python and NLP to analyze cybersecurity news from Twitter API, identifying zero-day vulnerabilities 48 hours faster than traditional methods
• Built proof-of-concept applications for IT operations automation using machine learning and data analytics
• Managed company finances, product roadmap, and go-to-market strategy for security products
• Created stock market analysis tools using Python pandas for financial trend prediction

Security Engineering & Automation (2014 - 2016)

• Collaborated with development teams to design and build custom security automation tools, reducing manual tasks by 60% and improving network uptime by 15%
• Developed Splunk-based health monitoring dashboard to identify top application issues, improving application uptime from 97% to 99.3%
• Built DNS security monitoring system to detect DNS attacks, identify top talkers and automatically clean rogue DNS requests
• Designed change management correlation tool using Splunk to link network changes with outages, reducing root cause analysis time by 50%
• Automated incident response workflows using Python and REST APIs, improving team efficiency by 40%

• Managed enterprise security infrastructure including Checkpoint firewalls, Cisco ASA VPN, F5/A10 load balancers, McAfee IDS/IPS, Infoblox DNS/DHCP, and Cisco ISE/ACS authentication systems
• Resolved P1 security and network incidents including complex load balancer misconfigurations affecting critical applications, maintaining 99.9% uptime SLA
• Administered VPN infrastructure (Cisco ASA, Nortel) supporting 5,000+ remote users with RSA token-based MFA
• Configured and maintained McAfee content filtering solutions for 50,000+ users
• Performed security hardening and policy optimization for firewalls, IPS and web gateways

• Provided technical consulting and pre-sales engineering for Cisco security products to service providers globally
• Delivered technical pre-sales support to account teams for managed security service opportunities with ISPs and telecommunications providers across APAC, EMEA and Americas
• Designed managed security service portfolios including firewall, IPS, content filtering and vulnerability assessment solutions for enterprise, service provider and SMB market segments
• Built proof-of-concept environments demonstrating Cisco security capabilities including zero-touch provisioning and automated device management
• Collaborated with SOC teams to onboard new managed security customers, integrating Cisco devices with SIEM platforms (Novell Sentinel, Splunk) for log monitoring and correlation
• Conducted due diligence assessments of partner provisioning tools for automation capabilities and integration with Cisco devices
• Created technical requirements for product enhancements to support new services and device types in managed security offerings
• Developed KPIs and monitoring requirements for NMS platforms managing Cisco security infrastructure
• Integrated vulnerability assessment tools (Qualys) and SIEM solutions into managed security service offerings

• Monitored and responded to security events in 24/7 SOC environment, managing incidents across multiple client networks with 99.7% SLA achievement
• Configured and managed Cisco ASA firewalls, Checkpoint firewalls, and Symantec Mail Security for SMTP in multi-tenant environment
• Implemented site-to-site and remote access VPN solutions using Cisco ASA with security contexts and high availability failover configurations
• Deployed VPN solutions on Nortel platforms with RSA SecurID token-based authentication for secure remote access
• Created and tuned correlation rules in NetForensics SIEM for security event detection and incident management
• Performed firewall hardening and security optimization through ACL refinement and policy reviews
• Led ISO 27001 audit preparation, creating documentation and presenting evidence to external auditors
• Provided Tier 2/3 support for VPN, RSA authentication, and anti-spam issues via phone and email
• Conducted weekly customer review meetings presenting network equipment performance reports, uptime/downtime analysis and security posture updates
• Developed and maintained standard operating procedures (SOPs) and work instructions for security operations