Dona G. Junias BONOU

Security Engineer @ Amazon

United Kingdom

About

With several years of specialized experience in offensive security, incident response, and digital forensics, I bring a deep passion for securing complex digital infrastructures. My expertise spans key areas including security monitoring, incident handling, Windows forensics, malware analysis, cybersecurity training, and penetration testing. I have successfully participated in bug bounty programs for industry leaders such as AT&T, LinkedIn, and MTN Group, discovering and reporting vulnerabilities that strengthened their security posture. Currently, my focus is on enhancing cyber-resilience through defensive security strategies. I work on digital forensics, threat intelligence, incident response, and application security aiming to improve overall security operations and fortify systems against emerging threats.

Experience

  • Security Engineer at Amazon
    Dec 2024 - Present · 1 yr 8 mos

  • Carnegie Mellon University Africa (Kigali City, Rwanda)
    • Cybersecurity Research Engineer
      Mar 2024 - Dec 2024 · 10 mos

    • Cybersecurity Research Associate
      Jan 2023 - Feb 2024 · 1 yr 2 mos

    • Graduate Teaching Assistant - Vulnerability Assessment and Testing
      Aug 2022 - Dec 2022 · 5 mos

      - Manage class lab environment and VMs - grade homework assignments and assign grades - hold office hours to answer the students' questions and help them with exercises

  • Cyber Security Consultant at Expertise France
    Jul 2022 - Sep 2022 · 3 mos

    • Designed and developed 21 Capture The Flag (CTF) challenges for HackerLab 2022, an international cybersecurity contest involving 15 countries from the Economic Community of West African States (ECOWAS) and Mauritania. • Ensured comprehensive coverage of 7 essential cybersecurity categories, including reverse engineering, web security, digital forensics, network monitoring, cryptography, mobile security, and steganography. • Tailored challenge difficulty levels for each category, accommodating participants with varying skill levels. • Provided clear instructions, accompanying files, and artifacts where applicable, enabling seamless deployment and execution of the challenges. • Produced high-quality write-ups for each challenge, delivering concise and informative documentation to enhance participants' learning experience.

  • Agence Nationale de la Sécurité des Systèmes d'Information (1 yr 6 mos)
    • Cybersecurity Analyst in bjCSIRT
      Apr 2020 - Jul 2021 · 1 yr 4 mos

    • Security Operations Center Analyst
      Feb 2020 - Apr 2020 · 3 mos

  • Network Technician at SBIN SA
    Aug 2018 - Aug 2018 · 1 mo