United States
Most cloud environments are not breached because of lack of security tools, they are breached because security is not built into how systems are designed, deployed, and scaled. I am a Cloud Security Engineer specializing in securing AWS environments, implementing DevSecOps practices, and protecting cloud infrastructure from misconfigurations, identity risks, and compliance gaps. I don’t just secure systems, I design cloud environments where security is embedded by default, not enforced after failure. My work focuses on helping teams deploy faster without introducing risk, by integrating security directly into infrastructure and CI/CD pipelines. Core Expertise • Securing AWS infrastructure using IAM, KMS encryption, and network security controls. • Building and securing CI/CD pipelines (GitHub Actions, Terraform) with integrated security checks. • Automating cloud operations and security workflows using Python and AWS Lambda. • Implementing monitoring and threat detection using CloudWatch, GuardDuty, Security Hub, and Datadog. • Enforcing NIST 800-53 and CIS Benchmarks to strengthen compliance and reduce operational risk. • Designing and supporting secure Infrastructure as Code (IaC) adoption across teams. How I Add Value • Reduce attack surface through least-privilege access and identity control. • Detect and respond to threats using cloud-native security tooling. • Improve deployment confidence through DevSecOps practices. • Help teams build secure, scalable, production-ready systems. Focus Cloud Security • AWS Security • DevSecOps • IAM • CI/CD Security • Terraform • Python • Compliance (NIST, CIS). If you're building in AWS and need a Cloud Security Engineer who understands both security and real-world delivery at scale, let’s connect. Email: [email protected]
• Designed and secured CI/CD pipelines using GitHub Actions, enabling automated and reliable deployments. • Enforced least privilege access controls using IAM policies, reducing unauthorized access risks. • Integrated automated security scans (KICS, Regula) into pipelines for early vulnerability detection. • Implemented monitoring and threat detection using CloudWatch, GuardDuty, Security Hub, and Datadog. • Strengthened data protection using AWS KMS encryption and TLS protocols. • Developed reusable Terraform modules for scalable and consistent infrastructure deployment. • Eliminated static credentials using GitHub OIDC integration with AWS. • Applied NIST 800-53 and CIS Benchmarks to enforce compliance and reduce operational risk. • Collaborated with teams to design secure IAM architectures and access control frameworks. • Guided engineering teams in adopting secure Infrastructure as Code practices.
• Designed and deployed AWS infrastructure (EC2, S3, IAM, CloudFormation, Route53). • Built CI/CD pipelines using AWS CodePipeline for automated deployments. • Implemented monitoring dashboards using Datadog for system visibility and alerting. • Strengthened cloud security using Security Hub, GuardDuty, and AWS Config. • Optimized storage and cost efficiency using S3 lifecycle policies. • Designed secure network architecture using security groups and network ACLs. • Automated cloud operations using Python and AWS Lambda. • Supported teams with AWS account provisioning, IAM roles, and access control.