Remote, USA

Leading cloud IAM architecture and security automation across enterprise AWS environments. Designing and implementing zero-trust access controls, automating IAM policy governance, and conducting internal red team exercises.

• ▶Architected enterprise-wide AWS IAM framework serving 5000+ identities with least-privilege enforcement
• ▶Built automated IAM policy analysis pipeline reducing over-privileged roles by 60%
• ▶Conducted internal red team engagements identifying critical privilege escalation paths
• ▶Designed and deployed AWS SSO integration with custom ABAC policies
• ▶Automated cloud security compliance reporting across 50+ AWS accounts

New York, USA

Performed offensive security assessments, penetration testing, and vulnerability research for enterprise clients across finance, healthcare, and technology sectors.

• ▶Executed 40+ penetration tests across web apps, mobile apps, APIs, and cloud infrastructure
• ▶Discovered multiple CVEs in production applications used by Fortune 500 companies
• ▶Built automated vulnerability scanning pipeline reducing assessment time by 45%
• ▶Led Active Directory red team engagements achieving domain admin in 90% of assessments
• ▶Mentored junior penetration testers and developed internal training programs

Remote

Conducted web application and network penetration tests, performed mobile application security assessments, and assisted in security research projects.

• ▶Performed 25+ web application penetration tests identifying critical vulnerabilities
• ▶Conducted Android and iOS mobile application security assessments
• ▶Developed custom Burp Suite extensions for automated vulnerability detection
• ▶Contributed to open-source security tools and CTF challenge development