Information Security Engineer with 3+ years of experience in IAM, SIEM operations, and cloud security. Currently at Guardian's Embrace, building and monitoring security controls for nonprofit organizations. Previously a Cybersecurity Analyst at KPMG, where I deployed IAM infrastructure for 10,000+ users and improved incident detection.
MS in Cybersecurity, Northeastern University.
- IAM - SailPoint IIQ, Saviynt, RBAC, JML workflows, SoD policy enforcement
- Security Operations - Splunk SIEM, incident response, threat hunting, log correlation
- Cloud Security - AWS (IAM, EC2, S3, Lambda, CloudTrail, GuardDuty), Docker, Kubernetes
- Automation - Python and Bash for IR workflows, access reviews, compliance reporting
- Frameworks - NIST 800-53, ISO 27001, MITRE ATT&CK, Zero Trust, OWASP Top 10, HIPAA, SOX
| Project | Description |
|---|---|
| Kaisura AI-Cloud Security Framework | Enterprise AI-cloud security framework with 30+ KPIs aligned with NIST AI RMF, ISO 27001, OWASP LLM Top 10 |
| Incident Response Playbooks | IR playbooks and templates for real-world security scenarios |
| Alerting Pipeline | Python automation integrating Splunk SIEM with ServiceNow/Jira for alert triage |
| Penetration Testing Lab | SMB/SSH exploitation, privilege escalation, brute-force, and metadata analysis write-ups |
| Article | Topic |
|---|---|
| Securing AI in the Cloud: Inside KAICSF | AI governance framework - NIST AI RMF, OWASP LLM Top 10, HIPAA healthcare use case |
| When the Cloud Falls | Network risk analysis of AWS US data centers - spectral radius, cascading failure thresholds |
| The Compliance Trap | AI code generation compliance risks - IP ownership, vendor due diligence, regulatory landscape |
- AWS Certified Cloud Practitioner
- CompTIA Security+
- Google Cybersecurity Professional Certificate
- TryHackMe: Top 3% globally · tryhackme.com/p/Sam5
