I build Wiz-driven CSPM workflows, remediation playbooks, Terraform guardrails, and audit-ready automation for teams that need speed without losing control.
I build practical cloud security workflows across AWS, Azure, Wiz, Terraform, Python, and SQL. My work focuses on turning security findings into repeatable operational processes: enrich the context, route to the right owner, validate remediation safety, and leave a clean audit trail.
This portfolio shows how I think as an engineer: not just identifying cloud risk, but designing systems that help teams respond faster while keeping control over production change.
Security architecture, identity, logging, monitoring, data protection, and incident response across AWS environments.
Resilient cloud design, networking, IAM, storage, compute, and cost-aware architecture foundations.
Infrastructure as code, reusable modules, state management, secure delivery patterns, and repeatable cloud provisioning.
Control result to SNS, SQS, Lambda, Assume Role, customer-account action, and audit record.
02 Alert Notification PlaybooksValidate payloads, enrich context, route issues, and send clear messages to owners.
03 Wiz API and GraphQL AutomationQuery Wiz issues, map controls, update automation logic, and support scalable security operations.
04 Azure NSG Exposure RemediationDetect and remediate risky inbound NSG rules using source, port, priority, and rule intent.
05 Audit Logging and MetricsTrack decisions, exceptions, failures, and operational metrics for audit-ready reporting.
06 Terraform Security InfrastructurePrivate S3, CloudFront, ACM, Route 53, versioning, encryption, and deployment discipline.