Responsibilities:

• Lead cross-functional team of 8 engineers across software development, data engineering, DevSecOps, and security operations, delivering solutions for enterprise clients in finance, telecom, and government sectors with medium to strict compliance requirements.
• Design secure, scalable cloud architectures aligned with business and compliance requirements; provide technical consulting to C-level stakeholders on infrastructure strategy, security posture, and digital transformation initiatives.
• Architect and develop enterprise compliance systems including automated sanctions screening pipeline extracting structured data from regulatory sources (OFAC, UN, EU sanctions lists), deployed on Kubernetes with monthly refresh cycles for financial institutions.
• Conduct technical hiring assessments, evaluate engineering candidates, and implement Agile/Scrum methodologies to improve team productivity and project delivery across distributed teams spanning multiple time zones (GMT+0 to GMT+2).
• Coordinate complex projects integrating DevSecOps practices, data engineering pipelines, and cybersecurity solutions while managing stakeholder expectations and ensuring alignment with organizational security frameworks including ISO 27001, PCI DSS, GDPR and OWASP Top 10 guidelines.
• Conduct security assessments and penetration testing for banking and telecom clients, identifying vulnerabilities and implementing remediation strategies aligned with ISO 27001, PCI DSS, and GDPR frameworks.
• Perform purple team exercises combining offensive and defensive security techniques, testing organizational defenses through simulated attacks while evaluating detection capabilities and incident response procedures.

Responsibilities:

• Integrated SAST, DAST, and SCA security testing tools (Snyk, SonarQube, OWASP ZAP, Trivy) into CI/CD pipelines, reducing production vulnerabilities by 70% through automated security scanning and remediation of OWASP Top 10 vulnerabilities.
• Built credit scoring data platform processing 100GB+ financial data using medallion architecture (Bronze → Silver → Gold) with Apache Airflow orchestration, enabling data-driven lending decisions and risk assessment.
• Developed ML-powered credit scoring engine using Explainable Boosting Machine (EBM) models with FastAPI REST API for real-time credit risk predictions, improving accuracy and explainability for regulatory compliance.
• Implemented SOC operational procedures for client organizations, deploying SIEM solutions (ELK Stack), creating custom detection rules aligned with MITRE ATT&CK framework, and establishing incident response workflows.
• Conducted comprehensive security audits across AWS and GCP cloud environments, remediating IAM misconfigurations, network security gaps, and compliance violations based on ISO 27001, PCI DSS, and GDPR requirements.
• Developed secure Infrastructure as Code templates using Terraform with policy-as-code validation (Checkov, Terrascan) to prevent security misconfigurations before deployment and enforce security best practices.
• Automated secure Kubernetes deployments with ArgoCD GitOps workflows, implementing Pod Security Standards, network policies, and container security scanning to harden orchestration environments.
• Performed penetration testing and vulnerability assessments for banking and telecom clients, identifying critical security weaknesses, conducting exploit simulations, and delivering detailed remediation roadmaps.
• Built and maintained cloud infrastructure on AWS and GCP using Terraform (IaC), managing Kubernetes clusters, implementing auto-scaling, and optimizing resource utilization for cost efficiency.
• Delivered technical training on DevSecOps best practices and conducted educational webinars on technologies including Git, Vim, Kubernetes, and secure development workflows for internal teams and client organizations.
• Provided IT audit support by documenting technical controls, conducting compliance gap analyses against security frameworks, and producing comprehensive audit reports for management review and regulatory examination.

Responsibilities:

• Developed secure RESTful APIs and backend microservices using Python (Django) and PHP (Laravel) implementing “security by design” principles including input validation, secure authentication (JWT), and OWASP Top 10 vulnerability prevention.
• Designed and optimized PostgreSQL and MySQL database schemas for product catalogs, order management, and customer data, implementing query optimization, indexing strategies, and automated backup procedures.
• Integrated payment gateway APIs and inventory management systems, ensuring PCI DSS compliance for payment processing and implementing fraud detection mechanisms for e-commerce transactions.
• Built automated testing frameworks and CI/CD pipelines using GitLab CI, embedding security testing and code review processes into Agile workflows, reducing production security defects.
• Led cross-functional development teams, establishing secure coding standards, conducting technical code reviews, and mentoring junior developers on security best practices and software engineering principles.

Responsibilities:

• Provided ongoing technical consultation and software development support for additional projects while maintaining primary engineering role, demonstrating capability to manage multiple parallel workstreams.
• Supported e-commerce platform maintenance, bug fixes, and feature enhancements during off-hours, ensuring continuous system availability and rapid response to critical issues.
• Collaborated with distributed team members across time zones to coordinate releases, manage deployments, and troubleshoot production incidents affecting customer-facing systems.

Responsibilities:

• Provided 24/7/365 technical support for Linux (CentOS, Ubuntu, Debian) and Windows Server hosting environments across VPS, cloud, and dedicated server platforms serving enterprise and SMB clients.
• Managed heterogeneous server infrastructure including web servers (Apache, IIS, Nginx), database systems (MySQL, MSSQL, PostgreSQL), mail servers (Postfix, Exchange), and DNS services for hosting customers across multiple continents.
• Implemented server security hardening including firewall configuration (iptables, Windows Firewall, CSF), DDoS mitigation, SSH/RDP access control, malware remediation, and security patch management to protect customer hosting environments.
• Administered Windows Server environments including Active Directory user management, Group Policy configuration, PowerShell automation for routine tasks, and Windows Update deployment for enterprise hosting clients.
• Performed Linux systems administration tasks including user account management, file permissions, cPanel/WHM administration, resource monitoring, backup verification, and performance optimization to maintain 99.99%+ service uptime.
• Utilized scripting (Bash, PowerShell, Python) to automate routine support tasks, implement custom monitoring solutions, troubleshoot complex technical issues, and streamline operational workflows for efficiency.
• Documented technical procedures and created comprehensive knowledge base articles, working with trained team members on support workflows, contributing to improved first-response times and customer satisfaction metrics.

Responsibilities:

• Supported clinical IT systems including Electronic Health Records (EHR), patient management software, and pharmacy systems critical to HIV/AIDS patient care delivery and confidentiality.
• Maintained security controls to protect sensitive patient health information (PHI), ensuring compliance with HIPAA regulations through access controls, encryption, and audit logging.
• Troubleshot hardware and software issues for clinical staff, providing rapid response to minimize disruption to patient care and ensuring continuity of medical services.
• Assisted with IT asset management, software licensing, and system updates, maintaining inventory records and coordinating with vendors for procurement and technical support.
• Assisted with secure data backup procedures, disaster recovery testing, and network troubleshooting to support clinic operations serving vulnerable patient population with strict privacy and security requirements.