Create Your First Project
Start adding your projects to your portfolio. Click on "Manage Projects" to get started
My Project 2023 - 2024
Developed and Implemented a Security Risk Strategy: Spearheaded the design and execution of a comprehensive risk assessment and generate a strategy focused on prioritizing and mitigating vulnerabilities based on their assessed risk levels and broad impact on platforms or systems. This strategic approach enabled targeted defence mechanisms, reducing potential threats, and bolstering overall security resilience.
Vulnerability Management & Risk Evaluation: Spearheaded the transition and continuous assessment of vulnerability management systems, initially with Cisco Kenna and subsequently through ServiceNow Vulnerability Response since January 2024. Conducted thorough follow-ups and risk evaluations (for the purpose of risk register in FedEx) to ensure robust system integrity and security.
DevOps Collaboration & Security Enhancement: Collaborated closely with DevOps teams to streamline onboarding processes, significantly enhancing FedEx's security posture within CI/CD environments and application development. Led initiatives to refine security protocols and address vulnerabilities detected in development pipelines, particularly within GitHub.
Security Tool Integration: Successfully integrated and managed the AquaSec security dashboard for the European tenant, facilitating enhanced security measures and vulnerability management in Kubernetes environments (Azure aks). Worked in tandem with DevOps teams to rectify identified security gaps, thereby bolstering system resilience against potential triage of threats (log analytics).
Compliance & Data Privacy Strategy: Played a pivotal role in mapping and analyzing security gaps (risk assessment based on DPIA), identifying risks associated with data privacy, and developing strategic solutions. Crafted and implemented comprehensive rulesets (data protection plan,
mitigation measures via processes and technology) to address emerging compliance requirements in the EU, including DORA and NIS2 regulations. Additionally, ensured global compliance alignment with regulations such as SOX, GDPR, CCPA, HIPAA, and PCI DSS, enhancing organizational readiness and adherence to international data protection laws.