01 / ARCHITECTURE
Zero-Trust Infrastructure
▸ Hover to verify clearance
Redesigned enterprise network perimeter from implicit trust to full micro-segmentation.
Deployed identity-aware proxies, mTLS service mesh, and continuous validation across
600+ endpoints. Reduced lateral movement surface by 94%.
Zero Trust
mTLS
ZTNA
BeyondCorp
↗
02 / IT/OT CONVERGENCE
IT/OT Security
▸ Hover to verify clearance
Secured converged IT/OT environment across hospital network. Isolated legacy medical
devices using unidirectional gateways, deployed ICS-aware IDS (Dragos), and achieved
HIPAA/NIST 800-82 compliance without disrupting clinical workflows.
ICS Security
HIPAA
Dragos
Network Isolation
↗
03 / DETECTION
Automated Threat Intel Pipeline
▸ Hover to verify clearance
Built end-to-end threat intelligence pipeline ingesting 40+ OSINT feeds.
Automated CVE triage mapped to internal asset inventory (Palo Alto, Splunk stack).
Reduced mean time to detect from 72h to under 4h.
Splunk
SOAR
CVE Triage
OSINT
↗
04 / ADVERSARY SIM
Red Team Framework Build
▸ Hover to verify clearance
Architected internal adversary simulation capability from scratch. Built isolated
attack lab with full OWASP Top 10, AD exploitation, and C2 infrastructure.
Delivered 12 purple team exercises with measurable control improvements.
Red Team
C2
Active Directory
OWASP
↗
05 / CLOUD
Cloud Security Hardening
▸ Hover to verify clearance
Hardened multi-cloud environment (GCP + AWS) using CIS benchmarks, enforced
least-privilege IAM, deployed CSPM tooling (Prisma Cloud), and built security-as-code
pipeline for infrastructure drift detection.
GCP
AWS
Prisma Cloud
IaC Security
↗
06 / INCIDENT RESPONSE
IR Playbook Automation
▸ Hover to verify clearance
Designed and automated 24 incident response playbooks in XSOAR. Reduced analyst
decision fatigue, cut MTTR by 61%, and integrated with ticketing, SIEM, EDR,
and communication channels for full-loop containment.
XSOAR
EDR
MTTR
Automation
↗