// Cloud Security & IAM Engineer

I turn access sprawl into least-privilege,
by design.

Remediating access gaps, automating compliance, and hardening cloud infrastructure across Azure and AWS.

Security and compliance professional specializing in identity & access management, least-privilege access models, and cloud security architecture across Azure and AWS. Currently building hands-on cloud engineering skills through projects like this one.

  • Azure Entra ID
  • Managed Identity
  • AWS IAM
  • Python
  • PowerShell
  • SOC 2
  • NIST 800-53

Information Technology Analyst — Signature Performance, Inc.

Oct 2023 – Present
  • Remediate access control gaps and enforce identity and access policies (password policies, user permissions, change management workflows) within cloud and on-premises systems to reduce access-related security risk.
  • Strengthen access governance by implementing least-privilege policies and incident/event analysis across infrastructure and application controls; identify and remediate access provisioning gaps.
  • Improve SOC 2 audit preparation efficiency by designing alert filtering and reporting workflows that streamline control scope validation and simplify audit scope clarification.
  • Identify compliance gaps and coordinate remediation efforts across infrastructure and applications to reduce organizational risk.

Security & Systems Consultant — Auxidus Technologies

Dec 2024 – Present
  • Configure cloud platform security controls and identity management across cloud applications and infrastructure to enable secure deployments and multi-tenant environments.
  • Deploy cloud platform monitoring and security controls enabling threat detection and incident response using SIEM and identity management platforms.
  • Design secure cloud architectures and identity management solutions for client applications, evaluating security posture and recommending implementations to reduce deployment risk.
  • Review cloud integrations and APIs built into company solutions for security gaps and compliance readiness before client deployment, ensuring secure connectivity.

Web Systems Analyst — XPRIZE

Apr 2021 – Oct 2023
  • Resolved platform support tickets while maintaining high satisfaction scores, supporting access, infrastructure, and compliance requests.
  • Enforced least-privilege access controls and managed identity lifecycle via Azure AD across the organization, reducing access-related security risk and supporting compliance requirements.
  • Diagnosed and resolved complex infrastructure and application issues, improving system stability.
all projects →
  1. 01

    Cloud Security Operations Lab Infrastructure

    Multi-cloud SOC lab (Azure, AWS) with automated security controls, cloud-native SIEM, monitoring pipelines, and MITRE ATT&CK-mapped detection rules.

    Azure · AWS · SIEM view →
  2. 02

    Network Change Detection Tool

    Python/Flask tool detecting and alerting on infrastructure and network changes; audit trail and compliance reporting for change tracking.

    Python · Flask view →
  3. 03

    Cloud Resume (this site)

    Serverless portfolio website on Azure: static HTML/CSS/JS frontend, Python API (Azure Functions), Cosmos DB backend, Bicep IaC, GitHub Actions CI/CD, custom domain.

    Bicep · Azure Functions · Cosmos DB view →

Cloud

  • Azure Entra ID
  • Managed Identity
  • Azure Policy
  • Key Vault
  • Sentinel
  • AWS IAM
  • VPC
  • EC2
  • S3
  • Lambda

Languages & Tools

  • Python
  • PowerShell
  • Bash
  • SQL
  • Docker
  • Linux
  • Git

Expertise

  • Identity & Access Management
  • Least-Privilege Access Models
  • Cloud Security Architecture
  • Risk Assessment
  • NIST 800-53
  • FedRAMP
  • SOC 2
  • GDPR
  • HIPAA

Certifications

  • Security+
  • CySA+
  • PenTest+
  • CASP+
  • AZ-104

Education

  • Western Governors University — MS in Cybersecurity and Information Assurance
  • California State University, Channel Islands — BS in Business Administration