About
Cloud Security Engineer with hands-on expertise in web application protection. Experienced in implementing Cloudflare WAF security controls, Palo Alto firewall policies, and Zscaler secure access platforms (ZIA/ZPA) to protect enterprise environments from advanced cyber threats. Skilled in Azure Sentinel security monitoring, OWASP Top 10 mitigation, and packet analysis using Wireshark to investigate suspicious traffic and improve security posture.
Skills & Expertise (7)
Work Experience
Cloud Security Engineer
Emerson
Jun 2022 - Present
Implemented Cloudflare Web Application Firewall policies to secure enterprise web applications from application-layer attacks. Designed and deployed custom firewall rules, rate limiting, and geo-based filtering to block malicious requests. Monitored WAF logs and security events to identify bot activity, brute-force attacks, and injection attempts. Applied security controls aligned with OWASP Top 10 guidelines to strengthen web application protection. Optimized WAF rule sets to reduce false positives while maintaining effective threat blocking. Administered Palo Alto Next Generation Firewall policies, including application-based rules and access control. Implemented network segmentation and security zones to control traffic flow across enterprise networks. Analyzed firewall traffic logs to detect unauthorized access attempts and suspicious network behavior. Managed firewall policy updates, rule validation, and compliance with security standards. Configured Zscaler Internet Access (ZIA) to enforce secure web access and advanced threat protection. Deployed Zscaler Private Access (ZPA) for secure remote access to internal applications. Implemented Zero Trust Network Access (ZTNA) policies to strengthen identity-based access controls. Investigated user traffic and potential threats through Zscaler monitoring dashboards. Utilized Azure Sentinel SIEM for security log monitoring and alert investigation. Conducted incident analysis and security investigations using Sentinel queries and alerts. Developed monitoring improvements to enhance security visibility across enterprise systems. Performed packet capture and protocol analysis using Wireshark during incident investigations. Conducted network traffic analysis to detect anomalies and malicious communication. Assisted in security incident response and root cause analysis for network and application threats. Documented firewall and WAF configurations to support security audits and operational procedures.
Education
B.Sc: Computers - Adikavi Nannaya University
- 2022 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation
Skills (7)
Click a skill to find developers with the same skill
