About
Information Security Analyst with 3+ years of experience in secure cloud platforms (AWS, GCP, Kubernetes) and production environments. Support risk assessment, internal security reviews, vendor security checks, and security control implementation across fintech and healthcare systems. Strong in vulnerability remediation, IAM governance, audit logging, incident response coordination, and preparing evidence-ready documentation for security and compliance stakeholders. Known for a collaborative, detail-oriented approach and ability to turn complex technical findings into clear risk, impact, and remediation actions aligned with frameworks such as ISO 27001, SOC 2, NIST CSF, PCI DSS, and CSA STAR.
Skills & Expertise (35)
Work Experience
Security&Risk Support - Enterprise Multivendor Warranty&Vendor Management Platform
JM Works
Sep 2024 - Present
Supported internal security reviews and audit-style activities by collecting evidence, validating control implementation, and tracking remediation actions to closure. Reviewed vendor access permissions and data-handling practices for 100+ vendors to support third-party security risk awareness. Investigated CloudWatch and GuardDuty alerts, correlated security events with infrastructure and application logs, and coordinated incident response with engineering teams. Implemented IAM least-privilege access, RBAC, secrets management, encryption, and centralized audit logging to strengthen security control. Provided security input into new features and cloud configuration changes so that basic security and compliance expectations were considered before release.
Security&Compliance Support - PyFintech CRM (Fintech CRM)
JM Works
Dec 2023 - Aug 2024
Supported review of AWS payment-processing workloads serving 500+ customers and 1000+ transactions per month to identify control gaps and security risks. Tracked vulnerabilities and configuration issues in banking-related infrastructure and followed up on remediation within defined timelines. Assisted secure release and change practices in CI/CD environments to maintain expected security and compliance standards across deployments. Helped keep stakeholders informed of security-relevant findings and remediation progress for payment-related systems through concise updates.
Security&DevOps Engineer - Healthcare Operations Dashboard
JM Works
Jan 2023 - Nov 2023
Provisioned and reviewed GCP security controls including GKE, VPC networking, IAM, and centralized logging to support secure patient-data workflows for 50+ hospital staff. Configured logging, alerting, and incident response workflows, reducing incident detection time by approximately 20%. Provided access review support for clinical staff roles and maintained documentation of operational controls to aid internal security reviews. Supported communication of secure usage and access practices to hospital staff as part of everyday operational workflows.
Education
B.E. Computer Science and Engineering - Dhanalakshmi College of Engineering, Anna University
2019 - 2023 ยท Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (35)
Click a skill to find developers with the same skill