Information Security Engineer

World wide technology INC (01/24 — Current)

Primary technical point of contact and subject matter expert (SME) in organizational data protection, Data Loss Prevention (DLP), insider threats, security automation and cybersecurity operations.

• Orchestrate enterprise-wide Data Loss Prevention (DLP) controls using Microsoft Compliance / Purview, Microsoft Defender for Endpoint, CrowdStrike, Imperva, and Netskope.

• Curate numerous policies and procedures to protect the organization’s data and assets from exfiltration and insider threats by blocking uploads to unsanctioned repositories like cloud storage accounts, webmail, AI applications, and file converters – collaborate directly with internal IT and leadership teams to drive information protection initiatives.

• Deploy, configure, and maintain data protection tools, policies, and technologies to monitor, detect, and prevent data leakage, data exfiltration, and unauthorized data transfers using Microsoft Compliance / Purview, Microsoft Defender for Endpoint, Imperva, CrowdStrike, and Netskope.

• Design and implement comprehensive DLP policies in Microsoft Compliance / Purview & Netskope which detect passwords, API keys, PHI, PCI, PII, source code and IP.

• Design comprehensive controls to detect, monitor, and mitigate insider threats to the organization using Microsoft Compliance / Purview Insider threat policies.

• Implement eDiscovery solutions to mitigate litigation across the organization’s 12,000+ employees located around the world using Microsoft Purview.

• Collaborate within the SOC and across IT to mature SOC playbooks, alerting, processes, and Incident Response actions using Palo Alto XSoar, Microsoft Defender, and Microsoft Compliance / Purview.

IT Security Administrator

Zoltek Corporation, subsidiary of Toray (03/23 — 01/24)

Primary point of escalation for network, security, and systems. Primarily responsible for IT security across thousands of endpoints and 10+ locations in various regions including Hungary, Mexico and the US.

• Orchestrate and manage Palo Alto firewalls, VeloCloud SD-WANs, Global Protect VPN gateways, Meraki and Cisco routers, switches and access points across global network of 10+ locations.
• Implement security procedures, ensure global compliance and best-practices of policies across thousands of users and endpoints in 3+ countries using Microsoft Endpoint Manager, Microsoft Intune, Microsoft Defender for Office 365, Microsoft Compliance / Microsoft Purview, and F-Secure / WithSecure Elements.
• Monitor risk and remediate vulnerabilities using Kibana, Arcsight, WithSecure Elements Vulnerability Management, Microsoft Defender Vulnerability Management and Proofpoint (TAP).
• Secure and protect company assets by creating intricate Palo Alto policies, tailoring the WithSecure enterprise anti-virus on a per-user and per-department basis and blocking malicious emails and threat actors using Proofpoint and Microsoft Defender for Office 365.
• Design Microsoft Defender for Office 365 and Microsoft Compliance / Microsoft Purview policies for DLP and threats (Anti-Malware, Anti-Spam, Bulk-Email, Anti-Phishing, DLP / Data Loss Prevention, Insider Risk Management, Communication Compliance, Data Lifecycle Management, Compliance Manager etc.)
• Design Palo Alto profiles and policies across 10+ NGFWs (QOS, Security, NAT, Anti-Virus profiles, DLP / Data-Filtering profiles, Anti-Spyware profiles, Vulnerability Protection profiles, URL Filtering profiles, WildFire Analysis profiles, File Blocking profiles etc.)