Technical Skills

Technical Skills Portfolio

Security Compliance & Governance

PCI DSS 4.0 Expertise

Requirements Implementation:
  - Requirement 1: Network Security Architecture
  - Requirement 2: Secure System Configurations
  - Requirement 3: Data Protection & Encryption
  - Requirement 4: Secure Transmission
  - Requirement 5: Malware Protection

Other Compliance Frameworks

SOC 2 Type II: Trust Services Criteria implementation
ISO 27001: Information Security Management System
NIST CSF: Cybersecurity Framework adoption
CIS Controls: Security benchmark implementation

Cloud Security Architecture

AWS Security Services

Core Security Services:
├── IAM & Identity Center (SSO)
├── KMS (Key Management Service)
├── CloudHSM (Hardware Security Modules)
├── Secrets Manager
├── Certificate Manager

Threat Detection:
├── GuardDuty (Managed Threat Detection)
├── Security Hub (Security Findings Aggregation)
├── Detective (Security Investigation)
├── Macie (Data Discovery & Protection)

Kubernetes & Container Security

EKS Security Hardening

Cluster Security:
  - Control Plane Logging to CloudWatch
  - Secrets Encryption with KMS
  - IAM Roles for Service Accounts (IRSA)
  - Private Cluster Endpoints

Pod Security:
  - Pod Security Standards (Restricted profile)
  - Security Context Constraints
  - Read-only Root Filesystems

Certifications & Training

Professional Certifications

HashiCorp:
  - Terraform Associate
  - Vault Operations Professional

AWS (Udemy Completed):
  - Security Specialty
  - Solutions Architect Professional
  - DevOps Engineer Professional
  - Advanced Networking Specialty

Last Updated: March 2025