May 2024 – Jan 2025 · 8 mos · Toronto, Ontario, Canada · Hybrid

• Designed security architecture for zero-trust infrastructure access and IAM roles and user permissions provisioning across the organization.
• Developed, implemented and maintained security controls for the cloud infrastructure components (AWS).
• Automated and standardized the provisioning of security configurations with Terraform.
• Leveraged security observability and monitoring tools (Elastic Stack, Datadog, AWS CloudWatch, OpenSearch and GuardDuty) to build and manage detections to ensure infrastructure assets are protected against emerging threats.
• Actively engaged in the security incident response process by performing security investigation, containment, remediation and root cause analysis.
• Continuously improved documentation of infrastructure security configurations, processes, procedures and standards.
• Worked collaboratively with the compliance, development and production engineering teams to ensure the security measures are smoothly integrated with the existing workflows and satisfy the compliance requirements.
• Ensured the reliability and high availability of logging and monitoring systems – ELK (Elastic Stack).

Oct 2023 – Jun 2024 · 8 mos · Toronto, Ontario, Canada

Feb 2023 – Jun 2024 · 1 yr 4 mos · Toronto, Ontario, Canada

• Utilizing security automation and CI/CD pipeline methodologies and tooling (GitHub Actions, CircleCi Orbs, Terraform, Atlantis, Ansible) to optimize team productivity, increase operational efficiency and manage the infrastructure resources
• Deploying, improving and supporting the health state of security tools and services (CrowdStrike, ClamAV, Falco, Wazuh, OSSEC, Wiz, Suricata, Cloud Armor)
• Ensuring security in the cloud-native environment (GCP) by providing throughput monitoring, threat hunting, alerts creation, and potential security events investigation
• Participating and actively engaging in the incident response process as a security engineer on-call
• Automating the log ingestion and transformation, alerts configuration and deployment in Splunk and GCP
• Leveraging data engineering and analysis skills acquired in previous roles to solve data-driven problems (e.g., designing, building and deploying Apache Beam pipelines and Dataflow Templates to transfer massive streams of logs between systems, creating automated cloud functions to query CrowdStrike APIs and transform and further route received outputs using Go)
• Acting as a security champion by assisting with security education, providing security processes documentation and addressing security issues, concerns and questions
• Working collaboratively with the technical and business leaders across multiple teams (cloud platform, data, apps and solutions, product, compliance) to address pending issues and improve the secure state of the systems

Jul 2022 – Feb 2023 · 7 mos

• Maintained security posture through AWS security, application security, vulnerability management and penetration testing.
• Performed vulnerability scanning, assessing vulnerabilities with application owners and supervising remediation actions and status.
• Created, managed and updated security awareness training for different employee groups.
• Performed log monitoring and incident response.
• Performed vulnerability and threat management through asset inventory, risk assessment, penetration testing, system hardening and security controls implementation
• Maintained communication and collaboration with technical and business stakeholders on implementing security solutions and provided relevant documentation.

Dec 2020 – Jul 2022 · 1 yr 7 mos

• Designed, scheduled, monitored and optimized ETL jobs; solved complex workflow and data pipelines using Apache Airflow, CRON and MySQL.
• Fulfilled ad-hoc and long-term reporting project requests from business and technical leaders.
• Monitored and maintained the accuracy and quality of data.
• Providing documentation on implemented reporting solutions and educating stakeholders on manipulating data reports and dashboards.

Nov 2019 – Dec 2020 · 1 yr 1 mo · Cyprus

• Developed and managed sound and efficient stored procedures in MS SQL Server.
• Created and implemented reporting templates, quality checklists and standards across the team
• Crafted and communicated reporting team strategy; managed the teams’ workload and assisted in resolving issues of team members
• Worked collaboratively with business and technical stakeholders in defining, designing, planning and implementing reporting solutions
• Conducted data cleanup activities to ensure the integrity of data
• Created visually pleasing ad-hoc and routine reports for various internal & external audiences that enable business decision making

May 2019 – Nov 2019 · 6 mos

• Built and maintained real-time streaming ETL pipelines in the MS Azure environment
• Performed data modelling and visualization in Power BI Enterprise environment using DAX, M language, Power Query and SQL queries.
• Designed, developed and maintained ongoing metrics, reports, analyses, and dashboards to drive key business decisions
• Designed and developed and successfully delivered reporting for a new client. Incorporated time series telemetry data prediction in the custom-code Power BI visuals.
• Created an updated version of application documentation for new and existing customers.

Dec 2017 – May 2019 · 1 yr 5 mos · Kyiv City, Ukraine

• Delivered ad-hoc, custom and routine reporting on demand using a variety of tools: MS SQL Server, MS Excel and Power BI
• Worked cross-teams to facilitate technical problems and data issues and communicate functionality changes and updates for application improvement
• Automated business processes using BPA software solutions for multiple teams
• Designed user manual documentation on the corporate software for internal employees
• Quantified achievements and key results by creating KPI dashboards for company departments

Sep 2016 – Dec 2016 · 3 mos · Kyiv City, Ukraine

• Managed queries, complaints, and requests from international clients via phone, email, or chat
• Worked with a “sense of urgency” and sustained quick acceptable response time under 5 minutes in chat communications with over 5 clients concurrently