Kennedy T.

Co-Founder

Berlin, Germany22 yrs 5 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Pioneered security chaos engineering sub-discipline.
  • Co-founded Mitigant for innovative cloud security solutions.
  • 6x AWS Community Builder sharing insights and trends.
Stackforce AI infers this person is a Cloud Security Expert with a focus on innovative engineering practices.

Contact

LinkedIn

Skills

Core Skills

Cloud SecurityCyber SecurityDevsecops

Other Skills

Information Security ManagementResearchAWSGoogle CloudChaos EngineeringTechnical Security ControlsVulnerability ManagementCloud Security OperationsVulnerability AssessmentPenetration TestingNetwork SecurityCloud ComputingMachine LearningAmazon Web Services (AWS)Java

About

Thank you for visiting my profile! πŸ™Œ πŸ”₯ I’m passionate about shaking up cloud security with fresh, innovative engineering practices. Creatively challenging the status quo is a precedent of my innovativeness; for example, it led me to become a pioneer of the security chaos engineering sub-discipline. I advocate that security systems should be validated continuously rather than following a trust-by-default mindset. Ultimately, this mindset emphasizes a shift from cybersecurity to cyber resilience. πŸ”₯ Ultimately, I co-founded Mitigant to help organizations adopt practical, innovative cloud security solutions that go beyond the usual checkbox approaches. At Mitigant, we provide actionable insights and strategies that genuinely supercharge cloud security for our customers. We help our customers to identify and solve real problems rather than imaginary ones. πŸ’₯ As a 6x AWS Community Builder, I'm deeply involved in the AWS community, sharing my thoughts and experiences through various platforms. You'll often find me writing about the latest trends and findings in my blogs, publications and social media posts. πŸ’₯ I'm no longer active in academic research. My focus has shifted to industry research, where I can make a more immediate impact, using Mitigant as a vehicle. I invite you to explore some of my work and see if it helps you somehow: Check out my writings: πŸ‘‰ Mitigant Blog: https://mitigant.io/blog πŸ‘‰ Medium: https://run2obtain.medium.com πŸ‘‰ dev.to: https://dev.to/run2obtain And my academic contributions: πŸ‘‰ ResearchGate: https://www.researchgate.net/profile/Kennedy_Torkura πŸ‘‰ Google Scholar: https://scholar.google.com/citations?user=OEiNSGAAAAAJ&hl Other interesting places to find me πŸ‘‰ GitHub: https://github.com/SyCode7 πŸ‘‰ Speakerdeck: https://speakerdeck.com/ktorkura/ 🀝 Let’s connect and explore how we can push the boundaries of cloud security together!

Experience

22 yrs 5 mos
Total Experience
4 yrs 11 mos
Average Tenure
12 yrs 6 mos
Current Experience

Firebolt

Senior Cloud Security Researcher

Oct 2021 – Jan 2022 Β· 3 mos

  • Worked directly with the CISO on various tasks including:
  • Research, understand and analyze cloud environments.
  • Architect, design, and provide implementation best practices of technical security controls and hardening guidelines.
  • Translating security analysis feedback into infrastructure and application improvements.
  • Define and improve security controls for internal and external systems, products, processes, and policies.
Cloud SecurityTechnical Security Controls

Mitigant

Co-Founder & CTO

Jun 2021 – Present Β· 4 yrs 11 mos Β· Internet

  • ✨ BUILD CONFIDENCE in your cloud security posture ✨
Cloud SecurityCyber SecurityInformation Security Management

2hearts

Community Member

Mar 2021 – Present Β· 5 yrs 2 mos

  • Building tomorrow's tech society with cultural diversity:
  • 2hearts is a (non-profit) community of people with immigration backgrounds from the tech scene (founders, investors, top executives) with the mission to help underprivileged minorities.

Mattermost

Cloud Security Engineer

Dec 2020 – Jun 2021 Β· 6 mos

  • Vulnerability management for container ecosystems using several tools e.g. Docker Bench Security and Trivy Container Security Scanner.
  • Security incident response for the cloud infrastructure using several tools & strategies for triaging, analyzing and reacting to security alerts/events.
  • Deployed and managed several security tools used by the development and operations teams e.g. Teleport (a unified access control system) and Dependency Track (a continuous component analysis platform)
  • Cloud-native security operations for multi-account AWS infrastructure using tools including AWS GuardDuty, Cloudtrail, SecurityHub and Panther.
  • Leveraged GitOps and Infrastructure-as-Code (Terraform and Packer) for cloud security.
Vulnerability ManagementCloud Security OperationsCloud Security

Data4life (formerly gesundheitscloud)

Information Security Engineer

Oct 2019 – Nov 2020 Β· 1 yr 1 mo Β· Berlin Area, Germany

  • Cloud security
  • Container security
  • Vulnerability assessment
  • Coordination & technical validation of HackerOne Bug bounty reports
  • Threat modelling sessions with technical & non-technical teams
  • Security Monitoring and Investigation (AlienVault, ELK)
Cloud SecurityVulnerability Assessment

Hasso plattner institute

Doctoral Candidate

Nov 2013 – Present Β· 12 yrs 6 mos Β· Potsdam, Germany

  • Most of my academic publications are available on this link - https://scholar.google.co.uk/citations?user=OEiNSGAAAAAJ&hl=en
  • Conducted research on employing erasure coding techniques and cryptographic primitives to secure multi-cloud storage in collaboration with industrial partners (Bundesdruckerei & neXenio).
  • Leveraged open source tools e.g OWASP ZAP, Anchore, Netflix Eureka and Mattermost to design and develop a practical DevSecOps system to tackle container and application vulnerabilities while employing ChatOps for collaboration.
  • Designed and developed a prototype cloud security posture management system for proactively detecting and responding to malicious activities on AWS and Google cloud platforms.
  • Designed and developed Risk-driven Fault Injection, a novel technique for applying chaos engineering principles to cloud security.
  • Designed & implemented innovative security event correlation algorithms to support agile cloud security incident response.
  • Organised and taught academic lectures and seminars on cloud security engineering using project-based, software development approaches.
  • Tools/Tech
  • DevSecOps - OWASP ZAP, Anchore, Mattermost, OpenVAS, Jenkins, Arachni, ELK. Terraform, Datadog
  • AWS - SecurityHub, Guarduty, Config, Inspector, Cloudtrail, Cloudwatch
  • Google - Stackdriver
DevSecOpsCloud SecurityResearch

Peculiar technologies

2 roles

Information Security Analyst

Promoted

Sep 2010 – Nov 2013 Β· 3 yrs 2 mos

Network Administrator

Nov 2003 – Aug 2010 Β· 6 yrs 9 mos

Education

Hasso Plattner Institute

Doctor of Philosophy β€” Cyber Security

Jan 2013 – Jan 2025

Lancaster University

MSc β€” Cyber Security

Jan 2011 – Jan 2012

Obafemi Awolowo University

Post Graduate Diploma β€” Electronics and Telecommunication Engineering

Jan 2006 – Jan 2007

Stackforce found 100+ more professionals with Cloud Security & Cyber Security

Explore similar profiles based on matching skills and experience

Krishnendu De

Krishnendu De

Head InfoSec & CISO (CESC Limited)

at RPSG Power Business

India25 yrs 9 mos exp
Operational Technology Cyber SecuritySecurity Architecture and EngineeringCybersecurity StrategyManagement ConsultingIdentity & Access Management (IAM)
Cody K.

Cody K.

Senior Consultant | Cybersecurity & Technology

at Meliora

Hong Kong, Hong Kong2 yrs 7 mos exp
Technical RecruitingCybersecurity
PD

Pradip Das

Solution Engineer - Security

at Microsoft

Dubai, United Arab Emirates10 yrs 9 mos exp
Cloud Security ArchitectureKubernetes SecurityMicrosoft SentinelSIEMPre-Sales Consulting
Dhruv Sharma

Dhruv Sharma

Senior Professional Services Consultant

at Cloudflare

Amsterdam, Netherlands8 yrs exp
Mihir Kotak

Mihir Kotak

Senior Security Engineer

at Amazon Web Services (AWS)

Canada13 yrs 3 mos exp
Application SecurityCloud Security
Gopi Kaveripakkam

Gopi Kaveripakkam

Cybersecurity Architect

at eInfochips (An Arrow Company)

Chennai, India24 yrs 8 mos exp
Application SecurityCybersecurity Risk ManagementCybersecurity SolutionsDevSecOpsEmbedded Testing
Chintan Gurjar

Chintan Gurjar

Cyber Threat Detection Manager

at GKN Automotive

London, United Kingdom12 yrs 6 mos exp
Application SecurityCyber Threat Hunting (CTH)Cyber Threat Intelligence (CTI)Detection EngineeringIT Security Assessments
Krutin Karia

Krutin Karia

Product Security Leader

at Atlassian

Bengaluru, India20 yrs 2 mos exp