Jorge C.

• Designed and enforced security architecture and cloud guardrails across GCP, integrating Security Com mand Center and IAM controls to align with compliance and threat models.

• Conducted risk assessments for frontend and backend applications, generative AI, databases, infrastruc ture, middleware, and advanced advertising use cases.

• Developed automated security playbooks using Chronicle SOAR to reduce MTTR and standardize inci dent response processes.

• Built threat models in collaboration with DevOps to prioritize remediations for cloud-native attack vectors and infrastructure misconfigurations.

• Maintained endpoint visibility and coverage across macOS and Linux fleets using CrowdStrike, Kandji MDM, and Intune, ensuring adherence to baseline security requirements.

• Worked with Snyk and Cycode to detect vulnerabilities in code, dependencies, IaC, and secrets.

• Use of Vanta to comply with GDPR and NIST CSF

• Investigated and remediated security incidents across cloud and hybrid environments using Splunk.

• Developed detection content and response playbooks for Splunk SOAR, enabling automation of phishing triage and credential abuse cases.

• Responded to container threats, including cryptominers and webshells, in Kubernetes (GKE/EKS) and ECS environments.

• Created incident response workflows integrated with AWS GuardDuty and GCP Security Command Cen ter.

• Managed over 100 incidents of various types.

• Worked with Netskope, CrowdStrike, Microsoft Defender, ThreatGrid, threat intelligence tools, and net work security tools.

• Designed and deployed secure CI/CD pipelines in GitLab with integrated SAST, DAST, and dependency scanning, ensuring automated security enforcement.

• Led threat modeling and DevSecOps initiatives to identify and mitigate risks in AWS and Kubernetes deployments.

• Developed automation scripts and tools for threat detection, attack path analysis, and security posture assessments.

• Collaborated with audit and compliance teams to deliver Splunk dashboards and incident enrichment workflows aligned with security KPIs.

• Conducted red and blue team simulations to test detection capabilities and resilience against targeted attacks.