Cloud Design and Deployment

Design of landing zones, deploy and operate Cloud Services applying well architected frameworks from each CSP (Azure, AWS, GCP).

Expertise on several services from different vendors:

Iaas: VMs, EC2, Compute Engine, VNet, VPC, Express Route, Direct Connect, VPN S2S.

Paas: AppService, AppGateway, BlobStorage, Service Bus, S3, ELB, AzureSQL. 

 

Security Assessment and Compliance

Evaluate cloud environments and identify security gaps based on frameworks (CIS, CSA, NIST, etc.)

Define a roadmap to remediate high priority vulnerabilities. 

Enforce security settings using policies (PaC) and automate configurations.

Improve governance and compliance through the use of native and third party tools like:

Microsoft Defender for Cloud, AWS Security Hub, PaloAlto Prisma Cloud.

DevOps and CI/CD

Setup and support DevOps operations and CI/CD process. Align them with security best practices.

Design, implement and troubleshoot Infrastructure as Code (IaC) for Continuous Deployment.

Application of agile methodologies and understanding of modern deployment strategies.

Use of automation tools for deployment and operation:

Terraform, AWS Cloud Formation,

Azure Bicep/ARM/DSC.

IT Skills

More than 15 years of IT experience in activities like: Networking, Applications, Datacenter, etc.

Advanced knowledge of networking and security technologies like: Cisco, PaloAlto, HP Aruba, Sophos, etc.

Expertise implementing and managing security solutions like EDR/XDR, Firewalls, DLPs, SIEM, CSPM. Full understanding of most common services and protocols: LDAP, DNS, Active Directory, SNMP, HTTP/S, SSL/TLS, REST etc.