Aleksei Larkin
Chicago,United States
Summary
A highly skilled Azure Cloud Security Engineer with extensive expertise in securing cloud environments and implementing advanced security measures. Adept at managing cloud security posture and leveraging a range of security solutions to protect digital assets. Proficient in enhancing security architecture, improving security posture, and leading digital transformation initiatives. Demonstrates a strong background in networking and excels in designing resilient cloud infrastructures. Proven track record of collaborating with various organizations to deliver effective and innovative security solutions.
Overview
6
6
years of professional experience
1
1
Certification
Work History
M365/Azure Security Engineer
AT&T
06.2022 - Current
- As a M365/Azure Security Engineer at AT&T, I am responsible for securing and optimizing Microsoft 365 and Azure environments, ensuring robust security and compliance across our cloud infrastructure
- My role involves leveraging my expertise in Azure security solutions, cloud architecture, and identity management to enhance the security posture of our systems and applications
- Key Achievements: Enhanced Security Posture: Successfully implemented and configured advanced Azure security solutions, including Entra-ID, Microsoft Intune, Microsoft Sentinel (SIEM), and Microsoft 365 Defender
- Cloud Security Optimization: Proficiently managed Cloud Security Posture Management (CSPM), implemented endpoint protection strategies using EDR, and integrated Cloud Access Security Broker (CASB) solutions to safeguard against threats
- Automation and Infrastructure Management: Automated security and compliance tasks using Terraform to manage multi-region infrastructures, ensuring consistent and secure deployments across environments
- Monitoring and Incident Response: Established and fine-tuned monitoring systems for Azure environments, leveraging tools like Azure Monitor and Sentinel (SIEM) to proactively detect and respond to security incidents
- Configuration and Compliance: Developed and enforced security policies for Azure resources, leveraging Role-Based Access Control (RBAC) and Multi-Factor Authentication (MFA) to enhance access control and identity management
- Streamlined Security Processes: Created and managed Terraform modules to automate infrastructure deployments, improving the efficiency and consistency of security configurations.
Cloud Security Engineer
Slalom
09.2019 - 05.2022
- In my role as a Cloud Security Engineer at Slalom, I was instrumental in developing and securing a robust multi-cloud infrastructure for one of the leading telecommunications companies in the US
- My focus was on ensuring the environment's stability, efficiency, and security to support continuous delivery and deployment of services and applications
- Key Achievements: Multi-Cloud Infrastructure: Designed and implemented a secure multi-cloud architecture using Infrastructure as Code (IaC), enhancing the stability and efficiency of the deployment environment
- Disaster Recovery: Developed and executed comprehensive disaster recovery strategies that significantly reduced downtime during deployments, ensuring high availability and business continuity
- Network Security: Effectively implemented a network configuration management system to strengthen network security, streamline configuration processes, and enforce consistent security policies across environments
- Security Best Practices: Applied best practices in cloud security to safeguard infrastructure and applications, leveraging tools and frameworks to enhance threat detection and response capabilities.
Cloud Administrator
Peapod
09.2018 - 08.2019
- As a Cloud Administrator at Peapod, I was responsible for managing and optimizing the company’s cloud infrastructure, ensuring high availability and performance of cloud resources
- My role included responding to incidents, managing deployments, and implementing best practices in configuration management and Infrastructure as Code (IaC)
- Key Achievements: Cloud Infrastructure Management: Designed and administered scalable cloud environments, ensuring efficient resource utilization and stability of cloud services
- Containerization and Orchestration: Successfully implemented containerization technologies like Docker and orchestrated container management using Kubernetes, enhancing deployment flexibility and scalability
- Automation and CI/CD: Transitioned automation processes from Jenkins to GitHub Actions, streamlining workflows and improving deployment efficiency
- Disaster Recovery: Developed and tested a comprehensive disaster recovery plan for EC2 instances, including the automation of failback mechanisms to ensure quick recovery and continuity.
Education
Bachelor of Science - Computer Science
Moscow Technology Institute
RussiaSkills
- Entra-ID
- Azure Cloud
- AWS Cloud
- Privileged Identity Management (PIM)
- Microsoft Intune
- Microsoft Sentinel (SIEM)
- Microsoft 365 Defender
- Cloud Security Posture Management (CSPM)
- Microsoft Defender for Endpoint EDR
- IAM
- Conditional Access
- AD Connect
- KQL
- Azure Policies
- MCAS
- Role Based Access Control (RBAC)
- Nessus
- Endpoint Detection and Response (EDR)
- Zero Trust
- Cloud Access Security Broker (CASB)
- Networking
- Bash
- Git
- GitHub
- Unix OS
- Windows OS
Certification
- Azure Administrator Associate
- Azure Security Engineer Associate
- AWS Solution Architect
- EKS Certified Kubernetes Administrator
- HashiCorp Certified Terraform Associate
- AWS Cloud Practitioner
Timeline
M365/Azure Security Engineer
AT&T
06.2022 - Current
Cloud Security Engineer
Slalom
09.2019 - 05.2022
Cloud Administrator
Peapod
09.2018 - 08.2019
Bachelor of Science - Computer Science
Moscow Technology Institute