Amantai Al
Chicago,IL
Summary
With over 5 years of experience in the Cloud Security industry, my expertise lies in implementing cloud solutions in a secure manner and providing security best practices to keep the organization data secure. Throughout my career, I worked with Azure Cloud services and Microsoft Defender security suite as well as Azure Sentinel SIEM solution.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Azure Cloud Security Engineer
Bank Of America
05.2023 - Current
- Plan and deliver Azure cloud security solutions
- Registered Users created groups and enabled access to resources and applications located on On-premises and Cloud
- Adhered to governance and compliance through continuous monitoring and application of policies on Virtual Machines, Virtual Networks, and applications
- Configured, managed, secured, and monitored applications in both On-premises and cloud
- Implemented and managed Nessus vulnerability management, threat management, monitoring, and remediating vulnerabilities on premise and Cloud infrastructure
- Answer technical and procedural questions for less experienced team members, teach improved processes, and mentor team members
- Working closely with the Security Compliance team to make sure Azure Tenant complies with CIS benchmark and NIST-800 requirements
- Worked as a PIM administrator
- Implementing Conditional Access policies, risky user/ risky sign in policies and troubleshooting any user access issues
- Familiar with Azure hub and spoke topology, NSGs, Azure Bastion, Private Endpoints
- Implementing Azure Sentinel and integrating with various log sources in Azure and review the daily PIM request
- Creating Azure MCAS policies and investigating suspicious activities
- Developed and improved monitoring and visibility capabilities of information systems, and acted as a technical leader for security incident detection, response, handling, and forensics
- Working on Azure Security Center ( Defender for Cloud ) recommendation to harden and Azure tenant.
Azure Cloud Security Engineer
Clearcover
12.2021 - 04.2023
- Implementing and troubleshooting Defender for Endpoint EDR
- Experience with Intune creating ASR policies, deploying third party applications and implementing security baseline for cooperate devices
- Creating alerts and doing investigation on Defender for Endpoint
- Vulnerability Management with Defender for Endpoint and working closely with Cloud Engineering team to remediating Vulnerabilities
- Experience with Microsoft Purview DLP polices and creating alerts
- Implemented MCAS and worked on policies and alerting.
Microsoft Azure Cloud Administrator
Robert Bosch
09.2018 - 11.2021
- Creating user accounts and groups in Azure AD
- Provision of Virtual machine based on user requirements and managing respecting to the business needs
- Handling a day-to-day service deployment on Azure Infra
- Configuring Microsoft Azure virtual machines, storage accounts, resource groups
- Helped Network team to Enable Azure NSG Flow Logs & Traffic Analytics in Network
- Proficient in the management and administration of Azure cloud
- Overseen Azure Active Directory (AAD) and Managing Identity and access management (IAM) in Azure
- Good experience in utilizing multifactor authentication (MFA) to strengthen the security of user account management
- Implementing Azure Admin services viz
- Virtual Machine creation, Subnet, load balancers NSGS, VNet peering, Azure Administration
- Familiar with Conditional access policies, RBAC and securing Azure AD.
Skills
- Sentinel
- Azure Policies
- EDR
- Entra ID/ Azure ID
- Microsoft Zero Trust
- Defender for O365
- Intune
- Azure Networking
- KQL
- Nessus
- Azure WAF
- Incident Response
- RBAC
- Microsoft Defender Suite
- CIS Benchmark
- Purview DLP
Certification
AZ-500 - Azure Security Engineer Associate
Timeline
Azure Cloud Security Engineer
Bank Of America
05.2023 - Current
Azure Cloud Security Engineer
Clearcover
12.2021 - 04.2023
Microsoft Azure Cloud Administrator
Robert Bosch
09.2018 - 11.2021