Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

Andrey Lozovyy

North Royalton,OH

Summary

Results-driven Senior Cybersecurity Engineer with 20+ years of experience architecting, implementing, and leading security programs in enterprise, cloud, critical infrastructure, and high-threat environments. Expert in Zero Trust Architecture transitions, cloud-native security (AWS, Azure), endpoint/XDR, SIEM/SOAR, network security, vulnerability management, incident response, threat hunting, and regulatory compliance (NIST, PCI-DSS, HIPAA). Proven track record of reducing attack surfaces, accelerating detection/response times, and mentoring teams to achieve measurable risk reduction.

Cybersecurity professional with proven track record of safeguarding critical information systems and reducing potential threats. Known for collaborative problem-solving and delivering results in dynamic settings. Reliable and adaptable, with specialized skills in threat detection, vulnerability assessment, and compliance.

Overview

18
18
years of professional experience
1
1
Certification

Work History

Cybersecurity Analyst / Operations

BP (Energy Sector)
Westlake, OH
01.2024 - Current
  • Led migration of legacy SIEM from Rapid7 to Microsoft Sentinel, improving detection correlation, automation, and response efficiency across enterprise environments.
  • Directed enterprise-wide Zero Trust transformation initiative targeting Oracle databases and PCI-compliant segments, enhancing segmentation and least-privilege access controls.
  • Evaluated penetration test results and collaborated with cross-functional teams to prioritize and remediate findings, reducing critical exposure risks.
  • Conducted comprehensive enterprise firewall reviews to ensure ongoing PCI-DSS compliance and alignment with regulatory requirements.

Cybersecurity Administrator / Engineer

Travel Centers of America (Truck Stops & Full-Service Travel Centers)
Westlake, OH
12.2015 - 01.2024
  • Engineered migration from legacy LogRhythm SIEM to Rapid7 SIEM/SOAR platform, enhancing detection, automation, and response capabilities.
  • Engineered, implemented, and managed CyberArk PAM platform, followed by successful migration to Delinea-Thycotic for improved privileged access security.
  • Provided technical leadership for enterprise information security program; mentored and trained cross-functional teams on security best practices.
  • Developed access controls, separation of duties, and roles; conducted technical risk evaluations of hardware, software, systems, and networks.
  • Monitored and maintained physical/logical security; supported and evolved security policies/procedures, including creation of new standards.
  • Spearheaded enterprise-wide EDR deployment with CrowdStrike Falcon, achieving 99.4% coverage across 20,000 devices and 200+ U.S. sites.
  • Architected vulnerability management program, improving critical/high remediation rate to 92% within SLA (from 40%) and preventing multiple potential ransomware incidents.
  • Managed network security infrastructure, including IPS/IDS, Broadcom Web Gateway, and Cisco Umbrella; provided PCI-DSS annual compliance evidence and verification.
  • Oversaw security-owned infrastructure and supported operational security needs.

Infrastructure Manager / Senior Network Security Engineer

StreamlineMD (Medical Billing Services)
02.2010 - 12.2015
  • Serving as senior member of the organization's top technical adviser within network engineering and computer systems.
  • Provide technical leadership to the enterprise for the information security program. Mentor and train others in information security in addition to training for other technical groups.
  • Assist in the development of access-controls, separation of duties, and roles. Conducted technical risk evaluation of hardware, software, and installed systems and networks.
  • Monitor and maintain physical and logical security and access to systems. Responsible for support of existing security policies and procedures, as well as creation and implementation of new security procedures.
  • Install and maintain security infrastructure, including IPS, IDS, log management.
  • Risk assessments on proposed projects.
  • Develop and maintain solutions in enterprise environments for HIPAA and PCI regulatory compliance.

Network Operations Engineer

StreamlineMD (Medical Billing Services)
08.2008 - 02.2010
  • Designed, implemented and maintained secure data center infrastructure including Virtual Private Networks, secure file transfer encrypted web protocol channels.
  • Created enterprise monitoring and management resources for NOC, and security operational center.
  • Implementation of various Open Source technologies to monitor and defend open networks.
  • Responsible for daily operational support of over 60 Windows, Linux and VMware systems.
  • Provided General Computing Controls and Logical Access Control Design expertise.
  • Implemented secure email gateway solution.

Education

Associate of Science - Information Technology

Cuyahoga Community College
Cleveland, OH
01-2007

Skills

  • Cloud Security (AWS, Azure)
  • Zero Trust Architecture
  • Endpoint / EDR / XDR (CrowdStrike Falcon, SentinelOne, Microsoft Defender)
  • SIEM & SOAR (Splunk, Elastic Stack, Microsoft Sentinel, Rapid7, LogRhythm)
  • Network Security (Palo Alto, Cisco Firepower, Fortinet, Cisco ASA, Zscaler, Broadcom Web Gateway, Cisco Umbrella, CloudFlare)
  • Vulnerability Management & Penetration Testing (Qualys, Rapid7, Burp Suite)
  • Incident Response, Digital Forensics & Threat Hunting
  • Identity & Access Management / Privileged Access (Duo,Okta, CyberArk, Delinea-Thycotic)
  • Automation & Scripting (Python, PowerShell, Bash, Ansible)
  • Tools/Platforms: Splunk, Elastic Stack, CrowdStrike Falcon, SentinelOne, Palo Alto Prisma, Zscaler, Okta, CyberArk, Delinea-Thycotic, Tenableio, Qualys, Rapid7, Burp Suite, Wireshark, Kali Linux, Terraform, Ansible
  • Scripting/Automation: Python, PowerShell, Bash
  • Vulnerability assessment

Certification

  • CISSP – Certified Information Systems Security Professional (2015 – Active)
  • CASP+ – CompTIA Advanced Security Practitioner (2024 – Active)

Languages

English (Fluent), Ukrainian (Native), Russian (Fluent)

Timeline

Cybersecurity Analyst / Operations

BP (Energy Sector)
01.2024 - Current

Cybersecurity Administrator / Engineer

Travel Centers of America (Truck Stops & Full-Service Travel Centers)
12.2015 - 01.2024

Infrastructure Manager / Senior Network Security Engineer

StreamlineMD (Medical Billing Services)
02.2010 - 12.2015

Network Operations Engineer

StreamlineMD (Medical Billing Services)
08.2008 - 02.2010

Associate of Science - Information Technology

Cuyahoga Community College