Eray Ozugur
San Antonio
Summary
Highly accomplished cyber security leader with 15+ years of experience designing, implementing, and managing robust security solutions. Expertise in security architecture, engineering, and operations with a deep understanding of industry best practices and compliance frameworks. Proven ability to build and lead high-performing security teams to safeguard critical assets and effectively respond to cyber threats. Skilled at bridging the gap between technical and business stakeholders to align security strategies with organizational goals and drive risk reduction.
Overview
14
14
years of professional experience
1
1
Certification
Work History
Senior Security Architect
Binary Defense
08.2022 - Current
- Integrated SAST, DAST, SCA, and SBOM into CI/CD pipeline, enabling comprehensive application security across SDLC
- Developed and executed security strategies and risk assessments, driving continuous improvement in security posture
- Aligned development practices with industry standards, ensuring security excellence, conformity, and compliance
- Bridged software development and security teams to enhance shared understanding of security protocols
- Enhanced cyber threat identification capabilities through advanced monitoring and analytics solutions
- Fortified infrastructure resilience by implementing robust security controls in endpoint development procedures
Manager of Security Engineering
Shutterfly Inc
03.2021 - 08.2022
- Managed the security engineering team, overseeing lifecycle management of security tools, monitoring, and operations
- Handled all team operations, including hiring, reporting, budgeting, vendor relationships, and project prioritization
- Supported key security functions such as vulnerability management, SIEM, SOAR, email security, and DLP
- Improved SOC efficiency through backend automations, machine learning models, and UI enhancements
- Automated JIRA migrations and synced with ServiceNow for streamlined operations and better visibility
- Developed data analysis capabilities contributing to forensic investigations
Senior DevSecOps Engineer
Oracle
01.2021 - 09.2021
- Developed automation scripts for continuous integration/continuous deployment (CI/CD) pipelines
- Integrated security protocols into existing DevOps workflows
- Collaborated with cross-functional teams to design and implement security measures across cloud environments, improving overall system resilience
- Conducted regular security audits and vulnerability assessments, leading to the identification and remediation of critical security gaps
- Performed code reviews
Senior Security Engineer
USAA (via TATA Consulting)
11.2019 - 05.2020
- Maintained Elastic Stack (ELK) and Phantom SOAR platforms supporting enterprise security operations
- Developed Python machine learning models for email and URL threat predictions
- Conducted in-depth threat hunting and wrote/tuned detection rules for SIEM
- Operated within an agile model to continuously improve detection and response capabilities
Senior Security Engineer
Rackspace Technology
03.2019 - 02.2020
- Led Splunk engineering practice, hunt development, and SOC escalations for a global managed security services provider
- Developed playbooks, processes, and reporting for government compliance programs, including FedRAMP
- Integrated a full stack of security tools via APIs for enhanced monitoring, incident response, and threat hunting
- Acted as a subject matter expert and escalation point for complex security issues
Senior Security Consultant
Leidos
10.2017 - 12.2019
- Led the security engineering team supporting a multi-tenant MSSP SOC environment
- Developed backend automations, data enrichments, and ML models in Splunk for advanced threat detection
- Consulted clients on application security best practices and alignment with the NIST Cybersecurity Framework
- Delivered penetration testing and purple team engagements to assess and improve client detection and response
- Engineered security solutions in cloud and on-prem environments leveraging Phantom SOAR and the full ELK stack
Security Analyst III, Team Lead/Development Lead
Rackspace
09.2015 - 06.2017
- Evaluated SIEM products to assist with selection and implementation
- Reviewed scripts and tools developed by SOC analysts
- Prepared documentation for developments and SOPs
- Conducted hunting analyses; searched for indicators of sophisticated adversary penetrations
- Worked with development and product engineers on development projects
- Automated ticketing, HUD, and alerting systems development
- Managed team of four analysts; assigned duties; performed exercises; handled scheduling
- Monitored weekly and quarterly metrics; assessed interviews
Senior Network Security Analyst
Alert Logic
04.2011 - 09.2015
- On-site technical representative for Rackspace
- WAF content management and support
- Performed vulnerability scanning (Nessus, Rapid7, Alert Logic)
- Managed network, intrusion detection, and prevention systems on Snort sensors
- Analyzed security breaches to determine root causes
- Recommended/Installed appropriate tools
- Customer support on security issues
System Security Analyst
Alert Logic
11.2011 - 04.2011
- Monitored global NIDS, firewall, and log correlation tools for potential threats
- Initiated escalation procedure to counteract potential threats/vulnerabilities
- Provided incident remediation and prevention documentation
- Documented/Conformed to processes related to security monitoring
- Analyzed log files; correlated security-related events
- Identified anomalies on log files for PCI compliance minimum requirements
Education
Master of Business Administration - Business Concentration
University of Incarnate Word
Bachelor of Science - Business Administration
University of Incarnate Word
Certification
- Amazon Web Services (AWS) Technical Professional Accreditation
- SANS - GCIA
- Cisco Certified Entry Networking Technician (CCENT), Certification Number: CSCO12050141
- Cisco Certified Network Associate (CCNA) Security
- CCNA, Certification Number: 1906367508
- Cisco Certified Network Professional (CCNP) Security (Firewall, VPN)
- COMPTIA A+ Certification Code: FFV3LQYDFKFQ506V
- COMPTIA Network+ Reg. Number: 244043422, Validation Number: 579126113
- COMPTIA Security+ Reg. Number: 244514665, Validation Number: 160413094
- COMPTIA Server+ Reg. Number: 244556718, Validation Number: 090214663
Complianceandstandards
- NIST 800-53
- ISO 27001/27002
- CIS Controls
- OWASP Top 10
- SOC 2 (Service Organization Control 2)
Training
- Secure Developer
- Security Awareness Training (Completed Yearly)
- System Administration, Networking, and Security Institute (SANS) Global Information Assurance Certification (GIAC) Certified Intrusion Analyst (GCIA)
- Completed self study of CISSP domains.
Technicalskills
Security Architecture, Threat Hunting, Incident Response, Governance, Risk & Compliance, Vulnerability Management, Security Monitoring, SIEM/SOAR, Application Security, Policy & Procedure, Python, Shell/PowerShell Scripting, C#, Go, JavaScript/jQuery, PHP, HTML/CSS, MySQL, Splunk, Elastic Stack (ELK), Phantom, MS D3 SOAR, Qualys, Nessus, Burp Suite, Wireshark, Snort, OWASP ZAP, Selenium web testing and automation, GUI Automation, API automation, Data Analysis and Reporting (Pandas and NumPy), H2O Machine Learning platform, TensorFlow, PyTorch, Scikit-learn, Supervised, Unsupervised, Reinforcement Q-learning and Deep-Q learning, Classification
Languages
English
Native or Bilingual
Status
US Citizen
Able to obtain clearance
Timeline
Senior Security Architect
Binary Defense
08.2022 - Current
Manager of Security Engineering
Shutterfly Inc
03.2021 - 08.2022
Senior DevSecOps Engineer
Oracle
01.2021 - 09.2021
Senior Security Engineer
USAA (via TATA Consulting)
11.2019 - 05.2020
Senior Security Engineer
Rackspace Technology
03.2019 - 02.2020
Senior Security Consultant
Leidos
10.2017 - 12.2019
Security Analyst III, Team Lead/Development Lead
Rackspace
09.2015 - 06.2017
System Security Analyst
Alert Logic
11.2011 - 04.2011
Senior Network Security Analyst
Alert Logic
04.2011 - 09.2015
Bachelor of Science - Business Administration
University of Incarnate Word
Master of Business Administration - Business Concentration
University of Incarnate Word
Similar Profiles
Punnaphas PhakworasitPunnaphas Phakworasit
Senior Quality Assurance Engineer at Binance (Binary Blockchain Technology Thailand)Senior Quality Assurance Engineer at Binance (Binary Blockchain Technology Thailand)
Ishaan AroraIshaan Arora
Sr. Analyst at Vaco Binary Sementics LLPSr. Analyst at Vaco Binary Sementics LLP
SREENISH H KUMARSREENISH H KUMAR
Permit Controller at Bit's Arabia, Binary Information Technology SolutionsPermit Controller at Bit's Arabia, Binary Information Technology Solutions
David WinklerDavid Winkler
Maintenance Mechanic at Aisin USAMaintenance Mechanic at Aisin USA
David BurattiDavid Buratti
Installer at Bell Glass & MirrorInstaller at Bell Glass & Mirror