Ilir Karafilaj
Azure Cloud Security Engineer
Elmwood Park,IL
Summary
As an Azure Cloud Security Engineer dedicated to ensuring the integrity and resilience of cloud infrastructures. With expertise in Azure security solutions, specialized in designing and implementing robust measures to safeguard against cyber threats and ensure compliance with industry standards.
My Experience includes threat detection, identity and access management, encryption, and security best practices tailored specifically for Azure environments. I thrive on the challenge of staying ahead of emerging threats and collaborating with teams to develop proactive security strategies.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Azure Cloud Security Engineer
Verizon
Schaumburg, IL
05.2023 - Current
- PIM, focus on minimizing risks associated with elevated permissions
- Work with Conditional Access policies that allow to set sophisticated access controls that respond dynamically to context of user's sign-in attempt.
- IAM, creating and managing user identities, assigning and revoking access rights, and ensuring that only authorized individuals can access specific resources
- Configured Azure Active Directory (AAD) and implemented role-based access control (RBAC) for user authentication and authorization
- Configuration and management of Virtual Networks, networks to segment resources, apply appropriate security controls, and connect to on-premises data centers securely
- Monitor ,Create Alerts and Scale Virtual machines
- Storage Account and Compute Security, ensuring that data stored in Azure is encrypted, both at rest and in transit, implement security controls
- Assign policies to minimize risk of unauthorized access, potential data breaches and human error
- Experience in Vulnerability Assessment includes Infrastructure , Application and Cloud scans, which are pivotal in keeping work environment up to date and secure from emerging threats part of this experience is Patching and Vulnerability Assessment Report.
M365 & Azure Cloud Security Engineer
T-Mobile
Chicago, IL
05.2021 - 04.2023
- Monitored Azure resources using Azure Monitor and implemented automated alerts and remediation actions for proactive management
- Assist Security team in defending Azure Security Architecture as per required industry best practices
- Apply adept understanding and experience with systems automation platforms and technologies
- Assist less experienced members with technical and procedural questions or situations that might run into
- Participate in efforts that shape organizations security policies and standards for use in Azure environments
- Interpret Azure security and technical requirements into business requirements and communicate security risks to relevant stakeholders of different ranks
- Influence multi-disciplinary teams in implementing and operating Azure Cyber Security controls
- Collaborated with cross-functional teams to develop and implement disaster recovery (DR) and business continuity plans leveraging Azure Site Recovery (ASR)
- Defender for endpoint ,Antivirus, EDR, ASR and Defender for Identity
Cloud Engineer
Chase
Chicago, IL
01.2019 - 04.2021
- Performed discovery of environment and designing technical onboarding process for Azure/O365 tenants I.e., endpoint manager, Identity protection, Conditional access, O365 ATP, Azure ATP, RBAC
- Integrating salesforce, workday and other SaaS application rest API with Microsoft Cloud App Security to manage and enforce DLP policies over sensitive data
- Enabling Azure Defender on subscriptions to protect Azure and hybrid resources to protect management ports of VMs with Just-in- time and adaptive applications controls
- Azure Active Directory deployment and educating client on best Azure AD licensing for project
- Configured and deployed MFA, SSO, MIM, PIM, PAM and Implement Data Loss Prevention (DLP).
Education
Eqrem Cabej
Albania07.2006
Skills
- Privileged Identity Management (PIM)
- Role Based Access Control (RBAC)
- Identity and Access Management (IAM)
- Tenable Nessus
- Entra ID
- Conditional Access
- Vulnerability Assessment
- Azure Policies
- Defender For Endpoint
- AD Connect
- Azure Sentinel
- KQL
- Intune
- Zero trust
- MCAS
- Microsoft XDR
Certification
Azure Security Engineer Associate / AZ 500
References
Available Upon Request
Timeline
Azure Cloud Security Engineer
Verizon
05.2023 - Current
M365 & Azure Cloud Security Engineer
T-Mobile
05.2021 - 04.2023
Cloud Engineer
Chase
01.2019 - 04.2021
Eqrem Cabej
Similar Profiles
Jason YoungJason Young
Senior Account Manager at VerizonSenior Account Manager at Verizon
Jessica JonesJessica Jones
Professional Sales Representative at VerizonProfessional Sales Representative at Verizon
Eugenia GordonEugenia Gordon
Associate Director of Accounting - Cash at VerizonAssociate Director of Accounting - Cash at Verizon
Stephanie BoweringStephanie Bowering
Network Engineer at VerizonNetwork Engineer at Verizon
JARED DelgadoJARED Delgado
Certified Ophthalmic Technician at Kovach Eye InstituteCertified Ophthalmic Technician at Kovach Eye Institute