Moldir Shabikova
Huntington Bank
Chicago,IL
1
Certification
6
years of professional experience
Cloud Security Engineer with 5+ years of experience securing Microsoft Azure and Microsoft 365 environments. Expertise in Azure Security, Microsoft Security Stack, Microsoft Sentinel, Microsoft Entra ID, AI Security, DevSecOps, and Cloud Governance. Skilled in designing Zero Trust architectures, implementing Microsoft Defender and Sentinel solutions, securing enterprise identities, automating security operations, and protecting cloud and AI platforms. Proven ability to strengthen security posture, reduce risk, optimize security operations, and support compliance initiatives across enterprise environments.
Work History
Cloud Security Engineer
2 Years 3 Months- Configured Azure Active Directory for Windows clients, activating PIN authentication to streamline user access.
- Established Azure AD integration for Windows Server VMs and implemented role-based access control to streamline user access management.
- Managed configuration of Azure AD features, focusing on identity protection, conditional access policies, and privileged identity management to safeguard organizational resources.
- Evaluated and reported on new Azure security vulnerabilities and controls to enhance organizational security posture.
- Facilitated deployment and resolution of issues related to Defender for Endpoint EDR to enhance cybersecurity measures.
- Analyzed security incidents and generated alerts on Defender for Endpoint to mitigate potential threats.
- Managed vulnerability assessments and coordinated remediation efforts with cloud engineering team to strengthen infrastructure integrity.
- Developed and implemented Azure MCAS policies to enhance security protocols.
- Configured Azure Sentinel and integrated multiple log sources to optimize threat detection and response processes.
- Developed and enforced RBAC guidelines to optimize user access management and maintain system integrity.
- Collaborated with security compliance team to ensure Azure tenant adherence to CIS benchmark and NIST-800 standards.
- Conducted comprehensive reviews of Azure security practices and executed enhancements to strengthen overall security posture.
- Researched and analyzed the latest cloud technology trends to identify opportunities for improving company cloud service investments.
- Performed detailed threat vulnerability and risk assessments to identify and mitigate potential system and network vulnerabilities in partnership with external auditors.
- Developed and improved monitoring and visibility capabilities of information systems and acted as a technical leader for security incident detection, response, handling, and forensics.
- Delivered comprehensive reports on incidents, investigations, and vulnerabilities that informed strategic decisions. Identified key trends and conditions through thorough analysis of events, driving proactive risk management. Enhanced incident response protocols through detailed investigation and trend analysis, improving overall safety.
- Working on Azure Security Center (Defender for Cloud) recommendation to harden and Azure tenant.
- Configured Intune settings and integrated with Microsoft Defender for Endpoint to optimize device management and security protocols.
- Configuring Windows Clients to enroll to Intune device configuration.
- Onboarding Windows Clients to Microsoft Defender for Endpoint by creating Detection and Response Intune Policy
- Achieved enhanced security posture by configuring diverse MDE policies using Intune. Mitigated risks through effective implementation of antivirus measures, attack surface reduction strategies, firewall configurations, and tamper protection initiatives. Standardized Windows security baselines to improve overall system security.
- Configuring Automated Incident Response (AIR) in MDE to automatically respond to incidents.
- Executed onboarding of on-premises Windows servers to Microsoft Defender for Endpoints through deployment and configuration of Azure Arc-enabled server agents.
- Configured advanced email security policies for Exchange Online mailboxes. Implemented anti-malware, anti-phishing, Safe Links, Safe Attachments, and impersonation protection measures.
- Configured Microsoft Defender for Cloud Apps and Endpoint to identify and control unwanted applications, leveraging App Discovery Policy for comprehensive security.
Security Engineer
2 Years 1 Month- Conducted comprehensive risk assessments to identify vulnerabilities and threats to the organization's information systems.
- Developed and implemented risk mitigation strategies and security policies to protect sensitive data.
- Implemented incident response plans, ensuring minimal impact on business operations.
- Deployed and Configured Microsoft Sentinel Azure Log Analytics Workspace and Connecting Microsoft Defender for Cloud, Azure AD, Azure Activity, and Microsoft 365 Defender.
- Created Data Collection Rules in Azure Monitoring Agent Data Connector to collect security events from Azure VMs and on-premises Azure Arc-enabled servers.
- Connected Microsoft Defender Threat Intelligence data connector for Microsoft Sentinel to list up to date various IOCs including URLs, domains, IP addresses, and files.
- Automated incidents by configuring Microsoft Incident creation Rules to create incidents from Defender for Cloud and Microsoft 365 Defender.
- Created Security Operation Center team in Microsoft Teams by integrating it with Sentinel Playbook to send notification to SOC team once an incident is triggered.
- Created Scheduled Query Analytics rules to detect Excessive Windows Logon Failures for user accounts which has over 50 Windows logon failures today and at least 33% of the count of logon failures over the previous 7 days.
Associate Cloud Security Engineer
1 Year 5 Months- Supported deployment of secure Azure environments using Terraform, ARM Templates, and PowerShell automation.
- Performed vulnerability assessments, remediation activities, and security monitoring using Microsoft Defender and cloud-native security tools.
- Supported Azure Functions, App Services, and AKS workloads while enforcing organizational security standards.
- Participated in security reviews, email threat analysis, and remediation planning for phishing and malware incidents
- Assisted with disaster recovery planning using Azure Backup and Azure Site Recovery.
- Participated in cloud governance, audit readiness, logging, retention, and compliance initiatives.
Education
No Degree - Software Engineering
Bachelor of Science - Psychology
Skills
Cloud Security: Microsoft Azure
AWS
GCP
Azure Key Vault
Azure Bastion
Azure Policy
Azure Firewall
Azure Arc
Identity & Access Management: Microsoft Entra ID
Conditional Access
Privileged Identity Management (PIM)
MFA
SSO
RBAC
Identity Protection
Microsoft Security: Microsoft Sentinel
Microsoft Defender XDR
Defender for Endpoint
Defender for Cloud
Defender for Office 365
Defender for Cloud Apps
Defender for Identity
Microsoft Intune
Threat Detection & Response: Threat Hunting
Incident Response
Threat Intelligence
Security Monitoring
Vulnerability Management
SIEM & Automation: Microsoft Sentinel
Splunk
Kusto Query Language (KQL)
Azure Logic Apps
Playbooks
Automation Rules
DevSecOps & IaC: Terraform
Azure DevOps
GitHub Actions
PowerShell
Python
Frameworks & Compliance: MITRE ATT&CK
NIST 800-53
ISO 27001
GDPR
Zero Trust
Certification
Microsoft Certified: Azure Security Engineer Associate (AZ-500)
Scrum Foundations – Scrum Alliance (Credential ID: 001515218)
Devmountain (2022) - Foundations (v.1)
Timeline
Cloud Security Engineer
Huntington Bank
03.2024 - CurrentRead More
Security Engineer
Perficient
01.2022 - 02.2024Read More
Associate Cloud Security Engineer
Motorola Solutions
07.2020 - 12.2021Read More
Devmountain
No Degree from Software Engineering
Read More
L.N. Gumilyov Eurasian National University
Bachelor of Science from Psychology
Read More
Cloud Security Engineer
Cloud Security Engineer