Pedro Gonzalez
Security Engineer
Apopka,FL
Work Preference
Summary
Experienced Security Engineer with 5 years of experience protecting enterprise environments and leading security operations. Proven success in designing and deploying SIEM/EDR integrations, strengthening cloud security architectures, and automating incident response workflows. Skilled in vulnerability management, IAM, and risk governance with hands-on expertise across modern security platforms. Adept at translating complex technical threats into actionable business strategies and mentoring teams to elevate organizational security posture.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Security Engineer
CFI Westgate Resorts
04.2022 - 06.2025
- Conducted periodic internal audits and supported third party audits coordination to maintain compliance with organizational and regulatory requirements.
- Aligned endpoint protection efforts with broader organizational security objectives and compliance requirements (PCI-DSS, HIPAA, PII).
- Designed, deployed, and maintained enterprise security tools, and cloud-native security platform to secure endpoint and data assets.
- Directed implementation and governance of SSL/TLS and PKI solution for enterprise & code signing lifecycle management.
- Developed automation workflows for ransomware response, blocking malicious user access and mitigating potential risks.
- Enhanced incident response by creating and tuning detection rules within SIEM and EDR/XDR, improving collaboration with the SOC and reduced response time by 40%.
- Documented security standards and assisted with internal audits to ensure compliance with organizational policies.
- Performed security assessments for breach simulation and attack surface management to proactively identify vulnerabilities.
- Developed and tracked key performance metrics (KPIs/KRIs) to measure program effectiveness and present security posture to executive management.
- Delivered threat intelligence briefings to stakeholders and leadership, translating complex findings into actionable security recommendations.
- Managed end-to-end investigations of endpoint incidents, from detection to coordinated response bolstering the overall security posture.
- Maintained operational readiness during high-pressure situations, expediting containment and recovery amid active security events.
- Refined alert-handling and threat-hunting processes through continuous improvements driven by data analytics.
- Designed and implemented IAM solutions, PAM, JIT, while balancing RBAC and ABAC, models to reduce role explosion while maintaining least-privilege principles.
- Excessive permissions cleanup, stale permissions, stale link removal, automation policy enforcement, GRC enforcement, audits and reporting.
- Led enterprise patch management schedule in coordination with systems and network teams to ensure timely deployment of critical updates across endpoints and servers.
- Served as primary incident lead during high-severity events, coordinating cross-functional response and recovery efforts.
- Collaborated with Application Admins and developers to onboard apps and implement access controls aligned with IAM policy
- Mentored junior team members on security controls, threat hunting, and incident triage to strengthen the team's cybersecurity protocols.
Security Analyst
CFI Westgate Resorts
10.2019 - 04.2022
- Monitored SOC dashboards and SIEM alerts, triaging and escalating incidents to reduce risk exposure.
- Conducted endpoint, server, and network log analysis to identify malicious activity and improve detection accuracy.
- Reduced incident response time by 40% through SIEM detection tuning and automation workflows.
- Developed and deployed automated ransomware lockdown scripts with Varonis, preventing lateral spread of attacks.
- Managed vulnerability scans (Qualys, InsightVM), coordinating remediation of 250,000 vulnerabilities in 2 weeks.
- Performed threat hunting and breach simulations, strengthening attack surface defenses and resilience.
- Participated in risk assessments, security audits, and tabletop exercises to validate incident readiness.
- Collaborated with IT teams to implement IAM, RBAC, and cloud security controls (AWS/Azure).
- Authored and maintained incident response playbooks, improving SOC knowledge transfer and readiness.
Education
Associate of Science - Computer Science
Valencia College
Orlando, FL04-2027
Technical Certificate - Ethical Hacking
Valencia State College
Skills
- Enterprise Security Architecture
- SIEM & EDR Integration
- Vulnerability Management
- Security Governance & Policy development
- Risk Assessment
- SSL / Code Signing / PKI
- On/Off Boarding
- Cloud Security
- Incident Response Management
- Data Protection & Classification
- RBAC, IAM, PAM & PIM controls
- Security Awareness Training & Documentation
Accomplishments
Automated ransomware user-lockdown scripts using Varonis triggers
Remediated 250,000 vulnerabilities in 3 weeks
Certification
- Comptia Security+
- AWS Certified Cloud Practitioner
- SC-500-Scheduled November 2025
- CISSP in progress
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Languages
English
Native or Bilingual
Spanish
Native or Bilingual
Timeline
Security Engineer
CFI Westgate Resorts
04.2022 - 06.2025
Security Analyst
CFI Westgate Resorts
10.2019 - 04.2022
Associate of Science - Computer Science
Valencia College
Technical Certificate - Ethical Hacking
Valencia State College