Stanislav Kosovskih

Strengthening Cloud Security Posture: Implementing origin protection by leveraging both native cloud security features (AWS/Azure/GCP) and external security solutions.
Actively embedding security into every stage of the software development lifecycle by working closely with engineering teams, promoting secure coding practices, automating threat detection, and aligning efforts with frameworks such as OWASP, NIST... etc.
Improved infrastructure security by defining secure baselines, managing vulnerabilities, and implementing automated policy enforcement across IaaS and PaaS services.
Support the SOC during severe incident response activities.
Proactively identified and mitigated security risks through threat modeling, risk assessments, and continuous monitoring across applications and infrastructure.

Configuring and administrating security infrastructure devices and software such as firewalls,
IPS, SIEM, web and email security gateways, network analyzers, Identity services,
sandboxes, vulnerability scanners, antivirus programs. (Cisco Firepower, WSA, ESA,
StealthWatch, ISE, AMP, IBM Qradar, Qualys and etc.),
Controlling of the configuration on network devices according to PCI DSS/NIST standards,
internal and external security policies. (use Skybox appliance),
Responding and investigating security incidents. Conducting continuous analysis of security threat
information (viruses, malicious code, industry events, hackers and zero-day exploits, OEM
weaknesses, IDS/IPS, SIEM alerting, SOAR) (using TheHive+Cortex, MISP and other IoC
sources),
Managing security logs and taking the required action. (use SPLUNK/SPL)
Automating repeatable tasks with Python. Testing different security applications on AWS using Docker, Ansible, and Terraform.
Writing detailed reports, including evaluation-based findings, results, and suggestions for
further enhancing system security.

Performing design, analysis, configuration, installation, upgrade, monitoring,
troubleshooting, maintenance and daily operations of the company’s network
infrastructure including switches, routers, firewalls, load balancers,
Providing Network Support on Routing protocols such as OSPF, EIGRP, BGP,
Working with the design team to implement and test new radio applications and network
solutions,
Configuring / Installing telecom and network devices (Cisco, Mikrotik, HP, Juniper),
Configuring wireless backhaul/wireless broadband and wireless access points (Cisco,
Ceragon, Proxim, Motorola, Ubiquiti, Mikrotik),
Troubleshooting network performance issues and coordination with a service provider,
Implementing, maintaining, troubleshooting and managing of all Customer Services.

Managing and supporting Symantec SSIM appliance,
Managing and supporting all executive hardware (servers, switches, routers, firewalls),
Create new security policies for network devices and clients,
Installing new hardware and software, network and system additions, and upgrades, this
included provisioning for testing, revision, and documentation,
Using firewall logs identified external/internal risks for clients,
Working with network and security management and monitoring tools, such as OpenView,
Solar Winds, AlienVault, Snort, Nessus, etc.