Valentin Tudor

• Creating, modifying and deleting users accounts and manage multiple groups for our organization in Azure Active Directory (Azure AD)
• Proposed and contributed to the implementation of organization-specific password policies, enforcing strong password requirements to enhance security,
• Creating and managing user groups for access control in our organization
• Configuring application permissions and access levels,
• Registered applications within Azure Active Directory (Azure AD) to enable single sign-on (SSO),
• Implementing role-based access control (RBAC) to define user permissions,
• Monitored and secured enterprise systems, ensuring the protection of sensitive customer data and critical air travel infrastructure.
• Conducted risk assessments and vulnerability analyses to identify, mitigate, and prevent potential cybersecurity threats to airline operations,
• Implemented and maintained Zero Trust Architecture principles to safeguard systems and data across distributed environments,
• Enabled Azure Defender on subscriptions at the level of Azure cloud infrastructure and endpoint devices, including Windows servers and Windows machines,
• Implementing security best practices and policies based on Microsoft Defender for Cloud recommendations,
• Monitoring for deviations from security standards and enforcing compliance requirements,
• Analyzing security alerts generated by Microsoft Defender for Cloud, identifying suspicious activities and potential threats,
• Deploying and managing Microsoft Defender for Endpoint on all company devices to protect against malware and advanced threats,
• Monitoring endpoint activity for suspicious behavior and potential breaches,
• Configuring and tuning Defender for Endpoint policies to optimize threat detection and response capabilities,
• Collect security logs from various sources like Azure services, on-premises systems, and third-party applications into Azure Log Analytics workspace to feed into Sentinel
• Develop custom detection rules using Kusto Query Language (KQL) to identify suspicious activities and generate alerts based on predefined criteria,
• Design and implement automated response playbooks using Azure Logic Apps in collaboration with my supervisor to take actions like notifying teams, isolating compromised systems, or triggering remediation steps based on detected threats,
• Analyze security alerts in Sentinel, correlate events, and investigate potential security incidents to determine root cause and take appropriate actions,
• Work closely with security analysts, incident responders, and other stakeholders to share threat intelligence, coordinate investigations, and implement security best practices,
• Collaborated with cross-functional teams to develop comprehensive cybersecurity policies and procedures.

• Defining and implementing appropriate Azure AD user and group structures,
• Assigning Azure RBAC roles to users and groups based on their permissions needed to access specific Azure resources,
• Utilizing Azure AD conditional access policies to enforce granular access controls based on location, device, and other factors,
• Setting up and managing SSO integration with various applications using Azure AD to provide a seamless login experience,
• Monitored cloud services, including SaaS, IaaS, and PaaS solutions, for vulnerabilities, threats, and anomalies, responding to incidents proactively to minimize risks.
• Implemented multi-factor authentication systems for improved user access management in the cloud.
• Assisting clients to implement various log sources in Sentinel and create automation for incident response.
• Developed comprehensive disaster recovery plans for cloud-based systems, ensuring business continuity in the event of unexpected disruptions or outages.
• Implemented Microsoft Defender EDR for clients and configured ASR policies with best practices.
• Designed and implemented robust security measures for cloud infrastructure, ensuring the confidentiality, integrity, and availability of data in hybrid and multi-cloud environments.
• Architecting IAM strategies to align with business requirements, including user lifecycle management, authentication methods, and access controls
• Established strong working relationships with clients through exceptional communication skills, fostering trust and collaboration

• Created hub and spoke topology for secure network design in Azure infrastructure.
• Implemented Azure NSG and Azure Load balancer with best practices.
• Collected logs from Azure native resources, Virtual Machines and on-prem servers to Azure Sentinel
• Implemented Logic Apps in Sentinel for incident response.
• Familiar with Azure policies to govern Azure resources and tenant.
• Worked with compliance framework such as CIS benchmark to harden Azure tenant .
• Implemented Defender for Cloud CSPM to monitor Azure resources and monitor security posture.
• Performed regular audits of cloud environments to ensure compliance with internal policies, industry amplify security by enforcing strict access control policies and regular vulnerability
assessments.