Winston Gonzalez
Huntersville,NC
Summary
As a Senior Security Consultant, I bring extensive experience in incident response and information risk assessment. My work spans multiple domains, including IT security solutioning, malware analysis, threat assessment modeling, and vulnerability threat management. I specialize in Microsoft stack security offerings, such as Intune, MEM, and MS Defender for Endpoint. My track record includes successfully implementing enterprise security risk solutions and developing effective cybersecurity processes. Additionally, I excel in solutioning and effort estimation for client engagements.
Overview
1
1
Certification
Work History
Senior Security Consultant - Cyber Defense
Avanade
New York City, NY
- Proactive Threat Mitigation: Monitored and assessed critical vendor alerts on SIEM and EDR platforms
- Implemented prevention capabilities through cybersecurity services to proactively address threats
- Developed a rapid operational capability with the network support team to block external malicious websites and IP ranges
- Streamlined the process, replacing a protracted request system via third-party support
- Incident Response Leadership: Managed incident response efforts for application support groups, coordinating containment and remediation efforts across the server estate
- Informed application service owners and business resiliency teams about security requirements
- Facilitated reviews with IT infrastructure support for effective remediation actions
- Microsoft Defender for Endpoint Deployment: Designed and deployed Microsoft Defender for Endpoint for various clients in Health, Financial, Manufacturing, Federal, Energy, Media, and Consulting services
- Continuously supported program development and utilized cybersecurity capabilities to foster greater cooperation within operational teams in response to alerts
- Risk Assessment and Validation: Engaged Corporate, R&D, and Manufacturing domains in breach assessment based on security risk profiles and validation testing of networking and application platforms.
Security Advisory Cloud
External Insurance Company (M&A)
- Conducted workshops with key stakeholders to develop a plan and alignment for cloud requirements
- Produced a full approach and methodology to deliver the NIST CSF and BCDR assessment
- Conducted a full NIST maturity assessment of Five NIST areas Identity, Protect, Detect, Respond and Recover
- Conducted assessment of current state and provided recommendations for future state based on Security score.
Security Lead Advisory Cloud
External Energy Company
- Produced a Cloud strategy roadmap to client
- Conducted workshops on-site with key stakeholders to develop a plan and alignment for cloud requirements
- Created and helped testing scenarios of DLP policies in Dev/Prod environments.
Security Consulting Practitioner
Global Manufacturing Company
- Validation of M365 Defender Policies for migration, removal of old Antivirus software
- Built Defender reporting dashboard using Power BI, MS Graph API's and Power Automate
- Troubleshoot Microsoft Defender enrollment and policy errors.
Security Delivery Practitioner
External Government Agency
- Performed software security assessment for city government utilizing NIST and FIPS publications
- Engaged with CISO Team and evaluated Threat Modeling using Azure Security
- Analyzed code using Veracode to scan custom applications (function Apps/Logic Apps.) Evaluated Power Platform in the government cloud and provided guidance for key Power Platform specific security considerations.
Cloud Engineer
Deloitte Consulting
Charlotte, NC
- Supported a large Retail Banking client in the Northeast: Implemented data access and browsing controls for enforcement of key global security policy initiatives and compliance control requirements
- Designed and fully deployed a new Windows 10 Autopilot for Hybrid over VPN solution
- Produced Architecture and Deployment guides for the client
- Performed deployment of all core business apps
- Proposed enhancements of the environment’s Conditional Access Policies for new Windows 10 devices
- Monitored and reviewed critical incident alerts for endpoints and network security devices
- Established threat hunting initiatives addressing network security services issues.
Education
Westchester Community College
Skills
- Disaster Recovery
- Application Security
- Compliance Management
- Incident Response
- Business Continuity
- Access Control
- Policy Development
- Policy Updates
- Risk Management
- Cybersecurity
- Credentialing Policies
- InfoSec
- Access Management
Certification
• Microsoft Security Operations Associate (SC-200)
• Microsoft Identity and Access Administrator (SC-300)
• Microsoft Information Protection Administrator (SC-400)
• Microsoft Security, Compliance, and Identity (SC-900)
• Zscaler Zero Trust Associate (ZTCA)
Languages
Spanish
Professional
Timeline
Senior Security Consultant - Cyber Defense
Avanade
Security Advisory Cloud
External Insurance Company (M&A)
Security Lead Advisory Cloud
External Energy Company
Security Consulting Practitioner
Global Manufacturing Company
Security Delivery Practitioner
External Government Agency
Cloud Engineer
Deloitte Consulting
Westchester Community College
• Microsoft Security Operations Associate (SC-200)
• Microsoft Identity and Access Administrator (SC-300)
• Microsoft Information Protection Administrator (SC-400)
• Microsoft Security, Compliance, and Identity (SC-900)
• Zscaler Zero Trust Associate (ZTCA)
Similar Profiles
Connie HoldenConnie Holden
Organization Design Senior Manager at AvanadeOrganization Design Senior Manager at Avanade
Connie HoldenConnie Holden
Organization Design Senior Manager at AvanadeOrganization Design Senior Manager at Avanade
Mehrdad IraniMehrdad Irani
Manager at AvanadeManager at Avanade