S3 Phishing Detection
Integrating Phishing URL Detection with GuardDuty Malware Protection to enhance bucket security.
Hi, I am Tony 👋
Cloud Security || Cybersecurity || Penetration Testing
About Me
As a Security Engineer, I focus on the continuous cycle of threat identification, risk assessment, and proactive defense. My work bridges the gap between infrastructure deployment and secure operations, specialized in identifying vulnerabilities within complex cloud environments and mitigating risks before they can be exploited. I am passionate about applying defensive-in-depth principles and automation to build resilient security architectures.
Core Professional Activities
Governance, Risk, and Compliance (GRC)
- Audit Readiness & Compliance: Played a key role in preparing the organization for ISO 27001 and SOC 2 certification. Orchestrated the internal audit process, ensuring all technical controls met international security standards and regulatory requirements.
Endpoint Defense & Incident Response
- EDR Operations (Kaspersky): Managed system-wide Endpoint Detection and Response (EDR), monitoring infrastructure for anomalies and evaluating flagged threats.
- Data Loss Prevention (DLP): Hardened the organizational perimeter by implementing and enforcing DLP policies, specifically disabling unauthorized data exfiltration via USB ports.
- Threat Hunting & Malware Remediation: Successfully investigated and neutralized a sophisticated "Human Verification" phishing attack involving malicious PowerShell scripts and password-stealer malware. Impact: Prevented lateral movement by implementing global script-blocking policies and conducting multi-engine (Kaspersky/Windows Defender) forensic scans.
Cloud Security Posture Management (CSPM)
- AWS Security Orchestration: Actively manage AWS Security Hub to identify and triage cloud misconfigurations. Collaborate directly with the Development team to remediate high-risk findings, ensuring a secure-by-default cloud environment.
Vulnerability Research & Application Security
- Security Assessments: Utilize Burp Suite and OWASP ZAP to conduct regular vulnerability assessments on web applications. Identifying flaws like XSS and Injection before they can be exploited.
- Perimeter Hardening: Engineered a high-security DNS and web profile for personal and professional projects. Implemented SPF, DKIM, DMARC (Reject policy), and custom Content Security Policies (CSP) to eliminate spoofing and clickjacking vectors.
Cybersecurity Projects 🛡️
Here are some of my notable cybersecurity projects. Click on any card to view the repository!
Wazuh SIEM on AWS
Deployed and configured Wazuh SIEM for enterprise-grade security monitoring and log analysis.
Nessus Assessment
Comprehensive vulnerability scans and remediation workflows using Tenable Nessus.
Simulated Enterprise Network
Design and implementation of a virtualized enterprise network on Oracle VM.
To see more of my projects, visit my GitHub page.
What I'm Currently Working On 🚀
- Exploring new technologies in cloud security and cybersecurity.
- Preparing for several advanced industry certification exams.
Technical Arsenal 🛠️
Security Metrics 📊
Threat Detection
Real-time monitoring
Vulnerability Coverage
100% Asset Visibility
Response Time
Automated Mitigation
Cloud Hardening
100% Zero-Exposure for S3/IAM
Compliance Rate
CIS Benchmark Alignment
Identity Security
MFA Enforcement & Zero Trust
Security Hub Score
90%+ AWS FSBP Compliance
Web Penetration Testing
Vulnerability Assessment & Manual Exploitation