<SECURITY ARCHITECT/>
From Layer 1 to Layer 7... I blend the logic of network architecture, the strategy of cyber defense, and the power of modern software into a single pot. I analyze threats with code and ensure security through automation. I build not just working systems, but systems that work 'securely' and live.
Next-Gen Firewall
Cloud Infrastructure
EDR/XDR
Python Automation
Secure Backend
<MISSION_HISTORY />
Network & Security Specialist
2023 – PresentIstanbul, TR
Enterprise Corp
- Architected secure hybrid cloud infrastructures on AWS, leveraging VPC segmentation, Security Groups, and Transit Gateways for strict isolation.
- Enforced 'Least Privilege' access models using AWS IAM policies, Roles, and MFA, ensuring robust identity management across multi-account environments.
- Engineered Python-based automation scripts for real-time firewall rule auditing and incident response, bridging the gap between On-Prem and Cloud SecOps.
- Implemented AWS GuardDuty and CloudTrail for continuous threat detection, analyzing logs to identify and mitigate unauthorized API activities.
- Deployed Layer 7 defense strategies utilizing AWS WAF and third-party solutions to protect public-facing applications against OWASP Top 10 vulnerabilities.
- Led advanced threat hunting operations using SentinelOne EDR, integrating endpoint telemetry with cloud workload protection strategies.
- Managed policy-based micro-segmentation and IPS/IDS configurations on Next-Gen Firewalls to ensure granular perimeter defense.
- Orchestrated vulnerability management lifecycles, hardening EC2 instances and containerized workloads according to CIS Benchmarks.
Freelance Backend Developer
2022 – 2023Remote
Software Solutions
- Developed scalable backend APIs using modern Python frameworks.
- Implemented JWT authentication, role-based access control, and API security measures.
- Built real-time communication systems for high-concurrency environments.
- Deployed applications on major cloud providers including compute, storage, and networking services.
- Managed end-to-end backend architecture from design and deployment to maintenance and scaling.
