Experienced DevOps/SRE and Compliance Engineer with over 7 years of experience with a strong background in Observability solution alignment with business KPIs, SLAs, SLOs, Cloud security operations, Cloud governance, DevsecOps, IT compliance audits, GRC, Vendor risk management, Control assessment, and Risk Management. Expertise in AWS/Azure, implementing custom cost effective workflows across SDLC, DevsecOps, Kubernetes, Observability, SIEM, EDR, IAM, IPS/IDS, Automation and Cloud native toolsets. Served as a Subject Matter Expert for cloud audits(AWS/Azure), supporting client initiatives in achieving and maintaining SOX, SOC 2, PCI DSS and ISO 27001 certifications. Proficient in managing cloud infrastructure, optimizing logging, monitoring, tracing solutions, conducting risk assessments (CSPM, DSPM, IAM, SAAS), Tabletop exercises, Vulnerability management, Policy/SOP development, incident response, Control testing, Vendor due diligence and Audit planning. Adept at collaborating across multiple lines of defense, delivering strategic initiatives in compliance with frameworks like NIST CSF 2.0, ISO 27001, COBIT, COSO, FAIR whilst ensuring adherence to regulations like CIS benchmarks, PCI-DSS, NIST SP 800-53, GDPR, CCPA/CPRA, HIPAA. .
- 👨💻 All of my projects are available at (https://github.com/nnsutebu?tab=repositories)
- 💬 Ask me about SOC 2, ISO 27001, PCI DSS, GDPR, NIST SP 800-53A, Kubernetes, Cloud Security Posture Assessment, TableTop exercises, Third Party Risk Management, DevOps & DevsecOps
- 📫 How to reach me [email protected]
"Helping people crack DevOps with real-world knowledge. Let’s build and automate the future, one pipeline at a time!"