Cloud Security Engineer focused on AWS security, detection engineering, and incident response, transitioning into malware analysis and reverse engineering.

Experience across AWS Managed Services and security compliance, with a practical bias toward monitoring, investigation, and resilient cloud operations.

Cloud Security Experience

Security Engineering and Operations across AWS Managed Services, compliance, and cloud-native security delivery.

• Amazon Web Services (2019–2024)
  Operations Engineer II
  Supported enterprise AWS environments with a strong focus on security operations, incident response, and operational excellence. Built and tuned observability and alerting, improved detection coverage, and partnered with customers to harden AWS workloads and respond to security events effectively.
• InfoSum Ltd (March 2024 – December 2024)
  Information Security Compliance Analyst
  Supported compliance initiatives and secure data collaboration by aligning cloud controls to regulatory requirements and internal risk posture. Partnered with engineering and stakeholders to improve control adoption, evidence quality, and the overall security baseline.
• Amazon Web Services (December 2024 – Present)
  Operations Engineer II
  Lead cloud security initiatives supporting secure, scalable managed services for Public Sector workloads. Since April 2025, I have deliberately pivoted development time into malware analysis and reverse engineering, building capability through hands-on labs, CTF-style challenges, and practical tooling that strengthens both defensive detection and investigative depth.

AWS Security Skills

Areas of Expertise in AWS Security:

Core areas of expertise in AWS security engineering and operations.

Threat Detection and Monitoring

• Experience configuring and operating Amazon GuardDuty and Amazon Macie to improve threat visibility and data security insights, and translating findings into actionable remediation.

Observability and Logging

• Strong hands-on capability with AWS CloudWatch and logging pipelines to support alerting, triage, and incident response, including the operational workflows that make detection usable.

Patch and Vulnerability Management

• Experience with AWS Patch Manager and vulnerability remediation workflows to maintain compliant baselines and reduce operational risk across production workloads.

Infrastructure and Operating System Security

• Hands-on experience securing AWS infrastructure, including EC2, EBS, and RDS, with strong Linux hardening and baseline maintenance capability.

Security Incident Response

• Practical experience operating incident response aligned to NIST-style workflows, including investigation and remediation of compromised instances, account level security events, and cross-service threat containment.

Final Call to action!

If you are hiring for cloud security, detection engineering, or incident response roles, or you want to collaborate on reverse engineering and security tooling, feel free to reach out.

You can find some more details on my professional journey at https://www.haggath.re/my-full-cv/