arnaudhightower

Security Engineer

Security Engineering & Risk Mitigation

  • Led the design and implementation of security protocols across cloud infrastructure (AWS/GCP/Azure), reducing incident risk by over 60%.
  • Conducted regular vulnerability assessments and penetration tests, remediating critical findings and improving system hardening.
  • Developed and enforced company-wide security policies, including access control, encryption standards, and secure coding practices.

Incident Response & Threat Detection

  • Built and maintained SIEM and IDS/IPS systems, enabling real-time detection and response to security events.
  • Acted as lead incident responder during multiple critical security events, coordinating investigation, containment, and post-incident reviews.
  • Automated log analysis and alerting pipelines, reducing time-to-detection by 40%.

Compliance & Security Audits

  • Assisted with internal and external audits (SOC 2, ISO 27001), preparing documentation and ensuring controls met compliance standards.
  • Worked closely with legal and compliance teams to maintain data protection policies aligned with GDPR, CCPA, and industry regulations.

Cross-Functional Collaboration & Education

  • Partnered with DevOps and engineering teams to embed security into CI/CD pipelines (DevSecOps).
  • Conducted company-wide security awareness training sessions, reducing phishing susceptibility among employees.
  • Advised product and business teams on security implications of new features or partnerships.

Experience: 4 years

Yearly salary: $100,000

Hourly rate: $65

Nationality: 🇺🇸 United States

Residency: 🇺🇸 United States


Experience


Skills

java
javascript
marketing
python
solidity
english
chinese-mandarin