Cloud Security Engineer
Md. Tawfik
Imroz
Protecting digital infrastructure at scale — securing cloud environments, building resilient architectures, and turning risk into confidence.
What I Do
Core Expertise
Cloud IAM & Zero Trust
Designing identity-first security models across AWS, Azure, and GCP with least-privilege principles and continuous verification.
Threat Detection & SIEM
Building detection pipelines, tuning SIEM rules, and operationalizing threat intelligence to reduce mean time to respond.
DevSecOps & CI/CD Security
Integrating security gates into pipelines, container hardening, IaC scanning, and shifting security left without slowing delivery.
Compliance & Risk
Mapping controls to ISO 27001, SOC 2, NIST, and CIS benchmarks — translating complex frameworks into actionable security postures.
Network Security & Firewall
Architecting segmentation strategies, WAF tuning, VPN design, and micro-segmentation for cloud-native environments.
Security Audits & Pentesting
Conducting vulnerability assessments, cloud configuration reviews, and adversarial testing to expose risk before attackers do.
Ready to secure your cloud?
Let's talk about your infrastructure, threat landscape, and how I can help.
Start a Conversation →