Elena Vasquez
Senior Security Engineer
AWS SecuritySIEMNIST
Skills
Offensive
Penetration TestingMetasploitBurp SuiteSocial Engineering
Defensive
SIEMSplunkWiresharkIDS/IPSIncident Response
Cloud Security
AWS SecurityAzure SecurityIAMCloud Config Review
Compliance
ISO 27001NIST CSFGDPRSOC 2
Languages
PythonBashPowerShellGo
Projects & CTFs
Red Team Engagement — European Bank
Identified 3 critical vulnerabilities including an active directory misconfiguration enabling full domain compromise. All findings remediated before regulatory review.
A major European bank needed to assess real-world attack resilience ahead of regulatory examination. Led a 6-week red team engagement simulating advanced persistent threat (APT) actor TTPs across physical, network, and application layers.
MetasploitBurp SuitePythonCobalt Strike
Cloud Security Architecture — FinTech Startup
Achieved SOC 2 Type II certification within 4 months. Zero security incidents in 18 months post-implementation.
A Series B fintech was storing PII in unencrypted S3 buckets and had no security monitoring across their AWS environment. Designed and implemented a full AWS security architecture including GuardDuty, Security Hub, encrypted storage, and least-privilege IAM policies.
AWSPythonTerraformSplunk
Experience
Senior Security Engineer — Red Team
CrowdStrike
2022 – 2024
- ▸Led red team operations for Fortune 500 clients across financial services and critical infrastructure
- ▸Discovered and responsibly disclosed 4 CVEs in widely-used enterprise software
- ▸Developed internal tooling for automated reconnaissance that reduced engagement setup time by 60%
Cybersecurity Consultant
PwC
2019 – 2022
- ▸Delivered 30+ penetration tests and security audits for clients across banking, healthcare, and energy
- ▸Led ISO 27001 implementation projects for 5 clients achieving first-time certification
- ▸Presented security findings to C-suite and board-level stakeholders