Cybersecurity Solution Architect - Network, Automotive & Manufacturing

Cybersecurity Solution Architect | 12+ Years of Experience in IT & OT Security

I am a Cybersecurity Solution Architect and Consultant with over 12 years of experience delivering end-to-end cybersecurity solutions across network infrastructure, global IT, manufacturing, Operational Technology (OT), industrial technology, and Manufacturing Execution Systems (MES). My expertise spans Zero Trust architectures, IT/OT security integration, cloud security, identity management, encryption, compliance, and threat intelligence.

I design and implement comprehensive cybersecurity strategies, architectures, and processes, helping organizations achieve security resilience, regulatory compliance, and operational efficiency. My work is deeply rooted in global security standards, including ISO 27001, ISA/IEC 62443, TISAX, UNECE R155/R156, ISO 21434, ASPICE, NIST, and NIS2. Additionally, I provide risk assessments (TARA, HARA), policy development, security governance, and compliance enforcement to ensure organizations meet stringent cybersecurity requirements.

Core Competencies
• Cybersecurity Architecture & IT/OT Security
Expertise in Zero Trust architectures, network security, and integrating Operational Technology (OT) into enterprise security frameworks. Specialized in securing automotive and manufacturing industries, including SCADA systems, MES, and industrial control systems (ICS).
• Security Compliance & Governance
Extensive experience in implementing and maintaining security frameworks and industry regulations, ensuring compliance with ISO 27001, ISA/IEC 62443, UNECE R155/R156, TISAX, ASPICE, and NIST/NIS2.
• Cloud & Identity Security
Proficient in cloud security, identity access management (IAM/PAM), and SaaS/PaaS transformations. Hands-on expertise with ZScaler, Crowdstrike, Proofpoint, Azure AD, and AWS IAM for securing cloud environments and identity infrastructures.
• Network Security & Infrastructure Protection
Deep knowledge of Fortinet, Palo Alto, Checkpoint, Barracuda, VPNs, GRE tunnels, IDS/IPS systems, and enterprise firewalls and proxy solutions to ensure robust network protection.
• Threat Intelligence, Monitoring & Incident Response
Experienced in SIEM platforms (QRadar, Splunk, R7), log streaming, vulnerability exploitation, threat assessments (TARA, HARA), and real-time incident response for detecting and mitigating cyber threats.
• Data Encryption & PKI
Expertise in data encryption techniques, cryptographic key management, and Public Key Infrastructure (PKI) to safeguard sensitive information and enforce security policies.
• Security Automation & Software Development
Skilled in C++, C#, Python, PHP, Java, JSON, and HTML, enabling custom security solutions, automation, and process optimization in cybersecurity environments.
• Project Management & Cybersecurity Operations
Strong background in Agile and Waterfall methodologies, supporting organizations in Change Management (ITIL), cybersecurity maintenance processes, and IT/OT security integrations.
• Cybersecurity Awareness & Social Engineering Defense
Conduct security awareness training, phishing simulation programs, and social engineering workshops to strengthen an organization’s human firewall against cyber threats.

Strategic & Technical Expertise

I support enterprises in cloud migrations, transitioning from IaaS to SaaS/PaaS and from on-premise to cloud-based infrastructures, ensuring seamless security integration. My work includes threat monitoring, security analytics, and reporting, delivering data-driven insights for executive (non-technical) and engineering (technical) stakeholders.

My holistic approach to cybersecurity combines deep technical expertise, strategic vision, and compliance-driven execution, making me a trusted advisor for organizations seeking robust cybersecurity architectures, risk mitigation strategies, and enhanced resilience against evolving cyber threats.