Sorin Flueras

Architected and enforced AWS security at scale: Designed multi‑account AWS security architecture with IAM Identity Center, SCPs and centralized logging; migrated from IAM users to an SSO Landing Zone integrated with Google Workspace; automated threat detection and incident‑response playbooks. Built and maintained security‑focused CI/CD pipelines: Developed a DevSecOps pipeline framework that integrates security checks, IaC scanning and policy validation; implemented dynamic Bitbucket/GitHub runners on ECS to reduce cost and improve isolation. Engineered secure, reproducible infrastructure: Created reusable Terraform and CloudFormation modules for VPCs, ALBs, ECS clusters, Lambda/API Gateway workflows and other AWS resources, enabling environment‑agnostic, security‑first deployments. Implemented hybrid cloud and Zero Trust solutions: Designed AWS + Cloudflare architectures with mTLS tunnels, DNS routing and automated WAF policies; integrated Cloudflare logs into centralized monitoring for better visibility. Automated internal tools and processes: Built Slack bots and CLI scripts to streamline internal security workflows, credential rotation and resource audits; created dashboards to track vulnerabilities and configuration drift kickresume.com. Led incident response and security governance: Handled live AWS security incident, assessed blast radius, and restored compromised account; instituted weekly security reviews and trained teams on best practices.

For a while I was responsible for the automation part of a BigData project, using python scripts. Also here I used Ansible to install and configure Kerberos in HA mode and to configure other BigData specific tools Worked on enhancing Office365 security by creating scripts in Powershell that automatically configured the desired settings. In parallel, I worked on a Vulnerability Assessment project where I used Nessus. Learned Terraform and deployed various resources in AWS and GCP Worked on a DevSecOps project on AWS where I took part in both the design and implementation phases - IaC (using Terraform and Pytest with TFtest or Golang for the testing part) Also here (and on other projects) I use CI / CD pipelines in Github or Gitlab. Gained working experience with most of the AWS Services included in the AWS Solutions Architect - Associate certification

IBM

I was responsible for running and developing scripts for various health check and vulnerability assessment processes. I worked closely together with the SysOps Team and I learned how to fix most of the detected vulnerabilities. Used technologies: Bash, Powershell, Ansible, Ansible Tower, Nessus, Linux/Windows Administration, ServiceNow