Himalayas logo
charles ngatiaCN
Looking for a job

charles ngatia

@charlesngatia

Cybersecurity engineer specializing in penetration testing, incident response, and threat intelligence.

Kenya
Message

What I'm looking for

I seek hands-on roles where I can lead threat detection and response, perform advanced offensive testing, and help embed DevSecOps practices while mentoring junior engineers.

I am a hands-on cybersecurity engineer with experience in penetration testing, threat modeling, incident response, and SIEM-driven monitoring. I leverage a Bachelor's in Information Technology and practical certifications (Ethical Hacking, Cyber Threat Management, DevSecOps) to identify and remediate critical vulnerabilities across web, mobile, API, and cloud environments.

My work includes offensive security testing for JourneyMentor and AfricaHackon, SOC analysis using Splunk and MITRE ATT&CK, and deploying defensive tooling such as pfSense and Suricata. I build playbooks, reduce incident dwell time, train junior engineers, and create repeatable secure-design processes that measurably improve security posture.

Experience

Work history, roles, and key accomplishments

JO
Current

Cybersecurity Engineer

JourneyMentor

Jun 2025 - Present (7 months)

Performed threat modeling and security assessments for microservices, APIs, and cloud architectures, reducing post-deployment vulnerabilities by 40%+ and producing reusable threat modeling artifacts. Supported incident response activities and developed playbooks for ransomware, lateral movement, and data exfiltration.

Threat ModelingOWASPAPI SecurityCloud SecurityIncident ResponseSIEMPlaybook DevelopmentLinux
AF
Current

Cybersecurity Engineer

AfricaHackon

Jan 2024 - Present (2 years)

Conducted penetration tests finding 15+ critical vulnerabilities and deployed Splunk SIEM and pfSense/Suricata to reduce incident response time by 30% and block 70% of brute-force attacks. Trained junior engineers and automated security hardening for web infrastructure.

Penetration TestingSplunkPFsenseSuricataLinuxNginxBash ScriptingWeb SecurityWordPress
FO

SOC Analyst

Forage

Nov 2024 - Dec 2024 (1 month)

Analyzed APT incidents using Splunk and MITRE ATT&CK, detected stealthy malware via CrowdStrike and PCAPs, and contained a ransomware simulation while scoring 95% on risk assessments.

SplunkCrowdstrikePCAPRansomwareThreat Intelligence
MB

IT Support Specialist

Marge Communication Bureau

Nov 2017 - Aug 2024 (6 years 9 months)

Managed user accounts, endpoint protection, patching and firewall/VPN configurations for 100+ users, supported IT audits, and maintained continuity through monitoring, backups, and incident documentation.

Endpoint ProtectionPatch ManagementVPNBackupIT Support

Education

Degrees, certifications, and relevant coursework

AA

ALX Africa

Certificate in Back-end Web Development, Back-end Web Development

2024 - 2025

Certificate program in Back-end Web Development covering server-side development and related technologies.

Mount Kenya University logoMU

Mount Kenya University

Bachelor of Information Technology, Information Technology

2015 - 2018

Bachelor's degree in Information Technology focused on core IT principles and practical cybersecurity applications.

Tech stack

Software and tools used professionally

Postman logo

Postman

Splunk logo

Splunk

Google Cloud Platform logo

Google Cloud Platform

Cloudflare logo

Cloudflare

MySQL logo

MySQL

Gmail logo

Gmail

PHP logo

PHP

Splunk Enterprise logo

Splunk Enterprise

Wireshark logo

Wireshark

Ubuntu logo

Ubuntu

Linux logo

Linux

ZAP logo

ZAP

CrowdStrike logo

CrowdStrike

WordPress logo

WordPress

Docker logo

Docker

NGINX logo

NGINX

Burp Suite logo

Burp Suite

Nmap logo

Nmap

Metasploit logo

Metasploit

Bash

Availability

Looking for a job

Location

Kenya

Authorized to work in

Kenya

Salary expectations

24k-200k USD

Social media

charles ngatia's LinkedIn

Job categories

Cybersecurity EngineerSecurity Engineer

Skills

Penetration TestingThreat ModelingIncident ResponseThreat IntelligenceSIEMLinuxShell ScriptingPFsenseSuricataNginxMySQLPHPGCP SecurityDevSecOpsCrowdstrikeOWASPAPI SecurityRisk AssessmentBASHGmailGoogle Cloud PlatformSplunkUbuntuWordPress

Interested in hiring charles?

You can contact charles and 90k+ other talented remote workers on Himalayas.

Message charles

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
charles ngatia - Cybersecurity Engineer - Deloitte | Himalayas