Skip to main content
Germán Darío Baquero SalamancaGS
Open to opportunities

Germán Darío Baquero Salamanca

@germndarobaquerosala

Senior Security Engineer specializing in vulnerability management, AppSec, and cloud security to reduce organizational risk.

Colombia
Message

What I'm looking for

I’m looking for a senior security role where I can lead enterprise vulnerability lifecycle and cloud security posture management, partner with engineering/DevOps on DevSecOps and secure SDLC, and measure impact through SLA-driven remediation and risk-based reporting.

I’m a Senior Security Engineer with 9+ years of experience in Vulnerability Management, Application Security, Cloud Security, and Security Operations supporting large-scale SaaS and cloud-native environments. I focus on strengthening security outcomes across the full vulnerability lifecycle—identification, triage, remediation validation, and closure—while aligning work to measurable risk and compliance needs.

In vulnerability management roles, I’ve led enterprise vulnerability lifecycle programs across cloud, infrastructure, and application environments. I reduced critical vulnerabilities by 40% and improved remediation MTTR by 30% through risk-based prioritization using CVSS, exploitability, asset criticality, and business impact. I also built security metrics, remediation dashboards, and executive reporting to track SLA compliance, remediation performance, and organizational risk exposure.

On the cloud side, I manage cloud security posture management (CSPM) and remediation governance for Azure and AWS environments, including Microsoft Defender for Cloud for identifying cloud misconfigurations and security gaps. I partner with Infrastructure, Cloud/DevOps, and engineering teams to coordinate patch management activities, remediate issues in accordance with SLAs, and strengthen Identity and Access Security with IAM, MFA adoption, privileged access management, and Zero Trust security initiatives.

I also drive Application Security through OWASP Top 10 / OWASP ASVS, secure SDLC practices, and threat modeling (STRIDE). I support secure code reviews and security design reviews, conduct SAST/DAST/SCA assessments, and integrate security testing into CI/CD pipelines using DevSecOps practices so vulnerabilities are found and addressed earlier. I complement this with threat intelligence analysis and MITRE ATT&CK mapping to improve exposure analysis and remediation against actively exploited threats.

Experience

Work history, roles, and key accomplishments

AP
Current

Vulnerability Management Engineer

Alexandra Lozano Immigration Law PLLC

Sep 2025 - Present (10 months)

Led the enterprise vulnerability management program across cloud, infrastructure, and application environments, managing the vulnerability lifecycle through triage, remediation validation, and closure. Reduced critical vulnerabilities and improved remediation performance via risk-based prioritization, metrics, and coordination with Engineering and Identity teams.

Mercado Libre logoML

Cybersecurity Engineer

Dec 2022 - May 2025 (2 years 5 months)

Conducted application security assessments across microservices, APIs, and cloud-native applications, identifying issues aligned to OWASP Top 10. Led threat modeling using STRIDE and collaborated with engineering teams to remediate findings based on risk and business impact.

CL

Information Security Roles

Codaltec / Agencia Nacional Digital / Locknet

Jan 2015 - Jan 2019 (4 years)

Executed application security testing across public and private sector projects and supported secure development practices and ISMS implementation. Defined security requirements aligned with NIST CSF, PCI-DSS, and GDPR.

Education

Degrees, certifications, and relevant coursework

Universidad de los Andes logoUA

Universidad de los Andes

Master of Science in Information Security, Information Security

Completed a Master of Science degree in Information Security at Universidad de los Andes.

Universidad Piloto logoUP

Universidad Piloto

Specialization in Information Security, Information Security

Completed a specialization in Information Security at Universidad Piloto.

SENA logoSE

SENA

Specialization in Database Security, Database Security

Completed a specialization in Database Security at SENA.

Universidad Sergio Arboleda logoUA

Universidad Sergio Arboleda

Bachelor of Science in Systems and Telecommunications Engineering, Systems and Telecommunications Engineering

Completed a Bachelor of Science degree in Systems and Telecommunications Engineering at Universidad Sergio Arboleda.

Tech stack

Software and tools used professionally

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan