Skip to main content
Lucas BankerLB
Open to opportunities

Lucas Banker

@lucasbanker

Senior Vulnerability Management Engineer | CTEM Specialist | Attack Path Analysis & Risk-Based Prioritization | CrowdStrike Falcon

Brazil
Message

What I'm looking for

I’m looking for a global enterprise security role where I can run CTEM and risk-based vulnerability management, use attack path analysis with CTI, and deliver automation that reduces MTTR while improving business-context mitigation priorities.

I am a Cybersecurity Specialist focused on Continuous Threat Exposure Management (CTEM) and Risk-Based Vulnerability Management integrated with Cyber Threat Intelligence (CTI). My expertise lies in transforming overwhelming vulnerability data into threat-informed risk mitigation by leveraging advanced Attack Path Analysis and Cyber Threat Intelligence (CTI).

What I bring to global enterprise environments:
- CTEM & Automation: Engineered automated pipelines integrating CrowdStrike Exposure Management with Jira (ITSM) and Active Directory to dynamically triage risks and reduce MTTR.
- Risk Prioritization: Shifted organizations from generic CVSS scores to business-context prioritization using CISA KEV, EPSS, zero-day intel, and critical attack path mapping.
- Full-Scale Infrastructure: Mapping exposures across hybrid architectures, cloud infrastructure, Kubernetes clusters, and industrial networks (OT).
- Holding a degree in Cyber Defense and an post-graduation specialization in Corporate Cybersecurity Management, I bridge the gap between technical threat engineering and business metrics for enterprise leadership.

⚡ In Progress: Certified Red Team Operator I (CRTO) & Red Team Lead (CRTL) from Zero Point Security.

Experience

Work history, roles, and key accomplishments

MI
Current

CTEM/VM Security Lead

Midway

Jan 2026 - Present (6 months)

Finance, Retail & Mfg Experience: Lead Vulnerability Management and CTEM programs across workstations, on-prem, multi-cloud, and Kubernetes. Prioritize risks via CTI and attack paths. Orchestrate automation with ITSM tools. Support incident response and ensure compliance with ISO 27001, NIST, SOC 2, and BCB 4,893.

MI

Endpoint Security Leader

Midway

Jan 2025 - Dec 2025 (11 months)

Finance, Retail & Mfg Experience: Led technical strategy and administration for Endpoint Security. Managed and optimized CrowdStrike Falcon, Skyhigh Proxy, and Trellix DLP. Enforced policies (USB block/malicious web), managed IOCs/IOAs, and collaborated with CTI/IR for threat hunting. Served as technical lead for incident response and posture hardening.

MA

IS internal Auditor (ISO 27001)

Mantu

Mar 2025 - Jul 2025 (4 months)

Industry: Financial
Internal audit (ISO 27001 & NIST CSF) for BNP Paribas Bank

• Temporary security audit engagement
• ISO 27001 internal audits
• NIST Cybersecurity Framework (CSF) alignment assessment
• Information security processes and controls validation
• Information security control evidence analysis
• Security gap analysis and reporting
• Physical data center audits and walkthroughs

LO

Security Engineer

L'Oréal

Oct 2021 - Jun 2024 (2 years 8 months)

Cosmetics & Mfg Experience: Managed web, e-commerce, and on-prem server vulnerabilities. Coordinated pentests and AppSec (SAST, DAST, SCA), prioritizing risks by business context. Conducted threat intelligence (CTI) and supported incident response. Evaluated third-party architectures, managed GRC/TPRM lifecycles, and delivered security awareness programs.

AB InBev logoAI

Vulnerability and Patching Consultant

Oct 2022 - Feb 2024 (1 year 4 months)

Industry: Brewery, Consumer Goods.

• Managed Change Management processes
• Managed patch management and deployment
• Managed vulnerability management for cloud servers
• Led the Vulnerability Management and Patch Management lifecycle

NC

Incident Response and CTI Analyst

Natura & Co.

Jul 2021 - Sep 2021 (2 months)

Industry: Cosmetics/Consumer Goods and Manufacturing.

• Incident response
• EDR administration
• Identity security incident response
• Conducted Cyber Threat Intelligence (CTI) analysis and reporting
• Managed Indicators of Compromise (IOCs)

BA

Infantry Soldier

Brazilian Army

Mar 2011 - Feb 2012 (11 months)


• Discipline and accountability
• Teamwork and leadership
• Operational planning and execution
• Decision-making under pressure
• Adaptability and resilience
• Attention to detail
• Commitment to mission objectives

Education

Degrees, certifications, and relevant coursework

Estácio logoES

Estácio

Post-gratudation Degree - Specialization, Enterprise Cybersecurity Management

2023 - 2023

Estácio logoES

Estácio

Associate of Technology, Cyber Defense

2020 - 2022

Estácio logoES

Estácio

Bachelor's Degree (Bacharelado), Business Administration

2017 - 2022

Undergraduate bachelor’s program in Business Administration.

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan