Looking for a job

Noman Aziz

@noman-aziz

Message

Cloud Security Engineer having 4 YOE with expertise in Software Development and DevSecOps.

Pakistan

Message

What I'm looking for

I am seeking a role that fosters innovation and collaboration, where I can leverage my skills in cloud security and DevSecOps to drive impactful projects and contribute to a culture of continuous improvement.

I am a dedicated Cloud Security Engineer with extensive experience in DevSecOps and secure architecture. My journey in technology has been marked by a commitment to embedding security into every layer of the software development lifecycle. At a FinTech startup, I successfully implemented security guardrails and automated processes that saved significant costs while enhancing security posture.

Previously, as a Senior Software Systems Engineer, I led vulnerability assessments and developed security policies that improved compliance and reduced vulnerabilities across multiple projects. My technical expertise spans various programming languages and security tools, allowing me to architect solutions that prioritize security and efficiency. I am passionate about mentoring junior engineers and sharing knowledge through my technical blog, where I document my experiences and insights in the field.

Experience

Work history, roles, and key accomplishments

Cloud Security Engineer

FinTech Stealth Startup

Mar 2025 - Jul 2025 (4 months)

- Application Security
- AWS Cloud Security
- DevSecOps
- Vulnerability Assessment

Terraform Amazon EKS AWS DevSecOps GitHub Actions)PCI DSS CloudFormation GuardDuty Security Hub

Software Systems & DevSecOps Engineer

Xgrid.co

Sep 2023 - Mar 2025 (1 year 6 months)

- DevSecOps
- Vulnerability Assessment
- GRC
- Cloud Native Development

Vulnerability Assessment Threat Modeling DevSecOps SDLC DefectDojo SAST SCA DAST AWS Cognito

Full Stack Web and Blockchain Developer

Funavry Technologies

Dec 2022 - Sep 2023 (9 months)

Developed APIs and smart contracts using Agile methodologies, prioritizing security best practices with Role-Based Access Controls (RBAC). Engineered unit and integration tests to ensure code quality and robustness, achieving 100% code coverage.

API Development Smart Contracts Agile RBAC Unit Testing Integration Testing Blockchain Web Development Security Best Practices

DevSecOps Engineer

Genesis-IT Lab

Mar 2022 - Nov 2022 (8 months)

Built and maintained secure CI/CD pipelines, enhancing on-premises infrastructure security using Wazuh SIEM. Automated monitoring and deployment workflows with Prometheus, ELK, Ansible, and Docker.

CI CD Infrastructure Security Wazuh Prometheus ELK Ansible Docker DevSecOps Automation

Education

Degrees, certifications, and relevant coursework

National University of Computer and Emerging Sciences

Bachelor of Science, Computer Science

2018 - 2022

Grade: 3.41

Activities and societies: > Teaching Assistant - Vulnerability Assessment & Reverse Engineering course - Operating Systems course > CyberSpaceLegion (CSL) Red Team Member - Part of the founding team of first cyber security society > 3rd Position in NaScon'22 CTF Competition Majors: Information Security, Ethical Hacking, Fundamental of Malware Analysis, Cryptography and Data Security, Computer Networking, Cloud Security

Completed a Bachelor of Science in Computer Science. Gained foundational knowledge and skills in various aspects of computing.