Open to opportunities

steve sagasi

@stevesagasi

Message

Cybersecurity analyst specializing in penetration testing and vulnerability management.

Kenya

Message

What I'm looking for

I’m open to remote & global roles where I can lead penetration testing, vulnerability management, and SIEM-driven detection improvements—helping reduce incident resolution times, strengthen compliance, and protect critical systems with clear, actionable reporting.

I’m a Cybersecurity Analyst with 3+ years of focused security experience protecting high-impact government, enterprise, and regional IT systems. I combine offensive testing, vulnerability management, and security operations with strong reporting and communication.

In my recent role, I executed enterprise-wide vulnerability assessments using OpenVAS, securing ERP and other platforms for government and regional clients across East Africa. I also spearheaded penetration testing on a Ministry of Lands digitization initiative, driving a 25% improvement in system resilience.

I enhance detection and response by improving SIEM rules mapped to MITRE ATT&CK—boosting insider threat and unauthorized access detection accuracy by 30%. By investigating anomalies through HuaweiSight and Cisco logs, I enabled 40% faster incident resolution and reduced downtime.

I’ve also built and managed a dedicated security testing lab for adversary simulations and Blue/Purple Team exercises, and co-led incident response against phishing campaigns, reducing phishing success rates by over 45%. I’m proud that I’ve led vulnerability management across multi-country e-government platforms, identifying and remediating 50+ critical vulnerabilities before public exploitation.

Experience

Work history, roles, and key accomplishments

Current

MEAL & Data Audit Officer

Current

BrighterMonday Kenya

Apr 2025 - Present (1 year 2 months)

Automated data compliance dashboards to strengthen audit readiness and ensured zero failed audits during security reviews.

Data Compliance Audit Readiness Audit Reporting

Cybersecurity Analyst

COSEKE Ltd

Feb 2022 - Feb 2025 (3 years)

Executed enterprise vulnerability assessments using OpenVAS to secure government and regional platforms across East Africa, and led penetration testing for a Ministry of Lands digitization project, improving system resilience by 25%. Enhanced SIEM detections mapped to MITRE ATT&CK to improve insider threat detection accuracy by 30% and enabled 40% faster incident resolution; remediated 50+ critica

OpenVas Nessus Nmap Burp suite Metasploit SIEM QRadar OWASP Top 10 Incident Response Python

ICT Officer

Bordar Group (UR Home International)

Sep 2017 - May 2021 (3 years 8 months)

Hardened systems and optimized user access policies, reducing unauthorized access incidents by 20%, and rolled out firewalls, endpoint security, and secure remote access across multiple branch offices. Delivered 1st/2nd line IT support for ERP and payroll systems to maintain 99.5% SLA compliance and improved physical security with IP CCTV and access control deployments.

Access Control Firewalls Endpoint Security Remote Access IT Support SLA Management ERP Support Network Security Physical Security

Junior ICT Officer

Bitlink Company Ltd

Aug 2015 - Aug 2017 (2 years)

Managed secure data processing for the Kenyan Parliament, achieving 100% compliance and reducing processing errors by 30%. Produced and maintained secure handling workflows to support accurate, compliant data operations.

Data Processing Data Compliance Access Management Secure Handling Procedures IT documentation

ICT Intern

Kenyatta National Hospital

Mar 2014 - May 2015 (1 year 2 months)

Supported IT infrastructure modernization and helped ensure uptime for critical healthcare systems. Performed operational support tasks to maintain reliability during infrastructure improvements.

IT Support Troubleshooting Networking support Healthcare IT Support