I am a seasoned cybersecurity professional with nearly a decade of experience spanning application security, penetration testing, incident response, and security operations across the banking, retail, and enterprise sectors. My career journey—from software engineering to specialized roles in SecOps, DevSecOps, and application security leadership—has equipped me with a unique ability to bridge technical rigor with business impact.

Currently serving as Senior Manager for Application Security at Security Bank Corporation, I lead initiatives embedding Secure Software Development Life Cycle (SSDLC) practices into CI/CD pipelines, ensuring vulnerabilities are detected and remediated early. My expertise includes SAST, DAST, SCA, and penetration testing methodologies, leveraging tools such as Veracode, Semgrep, Snyk, Checkmarx, and AppScan to strengthen enterprise resilience.

Previously, I have:

• Directed incident response and threat hunting at PUMA Group, using Microsoft 365 Defender and Azure security tools to remediate threats in real time.

• Conducted penetration testing and vulnerability assessments for financial institutions like UCPB, developing baseline security standards and supporting SOC investigations.

• Delivered consulting engagements at EY-SGV, performing infrastructure and web application security assessments for diverse clients.

I hold a Cisco Certified Network Associate (CCNA) credential and multiple certifications in DevSecOps and Application Security, underscoring my commitment to continuous learning and evolving with the threat landscape.

What sets me apart is my ability to translate complex technical findings into actionable strategies for executives and development teams alike—empowering organizations to not only remediate risks but also build future-proof security cultures.