Vladimir Budu

• Cloud Security Posture Management: Analyzed Azure Defender for Cloud recommendations to harden cloud infrastructure, implementing prioritized remediations to reduce critical risks. Used KQL (Kusto Query Language) to perform threat hunting across Azure Monitor, Log Analytics, and Microsoft Sentinel, creating custom security reports.
• Validated Client Data Protection (CDP) implementations against regulatory requirements (GDPR, ISO27001), to ensure proper safeguards for sensitive data.
• Used ArcSight ESM rule correlation techniques to reduce false positives.
• Identified high-risk vulnerabilities via Microsoft Defender Advanced Hunting, correlating findings with MITRE ATT&CK tactics for contextual prioritization and MITRE'S CAPEC (Common Attack Pattern Enumeration) to find attack patterns linked to CVEs.
• Stakeholder Reporting: Produced executive and technical reports on security trends, translating complex findings into actionable remediation plans for engineering teams

• Implemented custom integrations with SAST/DAST (SonarQube), SCA (Black Duck),
• Automated security gates in CI/CD (Jenkins/GitHub Actions) with quality thresholds.
• Built vulnerability dashboards (Grafana / Prometheus+ Python) for real-time risk monitoring.
• Supported teams regarding security pipeline implementation.
• Enforced container security (Trivy) and secrets detection (GitLeaks) in pipelines.

• Started as developer and then was part of team leading the digital transformation of core services by architecting zero-trust security solutions, leveraging NIST SP 800-207 principles including:
• MTLS for service-to-service encryption
• OAuth2/OpenID Connect for identity federation
• API rate-limiting and DDoS protection.
• Real-time fraud detection using behavioral analysis.
• Designed scalable security controls for high-traffic environments, ensuring resilience against high traffics volumes.
• Collaborated with engineering and product teams to align security measures with business requirements, integrating safeguards into the development lifecycle.

• Automated scanning with Burp Suite (Scanner + Intruder), OWASP ZAP (AJAX Spider), and Nuclei (for CVE-based checks)
• Advanced exploitation using SQLMap (tamper scripts), XSS Hunter, and Metasploit (for chained attacks)
• AuthN/AuthZ testing with custom scripts (Python + Bash) to bypass flawed JWT/OAuth2 implementations
• Business logic testing via manual probing with Postman/Repeater for API-specific flaws
• Delivered to client prioritized risk reports with CVSS scoring and remediation playbooks

Technology lead and developer on public customer interface for personal and house financing

part of the development team for the Vodafone Ireland customer portal.