Cybersecurity-focused technologist that likes building secure, automated, and intelligent systems across cloud, software, and infrastructure layers. Operating at the intersection of security engineering, cloud platforms, and automation.
Focused on eliminating manual security gaps by embedding controls directly into infrastructure, pipelines, and applications. I leverage and implement AI-driven tooling where it makes sense, improving detection, response, and decision-making at scale without adding unnecessary complexity.
- Penetration testing and vulnerability assessment
- Threat modeling and adversary mapping (MITRE ATT&CK)
- SIEM, threat hunting, log analysis, and system hardening
- Identity & access management, risk assessment
- Security playbooks for incident response, alert triage, and containment
- Secure cloud architectures on AWS and Azure
- Cloud security posture management and workload protection
- Infrastructure as Code (Terraform) and containerized environments
- CI/CD pipelines with security controls baked in
- AI integration for security operations and business workflows
- OpenAI API and GenAI-powered automation
- Event-driven automation with serverless and low-code platforms
- Security-aware process automation to reduce human error
-
Python, JavaScript, SQL, Bash, PowerShell, Kotlin
-
Microsoft Sentinel, Entra ID / Azure AD, Splunk, Prisma/Cortex Cloud
Wazuh, Shuffle SOAR, Trivy -
Docker, Kubernetes, Terraform, GitHub Actions, CI/CD pipelines
-
Windows, GNU/Linux, macOS, Android
VMware, VirtualBox, Hyper-V, KVM -
ISO 27001, HIPAA, PCI DSS, NIST CSF
- Security-first applications and internal tools
- Automated detection and response workflows
- Cloud environments designed for resilience and compliance
- AI-assisted systems that enhance decision-making and operations
- Spanish (Native)
- English (C2 β Proficient)
- Portuguese (B1 β Intermediate)
- Email: gabrieltello10@hotmail.com
- LinkedIn: https://www.linkedin.com/in/gtellozambrano