Salman Hersi

Salman Hersi, CISSP

Open to roles

Cybersecurity analyst. Cloud security. Risk remediation.

I identify security risk, coordinate remediation, and harden enterprise cloud environments.

CISSP-certified cybersecurity analyst with 5+ years across vulnerability assessment, configuration hardening, IAM, cloud security, and incident response.

Currently at Miipe Quality Solutions, supporting enterprise clients with risk-based remediation roadmaps, security standards, AWS guardrails, and SIEM visibility in Splunk and Microsoft Sentinel.

I am also pursuing a Master of Science in Cybersecurity at Georgia Tech, with expected graduation in August 2028.

Vulnerability assessmentRisk-based remediationCIS + NIST hardeningSplunk + SentinelAWS + Azure securityPowerShell + Python

Selected Work

Writing

Experience

CISSP-certified cybersecurity analyst with 5+ years in vulnerability assessment, security remediation, and risk management across enterprise IT and cloud environments.

Vulnerability Assessment (Tenable Nessus)Risk-Based RemediationPatch TrackingPowerShellPythonIncident ResponseCIS + NIST HardeningSplunkMicrosoft SentinelSnortAWSAzure

Miipe Quality Solutions

Cloud Security Consultant (Architecture & Strategy)

Sept 2023 - Present

  • Conduct security assessments across 10+ enterprise client environments including Bell and Element, identifying vulnerabilities and privilege-management gaps.
  • Translate complex stakeholder requirements into clear security standards and design specifications, cutting stakeholder sign-off from roughly six weeks to three.
  • Engineer Security-by-Default guardrails with AWS Config and Terraform, reducing non-compliant resource provisioning by about 30%.
  • Develop Splunk and Microsoft Sentinel detection rules and dashboards to improve visibility across monitored enterprise infrastructure.

Mosaic North America

Security Advisor (IAM & Solutions Engineering)

May 2022 - Aug 2023

  • Served as primary security advisor for B2B clients, presenting risk-based remediation roadmaps and countermeasures to senior stakeholders.
  • Architected SSO, MFA, and RBAC standards for a high-volume e-commerce portfolio processing $5M+ annually across 250+ client web assets.
  • Partnered with client engineering teams to remediate authorization weaknesses and enforce least-privilege access through periodic reviews.
  • Led security governance workshops for 50+ e-commerce teams, reducing security-related operational overhead by 40%.

NPower

Junior Cyber Security Analyst (SOC Operations)

Jan 2021 - Dec 2021

  • Conducted Tier-1 SOC monitoring in a simulated enterprise environment using Splunk searches to analyze network and authentication logs.
  • Managed incident response cases in Jira, documenting case notes and developing SOPs for clear alert escalation pathways.

Certifications

CISSPAWS Certified Solutions Architect Associate (2025)CompTIA Security+ (2021)Okta Certified Professional

Education

Georgia Institute of Technology

Jun 2026 - Aug 2028

Master of Science in Cybersecurity

Currently pursuing. Expected graduation: August 2028.

York University

Honours Bachelor of Commerce - Information Technology