Senior Cloud Security Engineer | SOC Operations | Incident Response | Multi-Cloud Security Architect
Senior Cloud Security Engineer with 5+ years of experience securing large-scale, mission-critical environments across AWS, Azure, and GCP. I specialize in SOC operations, incident response, threat detection, and enterprise cloud security architecture.
I design, implement, and operate security controls across the full cloud security lifecycle:
- Prevention: Security Architecture, Zero Trust, Network Security, Data Protection, IAM
- Detection: Cloud-native Threat Detection, SIEM, Log Correlation, Threat Hunting
- Response: Incident Handling, Investigation, Containment, Eradication, Recovery
- Governance: Risk Assessment, Security Baselines, Compliance & Control Frameworks
My professional background spans banking, financial services, manufacturing, and enterprise IT, where I consistently contribute to:
- Strengthening security posture for mission-critical cloud platforms
- Enhancing SOC detection & response capabilities
- Reducing systemic security risks through automation and continuous monitoring
- Aligning security engineering with governance, risk, and compliance objectives
In parallel with enterprise execution, I am the Co-Founder & AWS Community Leader at Viet AWS & AWS Study Group, contributing to the long-term development of Vietnam’s cloud & cybersecurity talent ecosystem through structured training, mentorship, and enterprise-aligned technical programs.
Current Focus:
Enterprise Cloud Security | SOC Operations | Incident Response | Threat Detection
Responsible for designing, implementing, and operating security controls across multi-cloud environments (AWS, Azure, GCP) with a strong focus on SOC operations and incident response.
- Enterprise cloud security architecture design
- Security baseline development & enforcement
- SOC operations enablement & incident response workflows
- Automated threat detection & response
- Risk assessments, compliance audits & governance frameworks
- Infrastructure as Code (IaC) security automation
- Implemented enterprise security baselines across AWS Organizations using Terraform
- Built automated threat detection pipelines using AWS GuardDuty, Security Hub, Sentinel
- Designed Zero Trust IAM architectures for regulated workloads
- Deployed multi-cloud centralized logging, SIEM, and SOC alerting infrastructure
- Automated compliance validation against CIS Benchmarks, ISO 27001, PCI-DSS
AWS
- Security Hub, GuardDuty, IAM, KMS, Secrets Manager
- WAF, Shield, Network Firewall
- AWS Config, CloudTrail, CloudWatch, EventBridge
Azure
- Microsoft Defender for Cloud, Sentinel, Key Vault
- Azure Policy, Azure Monitor
GCP
- Security Command Center, Cloud Armor, IAM, KMS
- Cloud Security Architecture
- Identity & Access Management
- Threat Detection & Incident Response
- SOC Operations & Threat Hunting
- Network Security & Data Protection
- Security Compliance & Continuous Auditing
- IaC: Terraform, AWS CloudFormation, Ansible
- Scripting: Python, PowerShell, Bash
- CI/CD: GitHub Actions, GitLab CI, Jenkins
PCI-DSS | SOC 2 | ISO 27001 | HIPAA | GDPR | NIST Cybersecurity Framework | CIS Benchmarks
- Co-Founder & AWS Community Leader – Viet AWS & AWS Study Group
- Designed structured cloud & security learning journeys
- Mentored engineers across cloud, security, and DevOps
- Delivered 200+ technical workshops and enterprise-aligned training programs
- Location: Ho Chi Minh City, Vietnam
- Email: khavan.work@gmail.com
- LinkedIn: https://linkedin.com/in/vanhoangkha
- Website: https://cloudjourney.awsstudygroup.com