Securing enterprise cloud infrastructure
Rafael Trinidad engineers automated identity governance, active directory defense, and zero-trust architectures to protect critical Azure and AWS workloads while maintaining continuous, audit-ready compliance.
Hardening enterprise environments
Lead Security Engineer
Led automated identity governance programs and Active Directory defense across hybrid cloud infrastructure. Successfully reduced configuration policy drift by scripting continuous compliance audits in Python and PowerShell.
Infrastructure Analyst
Executed rigorous vulnerability assessments and hardened AWS infrastructure environments. Architected zero-trust network segmentation and access controls to satisfy strict PCI DSS and SOC 2 compliance frameworks.
Engineered for zero trust
IAM & Directory Defense
Azure & AWS Security
SOC 2 & PCI DSS
Hardening active directory trusts, Microsoft Entra ID configurations, and enterprise identity providers to block lateral movement and advanced privilege escalation vectors.
Deploying secure, hardened infrastructure-as-code templates and implementing real-time compliance monitoring scripts across multi-tenant AWS and Azure environments.
Translating complex regulatory requirements into automated technical controls, managing continuous vulnerability remediation pipelines, and generating structured, audit-ready telemetry.
Verified security expertise
CISSP
Azure Security
AWS Security
Certified Information Systems Security Professional, validating architectural mastery of enterprise-grade security operations, identity governance, and risk management frameworks.
Microsoft Certified Azure Security Engineer Associate, proving hands-on technical capability in advanced identity protection, platform security, and hybrid cloud hardening.
AWS Certified Security Specialty, demonstrating deep expertise in secure cloud incident response, automated IAM policy evaluation, and end-to-end data protection.