• 👋 Hi, I’m @josephjsilva
• 👀 I’m interested in Vulnerability Analysis, Threat Hunting, Automation
• 🌱 I’m currently learning Vulnerability Analysis, Threat Hunting, Automation with Python
• 💞️ I’m looking to collaborate on Automation with Python
• 📫 How to reach me https://www.linkedin.com/in/josephjsilva/

Strategic, multi-faceted, process-oriented Information Security Leader with a proven track record of identifying and remediating security and compliance gaps in core IT systems. I lead initiatives that enhance organizational security, compliance, and productivity, and develop key processes, policies, and standards to mitigate risk and drive innovation, automation, and efficiency across the organization.

IT Director Data & GRC
2023 – Present

• Oversight of cybersecurity program and guidance for IT teams in compliance with security controls.
• Architected and designed a master data model and a persona-based identity model for entitlement.
• Ensured compliance with CCPA/CPRA and PCI-DSS, and led incident response initiatives.

Core Accomplishments:

• Implemented new regulatory and incident response plans.
• Led the successful migration to Microsoft Authenticator based MFA.
• Redesigned user lifecycle policies and security controls, reducing error rates and identity management risks.

HRIS and IAM Manager
2016 – 2023

• Supported HR systems, managed employee data and Identity Automation.
• Implemented multifactor authentication and automated provisioning.
• Provided advanced technical support to IT, HR, and Accounting teams.

Core Accomplishments:

• Implemented a new Human Capital Management (HCM) system in less than 5 months.
• Integrated several employee-related third-party vendors with Enterprise SSO and Federation.

Applications Manager
2011 – 2015

• Provided technical and business process support for HR and IT departments.
• Managed relationships with HR-related vendors and integrated key projects.

Core Accomplishments:

• Automated identity synchronization with Active Directory.
• Led RFP processes and implementation projects for new HCM systems.

Sr. Applications Developer
2008 – 2011

• Developed custom solutions for Accounting, Human Resources, and Operations.
• Administered key billing, databases, Datawarehouse, and reporting systems.

Consultant, Self-Employed
2005 – 2008

• Provided technical consulting services, including systems architecture and implementation for B2B clients.

IT Director
2004 – 2005

• Managed IT and systems for Boudin, including installation of Audio/Visual systems, POS, and network systems.

Director of Operations
2003 – 2004

• Directed operations for a business telecom and networking company.

IT Director
2000 – 2003

• Managed IT operations and special projects with a focus on service delivery and application management.

• WGU Information Technology Management B.S. (currently enrolled)
• Certifications:
  • ISC2 Certified Information Systems Security Professional (CISSP)
  • ISC2 Certified Cloud Security Professional (CCSP)
  • Certified Identity and Access Manager (CIAM)
  • ITIL 4 Foundation
  • ServiceNow Certified Developer
  • CompTIA CySA+, Security+, PenTest+, Project+, Network+, A+
  • AWS Certified Cloud Practitioner
  • LPI Linux certified
  • PMI PMP (in progress)

• Azure EntraID Administration
• Microsoft M365
• Azure Administration
• AWS Administration
• Dell ARS Sync for Active Directory Automation
• SecureAuth & Duo Identity Provider (IdP)
• ServiceNow (ITSM)
• Dell Boomi Automation
• Human Capital Management (HCM)
• Learning Management Systems (LMS)
• Basic Forensics (Autopsy)
• Microsoft SQL
• Vulcan (semi-fluent)

• Home lab with "Wazuh - Open Source XDR, SIEM" and setup VMs to test Nessus scans.