Gabriel Robles

Security Automation Engineer | DevSecOps

Engineer specializing in defense automation and critical infrastructure protection. I transform manual security operations into efficient code (Python) to orchestrate vulnerability detection and remediation in Cloud and Banking environments.

Tech Stack

My professional evolution combines a solid foundation in Software Development with Cybersecurity Engineering. Unlike a traditional analyst, I have the ability to write code to integrate tools, automate workflows, and secure infrastructure from the cloud to the container.

My core engineering toolset:

🛡️ Security Automation

Python (Boto3, Requests, Pandas)
Qualys (VMDR & API)
Kenna Security (Risk Scoring)
Splunk (SIEM & Logging)
Bash Scripting

☁️ Cloud & DevOps

AWS (IAM, EC2, S3, Security Hub)
Docker & Kubernetes Security
Linux Hardening
CI/CD Integration
Git & Version Control

Where I have worked

Cybersecurity Consultant (Banking Sector)

Position: Security Automation Engineer

Key Activities:

Python script development to orchestrate communication between Qualys, Kenna, and Splunk.
Automated vulnerability ingestion, reducing reporting time by 40%.
Security posture management in hybrid environments (AWS and On-Premise).
Collaboration with architecture teams for remediation of findings in Docker containers.

Decorapro / Pelotinas

Position: Web Developer

Activities

Installation of WordPress on an EC2 Instance.
Creation of Database and/or Users in RDS.
Administration of EC2 Instances via Terminal.
Using IAM for Creating CDN Instances with CloudFront.
Administration of S3 for static content storage.
Website optimization.
Customization using JavaScript and CSS code.
Creation of backups.

Ecdisis Estudio

Position: Web Developer

Activities

Installation of WordPress within the C-panel.
Creation of databases and/or users.
Uploading Plugins with specific functions to sites.
Customization of WordPress Themes using CSS code.
Uploading Media to a website.
Generating Backup of Site Files.
Creation of Administrative Emails.
Adding extra functionalities to sites using JavaScript.

Security Engineering Case Studies

🐍 ⚙️

Vulnerability Orchestrator

The Challenge: Managing +10,000 vulnerabilities manually per month.
Solution: Python Middleware consuming Qualys API, filtering false positives, and prioritizing via Kenna Security.
Stack: Python, REST APIs, JSON, Splunk.

☁️ 🔒

AWS Security Posture

The Challenge: Lack of visibility on Shadow IT assets in the cloud.
Solution: Auditing scripts using Boto3 to detect public S3 Buckets and permissive Security Groups.
Stack: AWS IAM, Boto3, Lambda, CloudTrail.

📊 🚨

SIEM Integration

The Challenge: No correlation between external threats and internal vulnerabilities.
Solution: Automated security log ingestion into Splunk Enterprise Security for real-time alerting.
Stack: Splunk, Linux, Bash.