Liran Aknin

Sentiance, Belgium

• Hardened the CI/CD pipeline to defend against software supply chain threats by integrating static analysis, SBOM generation, and container image scanning into the build process. Enforced mandatory checks for all projects and blocked vulnerable images from reaching Amazon ECR, resulting in nearly 650% growth in security coverage and eliminating known critical vulnerabilities to reach production.
• Implemented infrastructure-as-code security checks in the CI pipeline to detect misconfigurations early in the development phase. This shift-left control helped reduce cloud security risks by preventing insecure infrastructure definitions from progressing to deployment.
• Architected and deployed secure cloud infrastructure using Infrastructure as Code (Terraform, Ansible)
• Reduced engineering-controlled security incidents by ~79% over four years
• Maintained a robust RBAC and ABAC-based access control strategy, significantly reducing the risk of unauthorized access across environments by enforcing least privilege and dynamic, attribute-driven permissions.
• Enhanced active threat monitoring capabilities by leveraging observability tools and custom Python scripting to detect anomalies, automate alerting, and reduce incident response time.
• Conducted regular disaster recovery exercises to validate recovery procedures, ensure business continuity, and maintain compliance with organizational policies and resilience objectives.
• Conducted frequent security assessments covering user access, threat monitoring, and endpoint protection to ensure continuous alignment with security policies, minimize risk exposure, and proactively identify control gaps.

Bulwarx, Israel

• Installed and integrated Forcepoint security solutions, ensuring seamless operation and alignment with customer infrastructure.
• Tailored and customized security policies for email, web and data protection based on customer needs and compliance.
• Provided on-site technical support, troubleshooting, and IT staff training on managing and maintaining solutions.
• Assisted with updates, patch management, and security incidents, offering root cause analysis and remediation.
• Prepared detailed documentation for implementation, ensuring clear post-deployment management and performance optimization.

Check Point Software Technologies, Israel

• Recommended architectural improvements, design, and integration solutions.
• Diagnosed and resolved complex networking issues related to firewalls, including IPsec VPNs, NAT, and routing.
• Monitored firewall performance, conducted health checks, and recommended upgrades to optimize system resources.
• Acted as a point of escalation for critical OS and network issues, collaborating with teams for timely resolutions.
• Guided customers through OS patching, firmware updates, and upgrades while creating and maintaining documentation and best practices.

Migdal Insurance Company, Israel

• Provided technical support to end-users, troubleshooting hardware and software issues, and resolving network connectivity problems.
• Installed, configured, and maintained desktops, laptops, printers, and other peripherals.
• Installed and configured software applications, performed updates, and ensured compatibility with existing systems.
• Diagnosed and resolved network connectivity issues, including LAN, WAN, and VPN problems.
• Created and updated documentation for IT procedures, user guides, and troubleshooting steps.

Israel