Establishing Secure Link
SYS_SEC: ACTIVE
WAF_SHIELD: INSPECTING
DLP_GUARD: NOMINAL
PORT_SCAN: BLOCKED
INTEL_FEED: LIVE
LATENCY_MS: 12ms
Cyber Security Specialist

SACHIN PRABAKAR

Security Architect · Network Security & DLP Expert · Incident Responder

5+ years securing enterprise networks and data — currently at Fortinet, Vancouver BC. Specialising in security architecture, Next-Gen firewalls, Web Application Firewalls (WAF), Data Loss Prevention (DLP), threat detection, and incident response.

THREAT DETECTION INCIDENT RESPONSE NETWORK SECURITY DLP · WAF · EDR AWS CLOUD SECURITY SIEM · SOAR
sachin@fortinet ~ profile.sh
whoami
Cyber Security Specialist · Fortinet
location
Vancouver, BC, Canada 🍁
specialties --list
Network Security · DLP · WAF · EDR · Threat Hunting
education
M.Sc. Internetworking — Dalhousie
BTech CS — Jain University
certifications --list
CEHv10 · AWS CCP · NSE 1-4 · NSX-T
01 / Profile

About Me

I am a Cybersecurity Specialist and Architect with over 5 years of dedicated experience engineering defense-in-depth security architectures, orchestrating incident response, and hardening enterprise environments against sophisticated threats.

Currently at Fortinet, I design and deliver high-performance security solutions, specializing in Next-Generation Firewalls (NGFW), Web Application Firewalls (WAF), Data Loss Prevention (DLP), and enterprise-grade Network Security. My technical expertise spans across security operations (SOC), threat hunting, cloud security (AWS), and advanced vulnerability management.

I hold a Master's in Internetworking from Dalhousie University and a BTech in Computer Science. Leveraging certifications like CEHv10, AWS CCP, Fortinet NSE, and VMware NSX-T, I bridge the gap between complex network engineering and robust cyber defense to ensure organizational resilience and minimize operational risk.

Current Position
Cyber Security Specialist
Fortinet · Dec 2024–Present · Vancouver, BC
Education
Dalhousie University
M.Sc. Internetworking · 2022–2024
Jain (Deemed-to-be) University
BTech, Computer Science · 2016–2020
02 / Capabilities

Technical Skills

🛡️
Security Operations
Threat Detection & Hunting95%
Incident Response92%
SIEM (Splunk / Sentinel)90%
EDR Platforms90%
Digital Forensics85%
🔥
Network & Data Security
Network Security Architecture94%
Fortinet / FortiGate NGFW93%
WAF Configuration & Hardening90%
Data Loss Prevention (DLP)89%
IDS / IPS & Segmentation87%
☁️
Cloud & DevSecOps
AWS Security88%
Vulnerability Management91%
Kubernetes Security82%
Terraform / Ansible80%
CI/CD Pipeline Security78%
03 / Career

Work Experience

Dec 2024 – Present
Fortinet
Cyber Security Specialist
Architecting and delivering enterprise-grade network security infrastructures and data protection systems. Specializing in deploying and fine-tuning FortiGate Next-Generation Firewalls (NGFW) with advanced SSL/TLS deep packet inspection, custom Web Application Firewall (WAF) signatures to mitigate OWASP Top 10 web vulnerabilities, and enterprise-wide Data Loss Prevention (DLP) policies to prevent unauthorized data exfiltration. Conducting deep packet analysis, threat intelligence integration, and orchestrating security controls across complex multi-site hybrid networks.
NGFW WAF DLP NETWORK SECURITY ENTERPRISE SECURITY VANCOUVER, BC
Feb 2023 – Nov 2024
1 yr 10 mos
Kelly Services (Canada)
Technical Support Specialist
Managed enterprise IT infrastructure and security operations for large-scale Canadian corporate clients. Diagnosed and resolved complex systems engineering issues, performed Active Directory/IAM auditing, hardened remote access channels (IPsec/SSL VPNs), and analyzed network traffic to isolate and remediate endpoint anomalies. Streamlined operational continuity by coordinating incident response workflows and configuring secure device policies.
TECHNICAL SUPPORT IT INFRASTRUCTURE IAM / VPN REMOTE
Jan 2021 – Aug 2022
1 yr 8 mos
NxtGen Infinite Datacenter
Cyber Security Architect
Engineered secure multi-tenant cloud and datacentre architectures, implementing robust security zones, network segmentation, and defense-in-depth controls. Deployed and managed enterprise EDR (Endpoint Detection & Response) agents across 500+ endpoints, configuring behavior-based containment policies. Spearheaded threat hunting operations to identify Indicators of Compromise (IOCs) and Advanced Persistent Threats (APTs). Built and optimized SIEM (Security Information and Event Management) correlations and alert pipelines, reducing mean time to detect (MTTD) by 40%.
NETWORK SECURITY DLP EDR SIEM APT HUNTING CLOUD SECURITY
Aug 2020 – Jan 2021
6 mos
NxtGen Infinite Datacenter
Cyber Security Analyst
Operated within a 24/7 Security Operations Center (SOC) managing incident triage and response workflows. Monitored real-time event logs from SIEM, IDS/IPS, and web servers to investigate security alerts. Hardened Identity and Access Management (IAM) systems by implementing multi-factor authentication (MFA) and granular Role-Based Access Control (RBAC). Developed custom parsing rules and alert thresholds, successfully reducing false-positive rates by 90% and accelerating L1/L2 triage operations.
RBAC / IAM L1/L2 TRIAGE SIEM IDS / IPS SOC OPS
Jan 2020 – Feb 2020
2 mos
Azure Skynet Solutions
Penetration Testing Intern
Performed black-box and white-box network and web application penetration testing. Utilized industry-standard exploitation frameworks and vulnerability scanners to identify security gaps, privilege escalation vectors, and misconfigurations. Drafted comprehensive technical reports with remediation roadmaps for client stakeholders, helping secure vital infrastructure.
PENETRATION TESTING VULNERABILITY ASSESSMENT
04 / Work

GitHub Projects

01 / 06
Splunk on AWS with Terraform & Ansible
Automated SIEM deployment on AWS using infrastructure-as-code — streamlining Splunk setup for scalable security operations.
HCL · Terraform · Ansible · AWS
View repo →
02 / 06
KubeSEC — Kubernetes Security
Hardened a web application in a Kubernetes cluster — covering network policies, RBAC, secrets management, and container security.
Python · Kubernetes · Docker
View repo →
03 / 06
Azure Sentinel SIEM & SOAR Honeypot
Live attack honeypot on Azure integrated with Sentinel for real-time detection, automated SOAR playbooks, and live attack map visualisation.
Azure Sentinel · KQL · SOAR
View repo →
04 / 06
PowerShell File Integrity Monitor
FIM system detecting unauthorised file changes via cryptographic hashing with real-time alerting — a core defence-in-depth component.
PowerShell · SHA Hashing
View repo →
05 / 06
Active Directory Lab
Full enterprise Active Directory environment simulated with PowerShell — user provisioning, group policies, and domain security configuration.
PowerShell · Active Directory · Windows Server
View repo →
06 / 06
Vulnerability Management — Nessus
End-to-end vulnerability management workflow using Nessus Essentials — scanning, CVSS prioritisation, and full remediation documentation.
Nessus · CVSS · Vulnerability Scanning
View repo →
View all repositories on GitHub ↗
05 / Credentials

Certifications

01 / 04
AWS Cloud Practitioner
Amazon Web Services — Cloud Foundations
AWS · CLOUD
02 / 04
Certified Ethical Hacker (CEHv10)
EC-Council — Offensive Security
CEH · EC-COUNCIL
03 / 04
Fortinet NSE 1, 2, 3 & 4
Fortinet Network Security Expert Program
NSE · FORTINET
04 / 04
VMware NSX-T
VMware — Network Virtualisation & Security
VMWARE · NSX-T
06 / Contact

Initialize Connection

Actively seeking new roles & consulting partnerships.
Whether you are a recruiter looking for a certified SecOps leader, an enterprise needing network firewall/WAF audits, or a security team seeking expert architecture guidance — let's connect and protect your infrastructure.

Secure Transmission Channel info@imsach.com
[ TACTICAL CYBERSECURITY CONTROLS ] SECURE
ACTIVE
Edge Shielding & Perimeter Defense
Hardened FortiGate NGFW configurations, SSL/TLS deep packet inspection, and strict zone-based network segmentation.
ENFORCING
WAF & DLP Rulesets
Tuned FortiWeb WAF signatures targeting OWASP Top 10 vulnerabilities, and automated DLP filters guarding against data exfiltration.
MONITORED
Incident Detection & Response
Optimized SIEM (Splunk/Sentinel) correlation rules and automated SOAR playbooks to minimize MTTR and track advanced threats.
ALIGNED
Frameworks & Compliance Standards
Aligning operations with security baselines including NIST CSF, MITRE ATT&CK mapping, and ISO 27001 control protocols.