Summary
Overview
Work History
Skills
Accomplishments
Certification
Education
Additional Information
Timeline
Generic
Rose Ann Sacueza

Rose Ann Sacueza

DevSecOps Engineer
General Trias,CAV

Summary

DevSecOps and Cloud Security Engineer with 10+ years of experience in AWS, Azure, IBM Cloud, CI/CD security, IAM governance, vulnerability management, and security automation. Experienced in implementing cloud security controls, automating workflows using Python, Bash, and AWS Lambda, and integrating security into SDLC and cloud-native environments. Skilled in DevSecOps practices, cloud security, SIEM, SAST/DAST, and infrastructure security across multi-cloud platforms.

Overview

4
4
Certification
10
10
years of professional experience

Work History

DevSecOps Engineer

Unionbank of the Philippines
09.2025 - Current

• Maintain secure CI/CD pipelines using GitLab CI/CD and DevSecOps practices
• Integrate SAST, DAST, and vulnerability scanning into development workflows
• Automate cloud and security operations using Python, Bash, AWS Lambda, Terraform, and CloudFormation
• Manage cloud security controls, IAM policies, and access management in AWS and Azure
• Monitor and respond to security findings from SIEM, GuardDuty, Security Hub, and vulnerability scanners
• Conduct vulnerability assessments and support remediation activities
• Collaborate with development and infrastructure teams to improve security and automate deployments
• Support cloud migration projects and implement secure cloud architecture
• Configure monitoring, logging, and alerting solutions for cloud environments
• Maintain security documentation, compliance controls, and operational procedures
• Perform Linux system hardening and infrastructure security configuration
• Optimize cloud resources, security processes, and operational workflows through automation

Cloud Security Engineer and Operator

Unionbank of the Philippines
02.2024 - 09.2025

• Implement secure cloud architecture and security best practices across AWS and Azure
• Develop automation workflows using AWS Lambda, Python, and Bash for operational and security tasks
• Implement IAM governance, encryption management, and cloud security controls
• Lead BSP audit remediation and compliance initiatives for cloud environments
• Configure private links, load balancers, and firewall integrations for third-party applications
• Conduct vulnerability assessments and remediation activities across cloud platforms
• Collaborate with development and operations teams to integrate security into in their processes
• Optimize cloud resources and support cost management initiatives in AWS and Azure
• Establish cloud security baselines, monitoring, and governance standards

Cloud Security Engineer

Collabera Digital
04.2023 - 01.2024

• Supported cloud security operations across AWS and Azure environments
• Assisted with BSP audit remediation and compliance documentation
• Conducted vulnerability assessments and security monitoring activities
• Managed IAM policies, cloud security controls, and encryption configurations
• Supported cloud migration and infrastructure security initiatives
• Collaborated with infrastructure and development teams to implement security best practices
• Assisted in automating operational and security tasks using scripting and AWS services
• Supported monitoring, firewall, and network security configurations for cloud environments

Operation Engineer

Trustwave
07.2022 - 04.2023
  • Managed Linux and Unix environments with focus on system hardening, monitoring, and operational stability.
  • Management of private/public cloud-based environments through automation & configuration management tools.
  • Constantly monitor uptime and diagnose and resolve performance issues across various platforms and products.
  • Create and maintain documentation as it relates to systems design, configuration, support, and processes.

Cloud Engineer

Castelis Asia Inc.
04.2022 - 07.2022
  • Supported deployment and maintenance of cloud infrastructure environments.
  • Conducted cloud architecture reviews and migration assessments.
  • Implemented infrastructure monitoring and high availability configurations.
  • Collaborated with engineering teams to improve infrastructure reliability and performance.

IT Security Analyst

Castelis Asia Inc.
07.2021 - 04.2022
  • Performed security assessments and vulnerability management activities for cloud and web applications.
  • Monitored SIEM alerts and investigated security incidents and suspicious activities with Wazuh and Elastic Search.
  • Assisted in implementation of cloud security standards across AWS and Azure environments.
  • Maintained Azure Security Score compliance across multiple regions.
  • Supported SOC infrastructure and cloud security monitoring initiatives.
  • Assisted with ISO 27001 security governance documentation and reporting.

SecOps

Castelis Asia Inc.
04.2021 - 07.2021
  • Managed cloud security tools including Qualys, SIEM, Cloudflare, and Microsoft Defender.
  • Supported disaster recovery and business continuity initiatives for cloud environments.
  • Implemented security controls including firewalls and encryption technologies.
  • Collaborated with operations teams to resolve cloud security issues.

Linux Administrator

Castelis Asia Inc.
02.2021 - 04.2021
  • Maintained Linux infrastructure environments and patch management activities.
  • Supported virtualization environments and server monitoring operations such as PaaS.
  • Assisted with deployment and backup procedures for Linux systems.

Technical Support Engineer

Securemetric Technology Inc.
01.2019 - 01.2021
  • Provided Linux and infrastructure technical support for banking and enterprise clients.
  • Supported system hardening, certificate management, and infrastructure troubleshooting.
  • Assisted with disaster recovery planning and database architecture support.
  • Installed and maintained enterprise monitoring and logging tools.
  • Install third-party applications to our applications such as QRADAR, Solarwinds, ITM, and AppDynamics.

System Engineer

Ubaldo Reidenbach Solution Inc.
10.2017 - 01.2019
  • Provided Linux system administration and troubleshooting support 24/7.
  • Assisted with email server configuration, firewall setup, and OS hardening in Linux servers.
  • Conducted Linux administration training for clients and internal teams.

IS Helpdesk

Philippine Long Distance Company
12.2015 - 10.2017
  • Provided first-level technical support for end users through phone, email, and remote access.
  • Supported application installation, troubleshooting, and account management activities.
  • Escalated technical issues and collaborated with support teams for resolution.

Skills

Cloud Security across AWS, Azure, and IBM Cloud

DevSecOps and CI/CD Security Implementation

Security Automation using Python, Bash, and AWS Lambda

IAM Governance and Access Management

Vulnerability Assessment and Penetration Testing (VAPT)

SAST/DAST and Security Scanning Integration

SIEM Monitoring and Threat Detection

Infrastructure Security and System Hardening

Linux Administration across Red Hat, Ubuntu, and Debian

Cloud Infrastructure Management for IaaS and PaaS

Security Compliance and Audit Remediation

Cloud Security Posture Management

Infrastructure as Code using Terraform, CloudFormation, and Ansible

Monitoring and Logging Solutions

Container and Cloud-Native Security

Database and Messaging Platform Support

Cross-functional Collaboration with Development and Operations Teams

Accomplishments

  • Implemented AWS Lambda automation for IAM access key monitoring and reporting.
  • Developed SES monitoring and logging solutions using Lambda and CloudWatch.
  • Automated Security Hub and GuardDuty findings reporting workflows.
  • Implemented Microsoft Defender for Cloud alerting and monitoring solutions.
  • Integrated SAST/DAST security practices into cloud and CI/CD workflows.
  • Implemented vulnerability management and cloud security monitoring solutions using Qualys.
  • Supported cloud security governance and BSP compliance remediation initiatives.
  • Implemented container security and cloud security monitoring solutions.
  • Implement disaster recovery for onprem database.
  • Email notification alerts improvements notification via Power Automate and with real time logs
  • Implement FIDO2 in Windows and Linux for Login

Certification

  • RH123 - Red Hat Linux Enterprise System Administration 1 – IT Group Asia, 2018
  • Data Center Virtualization, Nexus Education, 2017
  • Microsoft Certified: Azure Fundamentals (AZ900), 2021
  • Cybersecurity Awareness Training - Amazon Cybersecurity, 2021
  • Microsoft Security, Compliance, and Identity Fundamentals: Describe the capabilities of Microsoft Security Solutions - Microsoft Learn, 2021
  • Microsoft Azure Administrator (AZ104) – Microsoft Learn, 2021
  • Tech on the Go: Ethics in Cybersecurity – Linkedin Learning, 2022
  • Cybersecurity for IT Professionals with 3 completed Certificate – Linkedin Learning, 2022
  • DevOps Foundations: DevSecOps - Linkedin Learning, 2022
  • Vulnerability Management Detection and Response – Qualys, 2022
  • Cloud Security Assessment and Response – Qualys, 2022
  • Introduction to AWS for Non-Engineers: Cloud Concepts, Security, 2022
  • Microsoft 365: Implement Security and Threat Management - January 2023
  • Cisco Network Security: Intrusion Detection and Prevention - January 2023
  • Architecting on AWS with AWS Jam - July 5, 2024
  • Azure Cost Optimization Workshop - August 1 and 2, 2024
  • AWS Cloud Practitioner certified - April 26, 2025
  • ICIP - OPSWAT by OPSWAT Academy - November 2024
  • AWS Educate Introduction to Generative AI - AWS
  • AWS Educate Machine Learning Deeprecar - AWS
  • AWS Educate Getting Started with Networking - AWS
  • AWS Educate Machine Learning Foundations - AWS
  • AWS Generative AI Essentials - AWS
  • Advanced Architecting on AWS with JAM - AWS

Education

High School -

University of Perpetual Help System

Bachelor of Science - Computer Engineering

Adamson University
01-2015

IT Security Analysis - undefined

University of the Philippines
07-2017

Additional Information

Terri John P. Andoy

DevSecOps Engineer - Unionbank of the Philippines

09566750589

Allan Moral

Infrastructure Architech - Unionbank of the Philippines

0917-828-8669

Timeline

DevSecOps Engineer

Unionbank of the Philippines
09.2025 - Current

Cloud Security Engineer and Operator

Unionbank of the Philippines
02.2024 - 09.2025

Cloud Security Engineer

Collabera Digital
04.2023 - 01.2024

Operation Engineer

Trustwave
07.2022 - 04.2023

Cloud Engineer

Castelis Asia Inc.
04.2022 - 07.2022

IT Security Analyst

Castelis Asia Inc.
07.2021 - 04.2022

SecOps

Castelis Asia Inc.
04.2021 - 07.2021

Linux Administrator

Castelis Asia Inc.
02.2021 - 04.2021

Technical Support Engineer

Securemetric Technology Inc.
01.2019 - 01.2021

System Engineer

Ubaldo Reidenbach Solution Inc.
10.2017 - 01.2019

IS Helpdesk

Philippine Long Distance Company
12.2015 - 10.2017

IT Security Analysis - undefined

University of the Philippines

Bachelor of Science - Computer Engineering

Adamson University

High School -

University of Perpetual Help System

Similar Profiles

CREATE PROFILE
Rose Ann SacuezaDevSecOps Engineer