I’m a Software Engineer transitioning into Cybersecurity, with a strong focus on Cloud Security (Azure), secure software architecture, and DevSecOps. I bring a builder-first mindset to security — combining hands-on development experience with structured security engineering and risk management.

🎓 MSc Cybersecurity (in progress) – University of London 📜 Certifications: CompTIA Security+, Microsoft AZ-900, Google Cybersecurity 📍 Based in Canada · Open to Canada & remote roles

• Cloud Security (Azure-first) Identity & access management, Defender for Cloud, logging, governance, secure landing zones

• Application & API Security OWASP Top 10, secure authentication flows, threat modeling, secure SDLC

• SIEM & Detection Engineering Log analysis, KQL-based detections, MITRE ATT&CK mapping, security monitoring

• DevSecOps & Automation CI/CD security gates, SAST/SCA, container scanning, infrastructure-as-code security

• Azure Security, Azure Entra ID (Azure AD), RBAC, Zero Trust
• SIEM concepts, detection engineering, incident response
• Threat modeling (STRIDE), risk assessment
• CIS Benchmarks, security hardening
• Secure SDLC & security reviews

• Languages: C#, TypeScript, JavaScript, Python, SQL
• Backend: ASP.NET Core, Node.js, REST APIs, JWT, OAuth 2.0
• Cloud & DevOps: Azure, Docker, GitHub Actions, CI/CD
• Databases: PostgreSQL, SQL Server, MongoDB
• Testing & Quality: Unit testing, static analysis, secure coding practices

🌐 Website: https://jasonachkardiab.com

An enterprise-grade portfolio showcasing real cybersecurity engineering work, including:

• SIEM detection console with custom query language
• Threat modeling playground (STRIDE + MITRE ATT&CK)
• Azure security architecture blueprints
• DevSecOps CI/CD security pipeline simulator

Built with Next.js, TypeScript, Tailwind, and secure-by-design principles.

• Azure Secure Landing Zone (IaC) Secure Azure baseline with RBAC, network segmentation, logging, and governance

• SIEM Detection Engineering Pack KQL detections for authentication abuse, privilege escalation, lateral movement

• Secure API Gateway Pattern JWT auth, rate limiting, validation, OWASP API Top 10 mitigations

• Threat Model – Multi-Tenant CRM Full STRIDE analysis with data flows, risks, and mitigations

• DevSecOps CI/CD Security Gates SAST, dependency scanning, container & IaC security with automated fail gates

(Repositories available on my GitHub profile 👇)

I’m aiming for roles such as:

• Cloud Security Engineer
• Security Engineer / DevSecOps
• Cybersecurity Consultant (GRC / Cloud / AppSec)
• Detection Engineer / SOC Engineering

I’m particularly interested in environments where engineering quality, security architecture, and automation are valued.

• Trilingual: English, French, Arabic
• Strong communicator — able to translate security risks to technical and non-technical audiences
• Passionate about building secure systems, not just finding vulnerabilities

• 📧 Email: jasonachkardiab@gmail.com
• 💼 LinkedIn: https://www.linkedin.com/in/jason-achkar-diab
• 💻 GitHub: https://github.com/jasonachkar