Subanggi Kambley

Results-driven Cyber Security Engineer and Senior SOC Analyst with over 8 years of progressive experience securing enterprise cloud environments, hybrid networks, and critical infrastructure across the financial services, insurance, and healthcare sectors in the United States. Proven expertise in building and leading Security Operations Centers (SOC), implementing Governance, Risk & Compliance (GRC) frameworks, conducting vulnerability assessments, penetration testing, and full-lifecycle incident response. Deep specialization in SIEM platforms (Splunk, IBM QRadar, ArcSight, McAfee Nitro), Endpoint Detection & Response (EDR), Data Loss Prevention (DLP), Intrusion Detection/Prevention Systems (IDS/IPS), and Public Key Infrastructure (PKI) solutions including certificate management, encryption key lifecycle, digital signatures, and TLS/SSL deployments. Skilled in architecting and managing zero-trust security models, cloud security (AWS, Azure, Google Cloud), CASB solutions, Privileged Access Management (PAM), and compliance with NIST, ISO 27001, PCI DSS, FISMA, RMF, NERC CIP, and DoD frameworks. Excel at malware analysis, phishing/spam investigations, forensic investigations, threat hunting, and automating security metrics/dashboards using Splunk and PowerShell. Currently serving as Senior Cyber Security Engineer at GM Financial, I lead GRC initiatives, SOC operations, vulnerability management programs, and enterprise-wide security tool deployments while driving continuous improvement in security posture, risk culture, and regulatory compliance. Passionate about staying ahead of evolving cyber threats through MITRE ATT&CK framework, intelligence-driven defense, and proactive security engineering. Seeking senior-level Cybersecurity Engineer, SOC Analyst/Engineer, PKI Specialist, or GRC roles across the United States.