EMMANUEL CHALOKWU Security Engineer, Support & Analyst Specialist
Security Engineer with hands-on experience across cloud security platforms, vulnerability management, and enterprise detection tooling.
About
Security Engineer with a progressive career spanning SOC analysis, security support, and engineering roles across cloud, endpoint, and vulnerability management domains.
with a career progression from SOC analyst roles across the UK and US into engineering-focused responsibilities. My work centers on implementing, optimizing, and managing enterprise security platforms across cloud, endpoint, and vulnerability management domains.
Day-to-day responsibilities include contributing to cloud and endpoint security tool management, triaging SIEM and EDR alerts, and leading platform optimization efforts including recently taking full ownership of the Rapid7 InsightVM solution. I focus on ensuring security technologies are well-configured, properly documented, and aligned with organizational standards and compliance requirements.
Certified across multiple security domains including Azure Security Engineer, Prisma Cloud Security Engineer, CEH, CISA, and CySA+. I bring both operational depth and engineering capability, with hands-on experience across detection, vulnerability management, cloud security, and security documentation.
Education
Master of Finance
London Metropolitan University — London, UK
Bachelor of Science in Finance
University of Benin — Benin, Nigeria
Professional Experience
March 2022 – Present
Security Engineer
Enterprise Holdings — Remote, USA
Implementing and managing cloud and endpoint security tools across
an enterprise environment. Recently assumed full ownership of Rapid7
InsightVM; leading platform optimization and integration with internal
tools to enhance vulnerability lifecycle management.
Responsibilities
Security Engineer currently responsible for implementing and managing cloud and endpoint security tools across monitoring, investigation, and vulnerability management workflows. Aligns security technologies with organizational requirements and compliance standards.
Key Contributions
- Deployed and configured Microsoft Defender for Cloud, Microsoft Sentinel, MDE, and Microsoft Purview DLP
- Managed Cortex XDR, Symantec DLP, Prisma Cloud, and Rapid7 InsightVM with recurring scan reviews
- Analyzed and triaged SIEM and EDR alerts, escalating credible threats to incident handlers
- Drafted tool usage procedures and response playbooks aligned with compliance expectations
- Assumed full ownership of Rapid7 InsightVM — optimizing platform configuration and integrating scan findings with internal tools
Notable Initiative
SAST Platform Migration Black Duck to Polaris
Contributed to migrating the enterprise SAST application from Black Duck to Polaris fAST, supporting onboarding, transition planning, and validation of the new scanning configuration to ensure continuity of application security testing.
DLP Maintenance
Supported ongoing maintenance of Symantec DLP and Microsoft Purview DLP environments, contributing to policy configuration, alert review, and alignment with internal data protection standards.
February 2020 – May 2021
SOC Analyst
Technobeacon Consulting — London, UK
Performed real-time monitoring, analysis, and escalation of security
events. Investigated incidents by correlating data from SIEM, endpoint
detection, and firewall logs.
Key Contributions
- Analyzed logs and alerts using SIEM tools to identify indicators of compromise, reducing average incident response time
- Investigated security events by correlating firewall logs, endpoint detection, and traffic analysis data
- Conducted risk assessments and system audits uncovering misconfigurations and vulnerable software
- Maintained SOC documentation including investigation templates and triage guidelines
July 2021 – March 2022
Security Analyst
Anfield Capital — Houston, TX
Monitored security platforms, conducted vulnerability assessments,
and coordinated with IT teams to validate security configurations
across enterprise systems.
Responsibilities
Monitored security platforms, responded to potential threats, and supported enterprise protection through investigation and risk reduction. Worked with IT teams to verify security protocols were effectively applied.
Key Contributions
- Detected unauthorized access attempts and performed root cause analysis, escalating validated threats for remediation
- Conducted recurring vulnerability assessments and system hardening reviews with documented recommendations
- Supported phishing simulation development, helping reduce reported phishing clicks
- Validated security configurations including access controls, endpoint protections, and encryption standards
March 2014 – January 2020
Software Test Analyst
United Nations — Rome, Italy
Executed functional and regression testing, documented defects, and
maintained test case documentation to support release readiness.
January 2018 – February 2020
Security Analyst
The Co-operative Bank PLC — London, UK
Supported daily security monitoring, phishing triage, and internal
risk assessments. Maintained security documentation and contributed
to process improvement across the team.
Key Contributions
- Reviewed and triaged 100% of daily phishing and spam submissions, ensuring appropriate incident tracking
- Tested and evaluated automated penetration testing software, documenting findings for tool selection
- Conducted risk assessments on internal security applications and contributed to remediation planning
- Developed and maintained internal documentation for recurring security procedures
Engineering Projects
A selection of engineering projects focused on cloud security,
vulnerability management, and enterprise detection tooling.
Each project reflects hands-on ownership across implementation,
optimization, and integration within enterprise environments.
Security Tool Engineering & Optimization Playbook
Standardization and optimization of enterprise security platforms including Microsoft Defender for Cloud, Microsoft Sentinel, Cortex XDR, and Rapid7 InsightVM. Focused on improving detection quality, reducing alert noise, and establishing repeatable operational workflows across the security tooling stack.
Rapid7 InsightVM to AWS Security Hub Integration
Integration of Rapid7 InsightVM vulnerability findings into AWS Security Hub, enabling centralized visibility across cloud and on-premises infrastructure. Focused on automating findings sync, eliminating manual reporting, and enabling risk-based remediation prioritization.