Antonio Lopez

Work experience

• Cloud Security Engineer Apr 2025 - Present
  Nexthink
  • Defined and implemented cloud security best practices for production deployments.
  • Refactored Terraform codebase to improve security posture, reliability, and maintainability.
  • Ran recurring security audits and vulnerability assessments with remediation follow-up.
  • Validated and improved SOC playbooks aligned with Cloud Security team procedures.
  • Maintained incident response plans and coordinated cross-functional containment actions.
• Cloud Architect Aug 2021 - Apr 2025
  Cloud Security Team | Cloud Security Lead
  • Led Cloud Security Team procedures and operating model across critical security domains.
  • Drove shift-left security adoption in engineering workflows and delivery pipelines.
  • Designed and delivered cloud security capabilities for logging, monitoring, firewalling, CI/CD security, IAM, and compliance.
  • Built and maintained cloud incident response plans with cross-functional teams.
  • Integrated security automation to improve detection speed and operational efficiency.

  Skills: AWS Services, Architecture

• Cloud Security Engineer Aug 2020 - Feb 2021
  Ryanair Madrid Spain
  • Improved security posture across large-scale AWS organizations.
  • Designed secure cloud architectures aligned with business and compliance requirements.
  • Automated DevSecOps controls using AWS CDK, Lambda, Config, IAM Access Analyzer, Security Hub, and GuardDuty.
  • Integrated third-party security tooling (including Qualys) into cloud operations.
  • Implemented CI/CD security controls and policy guardrails.
  • Strengthened IAM policies and access governance.
  • Defined CloudWatch metrics and alerting for security monitoring.
  • Implemented SIEM and centralized log orchestration.
  • Supported PCI and other security compliance requirements.
• Senior Security Consultant Jun 2019 - May 2020
  Paradigma Madrid Spain
  • Led AWS security architecture and implementation in Agile delivery environments.
  • Performed security assessments and drove vulnerability remediation plans.
  • Embedded security controls across the Software Development Life Cycle (SDLC).
• Security Engineer Jul 2018 - Jun 2019
  LaLiga Madrid Spain
  • Performed penetration testing for web and mobile applications.
  • Monitored and triaged security events using QRadar.
  • Implemented security controls for Azure cloud environments.
  • Supported GDPR compliance and data protection initiatives.
• Security Analyst Sep 2013 - Jul 2018
  National Institute of CyberSecurity (INCIBE) Leon Madrid
  • Delivered vulnerability analysis and technical guidance for the Spanish government CERT.
  • Developed expertise in malware analysis, detection, and mitigation tooling.
  • Provided security mentoring and consulting for public-sector initiatives.
  • Designed and tested Capture The Flag (CTF) exercises for security education.
  • Authored whitepapers, technical guides, and security blog content.
  • Presented at security events organized by INCIBE.
  • Led cyber exercises for public sector organizations and educational institutions.
  • Performed penetration testing and ethical hacking assessments.