Matheus Aguiar, Developer in Porto, Portugal
Matheus is available for hire
Hire Matheus

Matheus Aguiar

Verified Expert  in Engineering

Security Engineer and Developer

Location
Porto, Portugal
Toptal Member Since
September 13, 2022

Matheus is a cybersecurity specialist experienced in implementing SIEM solutions and security orchestration, automation, and response. He holds a bachelor's degree in computer software engineering, an AWS security certification, and a Google Cloud professional security engineer certification. Being proactive, goal-oriented, and a strong team player, Matheus has guided newcomers and trainees, delivering his knowledge and leading to the growth of the team and the company.

Portfolio

Jumia
ELK (Elastic Stack), SIEM, Cloud Security, Terraform, Git, Automation...
Euronext
Incident Response, SIEM, Sentinel, ArcSight, Darktrace, Network Security...
Securnet
Networks, Checkpoints, Automation, IT Security, Security...

Experience

Availability

Part-time

Preferred Environment

Amazon Web Services (AWS), SIEM, Incident Response, Cloud Security, Automation, Python, AWS Lambda, Kubernetes, Terraform, ELK (Elastic Stack)

The most amazing...

...project I've completed is a centralized logging system using primarily Wazuh and Kubernetes for high availability.

Work Experience

Cyber Defense Specialist

2021 - PRESENT
Jumia
  • Activated and managed AWS Security controls using Terraform.
  • Created and implemented solutions that redirect, store, and aggregate alerts and logs to be correlated and analyzed by the security operations center team.
  • Automated the solutions using Amazon EventBridge and AWS Lambda functions.
  • Designed and executed highly demanding, highly available (HA) OpenSearch solutions, taking care of cyber security projects and ensuring they meet objectives.
  • Proposed and evaluated security strategies and defenses.
  • Developed and enforced SIEM and SOAR solutions in the cloud environment with a HA Kubernetes cluster using Node.js taint and worker groups, autoscaling groups, load balancers, and VPC peering.
  • Devised and implemented log source integrations via API gateways, Lambda functions, CloudWatch log groups, and S3 buckets, creating and handling use cases with the MaGMa Use Case Framework.
  • Managed critical incident response using the NIST Framework, tracking vulnerabilities and collaborating with internal network teams to ensure closure and remediation of vulnerabilities.
Technologies: ELK (Elastic Stack), SIEM, Cloud Security, Terraform, Git, Automation, Incident Response, Kubernetes, Wazuh, Single Sign-on (SSO), Packer, Amazon Web Services (AWS), Vulnerability Management, IT Security, Security, Identity & Access Management (IAM), PCI Compliance, PCI DSS, Security Architecture, Amazon S3 (AWS S3), Cyber Defense

Cyber Security Analyst

2020 - 2021
Euronext
  • Performed SIEM engineering tasks and implemented cloud SIEM on Azure Sentinel.
  • Managed the ArcSight platform and implemented several log source integrations.
  • Handled use case creation, documentation, and knowledge transfer.
Technologies: Incident Response, SIEM, Sentinel, ArcSight, Darktrace, Network Security, Amazon Web Services (AWS), Vulnerability Management, IT Security, Security, Identity & Access Management (IAM), Security Architecture, Amazon S3 (AWS S3)

Support Engineer

2019 - 2020
Securnet
  • Implemented several automation processes working as a system administrator.
  • Managed, monitored, and maintained the network and servers.
  • Designed and implemented Check Point firewalls on the client's infrastructures.
Technologies: Networks, Checkpoints, Automation, IT Security, Security, Identity & Access Management (IAM), Security Architecture, Amazon S3 (AWS S3)

Wazuh EKS Infrastructure Deployment

https://github.com/mvask/Wazuh-EKS-infra-deployment
A centralized logging system for an environment that takes data from multiple sources. I used Wazuh as the primary tool for this system. I also used technologies such as Kubernetes (EKS) for high availability, Lambda functions, the API Gateway (apigw) command, CloudWatch, Packer, Terraform, Syslog, and Ansible.
2018 - 2021

Bachelor's Degree in Computer Software Engineering

Polytechnic of Porto - School of Engineering (ISEP) - Porto, Portugal

DECEMBER 2022 - DECEMBER 2024

Professional Cloud Security Engineer

Google Cloud

NOVEMBER 2022 - NOVEMBER 2025

AWS Certified Security — Specialty Certification

Amazon Web Services

JUNE 2021 - JUNE 2024

AWS Certified Cloud Practitioner

Amazon Web Services

Tools

Terraform, ELK (Elastic Stack), Sentinel, ArcSight, Darktrace, Git, Packer, Amazon EKS, Syslog

Platforms

Wazuh, Amazon Web Services (AWS), AWS Lambda, Kubernetes, Linux, Google Cloud Platform (GCP)

Storage

Amazon S3 (AWS S3), Google Cloud

Industry Expertise

Network Security

Languages

Python

Paradigms

Automation

Other

Incident Response, Vulnerability Management, IT Security, Security, Identity & Access Management (IAM), PCI Compliance, PCI DSS, Security Architecture, NIST, SIEM, Cloud Security, Software Development, Networks, Checkpoints, Single Sign-on (SSO), Cloud, Amazon API Gateway, Okta, Cyber Defense

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring