Ghislain Bukura
Cybersecurity Professional • SOC Analyst • Application Security Specialist
Kigali
Summary
Results-driven cybersecurity professional with experience in security operations, threat management, vulnerability assessment, incident response, and application security. Skilled in identifying and mitigating risks, implementing security controls, and enhancing organizational security posture. Proficient in security monitoring, threat detection, and industry best practices. Committed to protecting critical assets, supporting business objectives, and adapting to the evolving cybersecurity landscape.
Overview
3
3
years of professional experience
3
3
Certification
Work History
INFORMATION AND CYBERSECURITY ENGINEER
I&M Bank Rwanda Plc
Kigali
01.2024 - Current
- Monitoring operations using Splunk Enterprise Security and Darktrace, developing and tuning SIEM use cases that enhanced threat detection accuracy and significantly reduced false positives.
- Conduct pre-production application security assessments following OWASP testing methodology, identifying and remediating critical vulnerabilities before go-live and preventing security risks from reaching production environments.
- Perform comprehensive VAPT on web and mobile applications ensuring vulnerabilities are identified, tracked, and remediated within agreed timelines.
- Assess and strengthen IT security infrastructure including firewalls and endpoint protection, reducing the bank's overall attack surface.
- Conduct incident response investigations analyzing attack patterns, performing forensic analysis, and coordinating remediation with relevant teams to minimize business impact.
- Execute internal penetration testing exercises to proactively identify exploitable weaknesses and validate the effectiveness of defensive controls.
- Delivered targeted security awareness training to end users, and perform attack simulations to users.
- Supported regulatory compliance audits and maintained adherence to security policies aligned with ISO 27001 standards.
MANAGEMENT TRAINEE
I&M Bank Rwanda Plc
Kigali
11.2023 - 01.2024
- Completed a structured training program covering banking operations, risk management, compliance, and other bank operations, gaining hands-on experience across key departments.
Education
Bachelor of Science - Computer Science And Technology
11.2019 - 06.2023
Skills
- Security Operations & Threat Detection
- SIEM Management & Use Case Development
- Incident Response & Threat Intelligence
- Vulnerability Assessment & Penetration Testing (VAPT)
- Application Security & Secure Code Review
- Secure Software Development Lifecycle (SSDLC) & DevSecOps
- Threat Modeling & Security Testing
- Risk Assessment, Prioritization & Mitigation
- Patch & Vulnerability Management
- Digital Forensics & Root Cause Analysis
- Security Compliance, Governance & Auditing
- Security Policy Development & Implementation
- Security Awareness & Training
- Firewall & Network Security Management
- Endpoint Security Management
- Cloud Security & Identity Management
- Regulatory Compliance & Risk Management
- Python, Java & SQL/MySQL
Certification
- Certified in Cybersecurity
- Certified Ethical Hacker
- Splunk Core Certified Power User
- Splunk Enterprise Certified Administrator
Languages
English
Advanced (C1)
French
Intermediate (B1)
Timeline
INFORMATION AND CYBERSECURITY ENGINEER - I&M Bank Rwanda Plc
01.2024 - Current
MANAGEMENT TRAINEE - I&M Bank Rwanda Plc
11.2023 - 01.2024
湖北汽业学院 - Bachelor of Science, Computer Science And Technology
11.2019 - 06.2023