About Me
I'm Victor Sanchez, a Security Engineer who believes the best security is built in, not bolted on. With over three years in IT and security roles, I've learned that effective security requires understanding both the systems you're protecting and the threats you're defending against.
My Approach
At General Motors, I work at the intersection of security and engineering. I've implemented RBAC and SSO solutions, operated SIEM platforms, supported incident response, and led vulnerability remediation efforts. But my goal isn't just to check compliance boxes—it's to make systems genuinely more secure.
What sets me apart is my ability to build, not just audit. I write secure code in TypeScript and Python, design authentication flows with Azure Entra ID, and create audit logging systems that actually help during investigations. I think like a developer when reviewing code and like a security engineer when writing it.
Why Security Engineering?
I pursued cybersecurity at UTSA because I was fascinated by the cat-and-mouse dynamic between attackers and defenders. Courses in network security, incident response, and digital forensics gave me a solid foundation, but it was hands-on work that solidified my passion.
Security engineering appeals to me because it's proactive. Instead of waiting for incidents, you design systems that resist attack from the start. That means understanding authentication protocols deeply, knowing where authorization checks belong, and building observability that makes investigations possible.
Experience
Independent Security Engineering Projects & Consulting
- › Designed and secured web applications with an emphasis on server-side authorization, least-privilege RBAC, and secure authentication flows.
- › Implemented strict input validation and schema enforcement using Zod and type-safe patterns to prevent common application security vulnerabilities.
- › Built and documented security-focused engineering projects, including IAM integration, audit logging, and abuse detection, to demonstrate real-world application security scenarios.
- › Leveraged automation and generative AI to accelerate development and security testing workflows while maintaining code quality and security controls.
Security Software Engineer
- › Analyzed and triaged security alerts using SIEM and EDR data, utilizing the MITRE ATT&CK framework to investigate potential compromises and support incident response efforts.
- › Collaborated with teams to facilitate internal Detection and Response operations, resolving security incidents and improving processes.
- › Managed RBAC and Azure SSO, maintaining compliance and reducing access control and identity-related security risk.
- › Conducted phishing awareness and IT security training for end users.
- › Supported secure Azure migration, ensuring proper configurations and minimal downtime.
- › Assisted in vulnerability assessments, identifying and mitigating application risks.
System Operations/APM Intern
- › Enhanced monitoring with Splunk dashboards, reducing incident response by 20%.
- › Resolved 15 system performance issues using Dynatrace, increasing uptime by 18%.
- › Supported production applications, ensuring stability and adherence to ITSM best practices.
Victor Sanchez
Security Engineer
Education
B.B.A. in Cyber Security
University of Texas at San Antonio (UTSA)
Graduated 2022
Relevant Coursework
- › Network Security
- › Intrusion Detection & Incident Response
- › Operating Systems Security
- › Information Assurance & Security
- › Digital Forensics
- › Networking Fundamentals
- › Intermediate OOP Programming
Technical Skills
Security
Development
Tools
Let's Connect
Interested in discussing security engineering or potential opportunities?
Get in Touch