Zachary Wisnicki

• Authored and maintained 25+ SOPs and runbooks covering incident response, access provisioning, vulnerability management, and change control — reducing onboarding time for new engineers by 50%.
• Built end-to-end security automation pipelines in Python and Bash that auto-remediate misconfigured cloud resources, cutting mean time to remediation (MTTR) from 5 days to under 6 hours.
• Developed a standardized SOP framework adopted org-wide, ensuring consistent, audit-ready procedures across all 6 security functions.
• Automated weekly vulnerability reporting and ticketing workflows integrating Nessus, Jira, and Slack — eliminating 12+ hours of manual work per week.

• Monitored and triaged 500+ security alerts daily using Splunk SIEM, achieving mean time to detect (MTTD) under 4 hours.
• Led threat hunting operations using MITRE ATT&CK framework, uncovering 3 APT intrusions before lateral movement occurred.
• Automated log correlation workflows with Python, reducing false positive rates by 35%.
• Co-authored incident response playbooks now used across 8 client environments.

• Managed vulnerability scanning program across 3,000+ endpoints using Nessus and Qualys.
• Assisted with PCI-DSS and SOC 2 Type II audits, achieving zero findings two years running.
• Hardened network perimeter by redesigning firewall rule sets, reducing attack surface by 60%.

Built a modular honeypot deployment framework in Python that auto-generates realistic decoy environments and feeds attacker TTPs directly into a SIEM dashboard. 900+ GitHub stars.

Competed as team lead in DEF CON CTF qualifiers, placing in the top 5% globally. Focused on binary exploitation, reverse engineering, and crypto challenges.