Howlsec profile portrait
// whoami

About Howlsec — Cybersecurity & Compliance Professional

Cybersecurity & Compliance Professional · Freelance Pentester

Cybersecurity and Compliance professional with a strong background in risk management, audit readiness, and enterprise security operations, supporting organizations in achieving and maintaining industry-leading security standards. I specialize in regulatory compliance, security awareness, and threat mitigation, with hands-on experience across frameworks such as SOC 2 Type 2, HITRUST, HIPAA, ISO 27001, and PCI DSS.

I've contributed to achieving 100% audit readiness across multiple high-impact compliance frameworks while developing security training programs that resulted in near-perfect phishing resistance rates. I'm trusted to strengthen organizational security posture through proactive risk reduction, user education, and continuous process improvement.

My expertise extends beyond compliance into offensive security, where I've conducted freelance penetration testing engagements against over 250 targets. This experience strengthens my ability to think like an attacker and defend systems more effectively, with practical skills in service enumeration, web application exploitation, and Active Directory attack techniques.

I hold a Master's degree in Cybersecurity and Information Assurance, providing a strong academic foundation that complements my hands-on experience. My continuous learning mindset is demonstrated through extensive self-study and completion of hundreds of technical training modules.

// compliance frameworks
SOC 2 Type 2HITRUSTHIPAAISO 27001PCI DSS
// core expertise
  • Cybersecurity Operations & IT Infrastructure
  • Security Compliance & Regulatory Frameworks
  • Microsoft 365 & Microsoft Purview
  • Endpoint & Access Management
  • PowerShell & Bash Automation
  • Windows & Linux System Administration
  • Incident Response & Root Cause Analysis
  • Customer & Executive-Level Security Support