David C. Ilonze

Security Analyst (DevSecOps) • Cloud & Application Security
📧 david.c.ilonze@gmail.com | 📞 +1 (514) 797-4076 | 📍 Montreal, QC

Professional Summary

Results-driven security and cloud professional with a strong software development background and extensive experience in DevSecOps, cloud security (Azure & AWS), application security, GRC, and infrastructure protection. Proven ability to improve organizational security posture through risk assessments, secure architecture design, and compliance frameworks.

Core Competencies

Cloud Security (Azure, AWS)
DevSecOps & CI/CD Pipelines
Application Security (DAST / SAST)
IAM, Okta, Azure AD, SAML, OAuth
Terraform, Docker, Kubernetes
GRC, NIST, ISO27001, CIS v8

Professional Experience

Security Analyst (DevSecOps)
Securewise (Contract)
2025 – Present
  • Performed Threat and Risk Assessments (TRAs) for multiple clients
  • Integrated security controls into CI/CD pipelines
Senior Cloud Security Analyst Engineer
Starsight Energy (Contract)
2023 – 2024
  • Managed IAM using Okta with SAML 2.0 and OpenID
  • Secured 250+ devices and 350+ endpoints
  • Implemented DLP strategies and secrets management
  • Designed cloud and on-prem security architectures with zero major incidents post-implementation
Senior Security Engineer (Cloud)
English Montreal School Board
2022 – 2023
  • Enabled endpoint management for over 30,000 devices
  • Provisioned Azure & AWS resources using Terraform
  • Implemented NIST and CIS v8 security frameworks
  • Conducted application and cloud security assessments
Senior Cloud Security Engineer
Plusgrade (SaaS)
2022
  • Secured AWS SaaS infrastructure including ECS, S3, RDS, Lambda
  • Automated infrastructure provisioning with Terraform and Kubernetes
Senior Security Consultant
Standard Chartered Bank
2019 – 2020
  • Performed penetration testing and application security assessments
  • Implemented encryption and tokenization for PII protection
Security Consultant
IBM
2018 – 2019
  • Conducted DAST/SAST assessments using Fortify and Nessus
  • Produced OWASP Top 10 and ISO27001 compliance reports
Security Analyst Consultant
Multiple Enterprise Clients
2013 – 2018
  • Implemented DevSecOps pipelines for banking and enterprise systems
  • Led vulnerability assessments and IAM hardening initiatives

Education

  • BEng Electronics & Computer Engineering – University of Birmingham
  • MSc E-Business Technologies – University of Ottawa

Certifications

  • Terraform Certified Associate
  • Azure SC-900
  • Cloudflare Accredited Security Architect & Engineer
  • Six Sigma Black Belt
  • CISA | CISSP (In View)
© 2026 Cocoatek Ltd • davidi.cocoatek.com