{
  "$schema": "https://cvjson.com/schema/v1.json",
  "basics": {
    "name": "Mervin Manangan",
    "label": "Information Security Engineer",
    "summary": "Experienced Information Security Engineer with a strong focus on risk assessment and vulnerability management. Proven track record in implementing robust security protocols and enhancing incident response strategies, resulting in a significant reduction in potential threats. Committed to delivering innovative security solutions that protect organizational assets and ensure compliance with industry standards. Recognized for exceptional analytical skills and the ability to lead cross-functional teams in high-pressure environments.",
    "location": "New Jersey, US"
  },
  "work": [
    {
      "company": "Cencora Corporation",
      "position": "Information Security Manager",
      "startDate": "2020-03",
      "endDate": "2026-07",
      "highlights": [
        "Led initiatives to strengthen Cencora's cloud and on-premise security posture, delivering measurable improvements:",
        "Raised cloud security posture score by 30% (from 50% to 80%) through targeted remediation, configuration hardening, and automation of compliance checks.",
        "Secured sensitive data at rest and in transit by implementing enterprise encryption standards, TLS enforcement, and centralized key management.",
        "Designed and rolled out golden configuration benchmarks for on-premise and cloud resources, expanding coverage from 75% to 100% and reducing configuration drift.",
        "Collaborated with engineering, operations, and compliance teams to operationalize controls and improve continuous monitoring.",
        "Led Enterprise Vulnerability & Posture Strategy: Directed risk-based vulnerability management across on-prem, cloud, endpoint, network, IoT, OT, and third-party environments, transitioning the enterprise from traditional tracking to threat-intelligence and business-criticality-driven prioritization.",
        "Designed Unified Executive Dashboards: Spearheaded the development of consolidated vulnerability dashboards and reporting frameworks (KPIs, KRIs, MTTR, aging analysis), providing centralized visibility and driving data-backed security decisions across business units.",
        "Strengthened Cloud Security & Governance: Led investigations and cross-functional incident response for critical cloud risks (public databases, internet-facing workloads), while integrating cloud security platforms with enterprise reporting to reduce threat exposure.",
        "Created Risk-Based Prioritization Frameworks: Authored and championed risk-scoring methodologies that combine vulnerability severity, exploitability, exposure, and asset criticality to shift remediation from volume-based tasks to high-impact risk reduction.",
        "Advanced Security Data Integration: Guided the integration and normalization of vulnerability, CMDB, cloud posture, and threat intelligence data into enterprise analytics platforms, migrating manual reporting into scalable, automated data solutions.",
        "Optimized Cloud Reporting Accuracy: Resolved reporting inconsistencies across Microsoft security platforms to improve vulnerability data quality, establishing high-integrity dashboards that restored stakeholder trust in security metrics.",
        "Matured CMDB & Asset Governance: Leveraged CMDB data to map vulnerability ownership, asset criticality, and exposure, significantly accelerating remediation accountability and enhancing overall configuration management strategy."
      ],
      "url": "https://www.cencora.com"
    }
  ],
  "education": [
    {
      "institution": "Don Bosco Technical College",
      "degree": "Bachelor of Science",
      "field": "Computer Engineering"
    }
  ],
  "skills": [
    "Cloud Security Posture Management",
    "Vulnerability and Risk Management",
    "Data Protection",
    "Automation and Orchestration",
    "DevSecOps",
    "Cloud Workload Protection",
    "Incident Management",
    "SaaS Security Posture Management",
    "MS Azure Security",
    "Windows Administration",
    "Linux Administration"
  ],
  "languages": [
    {
      "language": "English",
      "fluency": "Fluent"
    }
  ],
  "certificates": [
    {
      "name": "Azure Security Engineer AZ-500",
      "issuer": "Microsoft Azure",
      "date": "2020-07"
    }
  ],
  "availability": {
    "status": "open",
    "sponsorship": false
  },
  "ats": {
    "keywords": [
      "Information Security Manager",
      "Cencora Corporation",
      "Computer Engineering",
      "Cloud Security Posture Management",
      "Vulnerability and Risk Management",
      "Data Protection",
      "Automation and Orchestration",
      "DevSecOps",
      "Cloud Workload Protection",
      "Incident Management",
      "SaaS Security Posture Management",
      "MS Azure Security",
      "Windows Administration",
      "Linux Administration",
      "English",
      "Azure Security Engineer AZ-500",
      "Information Security Engineer"
    ],
    "yearsOfExperience": 6,
    "seniority": "lead",
    "highestEducation": "Bachelor's"
  },
  "verification": {
    "email": true,
    "platform": "freecv.org"
  },
  "meta": {
    "version": "1.2.2",
    "canonical": "https://livelink.cv/mervin-manangan/cv.json",
    "lastModified": "2026-07-16T15:53:58.459Z",
    "generator": "FreeCV.org"
  }
}