Josua Paulo Zevallos Legonía
Comas
Summary
Experienced Linux Systems Administrator with over 10 years of hands-on work in infrastructure automation, cloud operations (AWS), and system hardening. Skilled in deploying, securing, and maintaining production environments using open-source tools and cloud-native services.
Currently working with AWS services such as IAM, EC2, ELB, S3, Route 53, Launch Templates, Lambda, EventBridge (scheduled tasks), AWS CLI, Amazon Inspector, Security Hub, and CodeDeploy. Strong scripting abilities in Python and Bash for API development and task automation.
Specialized in Linux server hardening, firewall management (iptables, firewalld), and web security using Apache and ModSecurity. I manage monitoring and security platforms including Wazuh (server and agents), Elastic Stack (Elasticsearch, Logstash, Kibana, Beats), and automate deployments with SaltStack.
Focused on building stable, secure, and scalable systems that comply with security standards like ISO 27001 and PCI-DSS.
Overview
13
13
years of professional experience
1
1
Certification
Work History
Sysadmin
Landgorilla
San Antonio Obispo
09.2021 - Current
- System Administrator with hands-on experience in Linux systems, AWS cloud infrastructure, infrastructure automation, cybersecurity, and web security in production environments. Responsibilities cover system provisioning, configuration management, scripting, monitoring, and compliance hardening.
- AWS infrastructure management, including EC2, IAM, S3, Lambda, ECR, Route 53, ELB, CodeDeploy, Launch Templates, and EventBridge (scheduled rules).
- Daily usage of AWS CLI to automate tasks, manage instances, and coordinate service interactions.
- Designed and implemented automated infrastructure deployments using Terraform and SaltStack, including provisioning, state configuration, remote execution, and service orchestration.
- Created and maintained Docker-based environments, managing private image registries using AWS ECR for controlled deployment and isolation.
- Developed internal APIs in Python to automate repetitive system administration and security-related tasks, integrated with AWS and local tools.
- Implemented hardening on Linux servers using industry best practices aligned with ISO 27001 and PCI-DSS standards.
- Configured firewall policies with iptables and firewalld to restrict traffic, isolate services, and prevent unauthorized access.
- Hardened Apache web services using ModSecurity with custom rules and OWASP CRS (Core Rule Set) for the mitigation of web application threats, such as SQL injection, XSS, and path traversal.
- Created and customized ModSecurity rules to protect specific APIs and services.
- Deployed and maintained the Wazuh SIEM (Security Information and Event Management) platform, including agent rollout, rule tuning, alert correlation, and active response.
- Integrated Wazuh with Elastic Stack components (Elasticsearch, Logstash, Kibana, Filebeat, Auditbeat) for centralized log collection, threat detection, and dashboard reporting.
- Developed and maintained Bash scripts for routine tasks, such as system backups, log rotation, system health checks, monitoring integration, user creation, and automated responses to system anomalies.
- Monitored systems proactively and responded to incidents, including identifying anomalies, reviewing logs, and executing corrective actions.
- Managed internal documentation for all deployments, including runbooks, configurations, and security policies.
- Participated in technical planning and advised on the secure deployment of cloud-based systems and hybrid environments.
- Contributed to system audits and compliance reviews, assisting with the remediation of findings related to access control, patching, logging, and segmentation.
Security Analyst
Zoluxiones S.A.C.
05.2021 - 12.2021
- Security Analyst responsible for patching, system hardening, and vulnerability remediation across heterogeneous environments, including Windows Server, Linux (RHEL/CentOS), and AIX systems. Supported secure configuration of critical infrastructure in alignment with internal policies and external regulatory standards.
- Assessed and remediated vulnerabilities detected in OS-level and application services, based on CVE reports and internal audits.
- Performed scheduled system updates and patch management on Windows and Linux servers using vendor tools and internal scripts.
- Conducted OS and service-level hardening on Linux, AIX, and Windows, including SSH configurations, password policies, service restrictions, and removal of legacy components.
- Coordinated with internal IT and infrastructure teams to deploy updates with minimal downtime and rollback planning.
- Generated documentation and compliance reports post-remediation for audit validation.
- Supported vulnerability scanning using enterprise tools (e.g., Nessus, Qualys or equivalent – can be mentioned if known).
- Enforced system baselines based on security frameworks such as CIS Benchmarks.
- Participated in change management processes for controlled deployment of fixes across production and pre-production systems.
Security and Cyber Defense Specialist
E-NTERACTIVA SAC
Lima
04.2014 - 04.2021
- Progressively evolved from Systems Administrator to lead engineer in charge of cloud infrastructure, web security, and network architecture. Responsible for the design, deployment, and hardening of hybrid environments based on Linux systems and public cloud providers such as AWS, Huawei Cloud, and IBM SoftLayer.
- Deployed, maintained, and secured multi-distribution Linux environments (Ubuntu, CentOS, Red Hat) for production web services, internal infrastructure, and staging environments.
- Designed and implemented secure cloud infrastructure (AWS, Huawei Cloud, SoftLayer), including VPCs, subnets, route tables, floating IPs, VPN gateways, NAT, load balancers, and private-to-public network bridges.
- Built hybrid cloud networks connecting cloud infrastructure to on-premise systems, enabling scalable and secure service deployments.
- Defined and deployed security policies at network and application levels, including firewall rules, WAF protections, access control, IDS/IPS solutions, and DDOS mitigation strategies.
- Developed and enforced web security architecture using ModSecurity (OWASP CRS and custom rules) on Apache and Nginx servers to protect applications against injection attacks, enumeration, and exploit attempts.
- Designed network segmentation, DMZ architectures, VLANs, and routing strategies for both cloud and local environments.
- Implemented and maintained encrypted VPN infrastructures using OpenVPN, IPSec, and vtun for secure communication between internal services and cloud endpoints.
- Configured and maintained UTM firewalls, iptables rule sets, and traffic filtering for perimeter security.
- Led planning and execution of infrastructure migration projects, including environment replication, service transfer, and post-migration security validation.
- Deployed monitoring platforms (OSSEC, Nagios, Cacti, PRTG) for availability, anomaly detection, and capacity planning.
- Developed custom tools and automation scripts in Python, Bash, and Perl for monitoring, alerting, and configuration tasks.
- Collaborated with software engineers and management to align infrastructure design with development lifecycles and business goals.
Sysadmin
EFACT S.A.C.
Lima
12.2013 - 03.2014
- Responsible for maintaining production Linux-based infrastructure, scripting automation tasks, and ensuring availability and backup consistency for critical business services.
- Administered core services running on Linux, including Apache web servers, MySQL databases, and monitoring systems such as Nagios.
- Performed daily backups of MySQL databases and mission-critical application data, ensuring data integrity and recovery readiness.
- Created and maintained Bash scripts to automate routine tasks such as backup scheduling, log rotation, and service health checks.
- Applied OS updates and ensured patch compliance on application and infrastructure servers.
- Monitored performance and availability metrics, responding to alerts and system incidents in real-time.
- Collaborated with developers to update backend services and deploy changes across environments.
- Managed and updated firewall rules using iptables to secure internal services.
- Supported documentation of IT procedures and technical changes.
Service Administrator
Red Cientifica Peruana
Lima
05.2013 - 10.2013
- Managed the deployment, configuration, and maintenance of critical IT services including firewalls, monitoring platforms, antispam systems, virtualization environments, and secure email infrastructure.
- Implemented and maintained perimeter firewalls, HTTP/HTTPS proxies, and antispam solutions including ClamAV, SpamAssassin, and Barracuda Firewall.
- Deployed and supported Zimbra mail servers, including daily backups of mailboxes and system data.
- Developed Bash and Python scripts to automate tasks such as email account provisioning, monitoring checks, and backup processes.
- Administered MySQL databases used for application backends and service data, performing regular maintenance and optimization.
- Configured and managed network monitoring tools such as Nagios, Cacti, and Munin for system health checks and performance tracking.
- Maintained and secured RADIUS authentication servers (Radiator) for internal and external access management.
- Administered virtualized services using Xen and Red Hat Enterprise Virtualization (RHEV), including provisioning, resource allocation, and lifecycle operations.
- Ensured the reliability and availability of critical IT services through daily operational support and system diagnostics.
- Documented infrastructure setup, standard operating procedures, and recovery plans for internal use and audits.
Server Administrator
Edpyme Acceso Crediticio
01.2013 - 04.2013
- Responsible for implementing and managing core infrastructure services, network security components, and system automation in a mixed Linux environment. Focused on firewall deployment, service integrity, and secure configurations across the network.
- Implemented perimeter security solutions including proxy-firewalls, master/slave DNS servers (Bind), DHCP services, and IDS systems (Snort and OSSEC).
- Performed system administration and maintenance of MySQL and PostgreSQL databases, including backups and basic tuning.
- Administered Zimbra mail servers, including mailbox management, system integration, and automated backup processes.
- Developed Bash and Python scripts to automate operational tasks such as service checks, system monitoring, and scheduled backups.
- Monitored infrastructure using Nagios and Cacti, tracking performance metrics and ensuring high availability of business-critical services.
- Managed internal DNS, DHCP, and proxy configurations to support secure and stable internal network operations.
- Maintained firewall rules using iptables for controlled access to network services and exposed endpoints.
- Documented infrastructure deployments and maintenance procedures to support internal audits and continuity planning.
Support ISCM
Cyberline S.RL.
Lima
04.2012 - 03.2013
- Provided infrastructure support and operations for perimeter servers, monitoring systems, VPNs, and internal services across a mixed Linux environment. Delivered technical support for networking, firewall configurations, and server availability.
- Installed and maintained perimeter services including Apache, DNS (Bind), Zimbra mail servers, VPNs (OpenVPN), and Radius authentication servers (OpenRadius).
- Managed corporate VPN solutions, implementing encrypted tunnels using OpenVPN and maintaining secure connectivity across remote environments.
- Configured and monitored Zimbra email servers, including user provisioning, backup automation, and performance optimization.
- Developed Bash and Python scripts for service automation, backup routines, monitoring integrations, and user provisioning.
- Operated monitoring tools such as Nagios and Cacti to track system health and performance of services.
- Maintained MySQL databases, performing backups, integrity checks, and optimization.
- Configured firewall policies with iptables and firewalld to restrict traffic, isolate services, and prevent unauthorized access.
- Provided technical support for Cisco switches and routers, including static routing, latency troubleshooting, and NAT configurations across ISPs (Claro, Telefónica, Americatel).
- Supported Microsoft Exchange and Active Directory integration tasks.
- Participated in incident resolution and recovery of business-critical services across storage and virtualized blade environments.
Junior Network Administrator
Novelix S.A.C.
Lima
11.2011 - 03.2012
- Responsible for implementing and supporting network infrastructure, perimeter security systems, Linux-based services, and automation scripts to ensure operational continuity and secure service delivery.
- Designed and deployed network infrastructure for internal operations, including LAN segmentation, switching, and routing.
- Implemented and managed security perimeter systems including iptables-based firewalls, HTTP/HTTPS proxies, and antispam protections.
- Deployed and administered Linux-based services including Apache, DHCP, DNS (Bind), Postfix mail servers, and Horde webmail.
- Configured and maintained OpenVPN for encrypted remote access and secure site-to-site communications.
- Developed and maintained Bash and Python scripts for system automation, monitoring, backup, and reporting tasks.
- Installed and monitored system health and performance using Nagios and Cacti.
- Maintained MySQL databases for application support and internal services.
- Provided operational support for Cisco networking equipment, including switch and router configuration, static routing, NAT, and network diagnostics.
- Performed regular system backups for databases, mail servers, and critical services.
Education
Bachelor of Computer Systems Engineering - System Engineering
Universidad Peruana Del Norte
Lima12-2025
Diplomado En Hacking Ético Y Ciberinteligencia - Ethical Hacking
CEUPE - European Business School
Madrid05-2022
Técnico En Computación E Informatica - Sistemas e Informática
Instituto Superior Tecnológico ABACO
Lima08.2011
Skills
Systems Administration
Linux (Red Hat, CentOS, Ubuntu, AIX): provisioning, hardening, patching
Windows Server: patch management, vulnerability remediation
Services: Apache, Nginx, Zimbra, Postfix, Bind (DNS), DHCP, MySQL, PostgreSQL
Cloud & Virtualization
AWS: EC2, IAM, Lambda, S3, CodeDeploy, ECR, ELB, Route 53, Launch Templates, EventBridge, AWS CLI
Hybrid Cloud Infrastructure (AWS, Huawei Cloud, IBM SoftLayer): VPCs, subnets, routing, peering, Direct Connect
Virtualization: KVM (Kimchi), OpenStack, RHEV, Xen
Infrastructure as Code (IaC): Terraform, SaltStack
Security Engineering
OS and web server hardening aligned with ISO 27001, PCI-DSS, CIS Benchmarks
Security policy development and enforcement for Linux, network, and cloud environments
Network firewalls: iptables, firewalld, UTM devices
Web Application Firewalls: ModSecurity with OWASP CRS and custom rules
IDS/IPS: Wazuh, OSSEC, Snort
SIEM deployment and management: Wazuh Elastic Stack (ELK Beats)
Anti-spam & antivirus: SpamAssassin, ClamAV, Barracuda
Automation & Scripting
Python: API development, infrastructure tasks, security automation
Bash scripting: backups, system hardening, service monitoring, user management
SaltStack: stateful automation and infrastructure orchestration
Terraform: AWS resource provisioning and infrastructure versioning
Scheduled tasks: cron, EventBridge
Networking & VPN
VPN infrastructure: OpenVPN (SSL-based), IPSec (site-to-site), vtun (TCP tunnel)
Network routing: static/dynamic routing (Layer 3 Cisco switches), NAT, VLANs, DMZ
Authentication systems: RADIUS (Radiator), OpenRadius
Monitoring & Observability
Monitoring platforms: Nagios, Cacti, PRTG, Munin
Centralized logging and dashboards: Wazuh, Elasticsearch, Logstash, Kibana, Filebeat, Auditbeat
Alert tuning and anomaly detection for operational reliability
Planning & Architecture
Infrastructure as Code (IaC), Automation as a Service (AaaS), Security as Code (SaC)
Hybrid and multi-cloud network architecture design
Cloud migration planning and execution
Security architecture design and implementation for web services
Policy-based access control and monitoring strategies
Documentation of procedures, architecture diagrams, and security standards
Certification
- Lead Cybersecurity Professional Certificate (LCSPC), https://nextech.pe/validacion-de-certificados, 7721-7694-2058
- ITIL 4 FOUNDATION CERTIFICATE, https://nextech.pe/validacion-de-certificados, 13273-8120-2058
- CompTIA Linux+ XK0-004, COMP001021763635
- Certificación ISO 27001 fundamental, 6EF8610F-59D
- Certificación Certified Ethical Hacker EC-Council, ECC8345972610
- Lead Cybersecurity Professional Certificate (LCSPC) https://nextech.pe/validacion-de-certificados / 7721-7694-2058
Training
- Diplomado en Hacking Ético y Ciberinteligencia, ESHE, 05/19/22, 320 horas
- Certified Ethical Hacker v11, New Horizons, 03/09/22, 53 horas
- Web Application Hacking and Security, EC-Council, 02/14/22
- AWS Certified Solutions Architect - Associate, BSG Institute, 02/10/22, 53 horas
- Lead Cybersecurity Professional Certificate, Nextech, 01/31/21, 16 horas
- Seguridad de Aplicaciones Web Avanzado, Adiestra, 01/07/17, 30 horas
- Seguridad de Aplicaciones Web, Adiestra, 07/09/16, 40 horas
- Taller de Ethical Hacking, Hacking Web, Exploits y Vulnerabilidades, Adiestra, 01/30/16, 24 horas
Personal Information
- DNI: 45886979
- Date of Birth: 12/27/88
Languages
Spanish
First Language
English
Upper Intermediate (B2)
B2
Timeline
Sysadmin
Landgorilla
09.2021 - Current
Security Analyst
Zoluxiones S.A.C.
05.2021 - 12.2021
Security and Cyber Defense Specialist
E-NTERACTIVA SAC
04.2014 - 04.2021
Sysadmin
EFACT S.A.C.
12.2013 - 03.2014
Service Administrator
Red Cientifica Peruana
05.2013 - 10.2013
Server Administrator
Edpyme Acceso Crediticio
01.2013 - 04.2013
Support ISCM
Cyberline S.RL.
04.2012 - 03.2013
Junior Network Administrator
Novelix S.A.C.
11.2011 - 03.2012
Bachelor of Computer Systems Engineering - System Engineering
Universidad Peruana Del Norte
Diplomado En Hacking Ético Y Ciberinteligencia - Ethical Hacking
CEUPE - European Business School
Técnico En Computación E Informatica - Sistemas e Informática
Instituto Superior Tecnológico ABACO
Similar Profiles
Chevy DouglasChevy Douglas
Key Grip at Self-employedKey Grip at Self-employed
Jhan Carlo Camacuari AquinoJhan Carlo Camacuari Aquino
PLANNING, QUALITY AND COMPLIANCE ASSISTANT at Howden Peru Corredores de SegurosPLANNING, QUALITY AND COMPLIANCE ASSISTANT at Howden Peru Corredores de Seguros
ANYELA PAMELA GUERRA PIMENTELANYELA PAMELA GUERRA PIMENTEL
Practicante De Administración at Compañía Minera AntaminaPracticante De Administración at Compañía Minera Antamina
Victor VenegasVictor Venegas
SysAdmin at TalentSysAdmin at Talent
Alejandro BravoAlejandro Bravo
Cloud L3 Sysadmin at ClouxterCloud L3 Sysadmin at Clouxter