Portfolio — 2026
JoseRicardo
PACHECO
Cybersecurity Engineer

Turning attack surfaces into defended perimeters. I secure cloud infrastructure, hunt threats, and break systems before adversaries do.

View My WorkDownload CV
Scroll
// 01About
Jose Ricardo Pacheco

Turning attack surfaces into defended perimeters.

Cybersecurity Engineer at Softbox (Grupo Aduanero Peninsular), securing DigitalOcean cloud infrastructure across 6 internal companies. I conduct penetration tests, triage security events, and build data pipelines that turn raw logs into actionable intelligence. Currently finishing a B.S. in Information Technology Engineering at Universidad Anáhuac Mayab with a concentration in Cloud Security, targeting roles in cloud security engineering, penetration testing, and SOC analysis.

3+
Companies Secured
19+
Vulnerabilities Found
3.82
GPA — Cloud Security
4
Microsoft Certs Earned
Email
jrp2022@gmail.com
LinkedIn
linkedin.com/in/jose-ricardo-pacheco-chanico
GitHub
github.com/pacheco20222
// 02Skills & Tools

Tools & technologies — verified hands-on.

Across offensive operations, cloud infrastructure, and detection engineering — these are the tools I reach for.

OFF

Offensive Security

06
  • Metasploit
  • Burp Suite
  • Nmap
  • Nessus
  • OpenVAS
  • Kali Linux
DEF

Defensive Security

06
  • Splunk (SIEM)
  • Incident Response
  • MITRE ATT&CK
  • Threat Analysis
  • Log Analysis
  • Vulnerability Assessment
CLD

Cloud & Identity

06
  • Azure Defender
  • Azure AD / IAM
  • AWS
  • Google Cloud (GCP)
  • DigitalOcean
  • Active Directory
DEV

Development & Scripting

06
  • Python
  • Bash
  • JavaScript
  • SQL
  • PHP
  • FastAPI
OPS

Infrastructure & DevSecOps

06
  • Docker
  • Kubernetes
  • Terraform
  • GitHub Actions
  • Snowflake
  • Streamlit

/* continuously updated */

Skill count
30
// 03Experience

Professional
record

Companies,
roles &
impact.

Oct 2025 — Present

Cybersecurity Engineer

Softbox · Grupo Aduanero Peninsular·Merida, Yucatan

Internal software security division serving 6 subsidiary companies.

  • Conduct penetration testing, vulnerability assessments, and cloud security posture reviews across DigitalOcean infrastructure — firewalls, load balancers, VNets, and databases
  • Monitor and triage security events across network infrastructure, escalating confirmed threats with severity classification and remediation documentation
  • Built Python FastAPI biometric attendance service with real-time analytics pipeline, integrating Snowflake and Streamlit dashboards for management reporting
  • Collaborate directly with development teams to identify and remediate insecure code before deployment
May 2025 — Sep 2025

Software Implementation Consultant Intern

TecniA · Universidad Anáhuac Mayab·Merida, Yucatan

University entrepreneurship accelerator supporting early-stage startups.

  • Advised startup founders on secure cloud architecture decisions — optimal tech stacks, backend services, and cost-effective resource allocation
  • Led cloud deployment processes for multiple projects ensuring scalable, reliable, and compliance-aligned implementations
Aug 2022 — Jan 2023

System Administration Intern

Escuela Americana·San Salvador, El Salvador

K-12 institution managing Microsoft Azure cloud server infrastructure.

  • Administered Microsoft Azure cloud servers — system monitoring, backups, and security updates maintaining high availability
  • Developed Python automation scripts to streamline server maintenance and reduce manual operational overhead
// 04Projects

/* TODO: replace with real projects */

Project 01

Enterprise Penetration Testing Simulation

Full-lifecycle penetration tests across web applications, Linux, and Windows systems. Identified 19+ vulnerabilities including XSS, SQL injection, command injection, privilege escalation, and credential dumping. Delivered professional remediation reports with risk ratings, evidence, and MITRE ATT&CK mapping.

MetasploitNmapNessusMITRE ATT&CKKali Linux
View Project
Project 02

SIEM Security Monitoring & Attack Detection

SplunkWindows ServerApacheIncident Response
View Project
Project 03

Cloud-Native Mobile App with Secure Infrastructure

AzureDockerGitHub ActionsPythonReact NativeTerraform
View Project
// 05Available For

Beyond the 9-to-5.

Open to security consulting engagements and SaaS development projects alongside my full-time work.

SEC

Security Consulting

Penetration testing, vulnerability assessments, and cloud security posture reviews for startups and growing companies. I find what attackers find — before they do.

PentestingCloud AuditThreat Analysis
DEV

SaaS Development

Cloud-native full-stack applications built for entrepreneurs and early-stage companies — secure by design, deployed with CI/CD, built to scale.

Flask / React NativeAzure & AWSDocker & CI/CD
Interested in working together?Get In Touch
// 06Certifications

/* verified credentials */

S+
CompTIA Security+
CompTIA
In Progress
MSD
Cybersecurity Solutions & Microsoft Defender
Microsoft
Nov 2025
IAM
Cybersecurity Identity & Access Solutions (Azure AD)
Microsoft
Oct 2025
TVM
Cybersecurity Threat Vectors & Mitigation
Microsoft
Nov 2024
TEC
Cybersecurity Bootcamp
Tecnológico de Monterrey
Mar 2024
TCS
Cybersecurity Analyst Job Simulation
Tata Consultancy / Forage
Sep 2025
GCF
Google Cloud Fundamentals: Core Infrastructure
Google
Feb 2024
TF
Build Infrastructure with Terraform on Google Cloud
Google
May 2024
// 07Contact

Let's Work
Together.

Whether you need a security assessment, a team member, or just want to talk about threats — I'm available.

Email
jrp2022@gmail.com
LinkedIn
linkedin.com/in/jose-ricardo-pacheco-chanico-2057282a2
GitHub
github.com/pacheco20222
© 2026 Jose Ricardo Pacheco. All rights reserved.Built with Next.js · Framer Motion · Tailwind CSS