Nicholas Welch

Skills

Cloud & Infrastructure Security, Network Security, Application Security, Vulnerability Management, Risk Assessment & Management, Incident Response, Communication & Leadership

About

I'm a security professional with nearly 10 years at a managed security provider, where I've operated across the full security stack — incident response, compliance, vendor risk, and team leadership. Most recently I managed a Security Services team delivering security programs to 50+ enterprise clients, keeping us aligned to frameworks like NIST CSF 2.0, CIS, PCI-DSS, SOC 2, and ISO 27001.

Before moving into management, I spent four and a half years as a hands-on security engineer — triaging SIEM and EDR alerts, containing endpoint and identity threats, and conducting risk assessments for dozens of client environments annually.

I'm at my best in environments where security has to be both rigorous and practical — where frameworks matter, but so does keeping the business moving. I'm currently targeting Sr. IT Security Engineer roles where I can bring that depth of hands-on and program-level experience to a focused security team.