Diego Valenzuela

Founder & Principal Security Architect · Bastet AI Security LLC

AWS Security Specialty · CISSP/ISSAP · CCSP · CISM · CRISC · SC-100 · AZ-500

*Representative outcomes from prior roles; details available under NDA.

Portrait of Diego Valenzuela

Diego Valenzuela

Cloud Security Architect

LinkedIn → Company →
13+
Years in IT
5+
Years Cloud Security
8+
Certifications
500+
Connections

🎯
Mission

I secure cloud infrastructure and AI deployments for enterprises that can't afford to fail. After 13 years in IT and 5 specializing in cloud security, I've seen that most breaches happen in the gap between "good enough" and "actually secure." My work closes that gap.

🧭
How I Work

1) Assess (Week 1)

Guardrails + drift check across AWS/Azure. You get a baseline scorecard, top 10 risks, and a 30-day hardening plan.

2) Harden (Weeks 2-4)

Implement prioritized fixes (CIS L1/L2, least-privilege IAM, network egress). Weekly diff reports show what changed.

3) Prove (Ongoing)

Automated evidence, attack-path checks, and KPIs you can show to auditors and leadership.

Principles

  • Prevention first; incidents last.
  • Plain language over jargon.
  • Evidence or it didn't happen.
  • Small, safe, reversible changes.

💼
Experience Journey

Aug 2025 - Present
Founder
Bastet AI Security LLC
Delivered CIS-aligned guardrails and automated drift reporting; reduced critical misconfigs by 37% in first quarter for a multi-account AWS client.
Apr 2025 - Present
Cloud Security Engineer II
CloudHesive LATAM
Built Lambda-based remediation + account guardrails; consolidated evidence for audits; cut noisy alerts by >40%.
Oct 2023 - Apr 2025
Cybersecurity Project Specialist
Grupo Unicomer
Rolled out Azure security baselines and awareness program across multiple countries; standardized incident runbooks.
May 2017 - Mar 2023
From IT Engineer to Cybersecurity Analyst
Mainstream Renewable Power
Drove ISO-27001 controls adoption; improved OT/IT segmentation posture; introduced least-privilege IAM at scale.

🏆
Certifications & Credentials

AWS Security Specialty
Amazon • Verified
CISSP
ISC2 • Verified
ISSAP
ISC2 • Verified
CCSP
ISC2 • Verified
CISM
ISACA • Verified
CRISC
ISACA • Verified
SC-100
Microsoft • Verified
AZ-500
Microsoft • Verified

🔬 Private Security Lab

Isolated security lab (no client network access; controlled egress). I validate detections, break misconfigurations safely, and never touch your production accounts.

Air-gapped testing
Attack simulations
Zero production risk
Rapid PoC development

🌐
Languages & Logistics

Languages: Native Spanish | English (C2 proficiency)
Location: Santiago, Chile | Wyoming LLC with global reach
Availability: Works across US time zones · Accepting new projects now
Focus: AI security and complex hybrid environments

Let's Secure Your Infrastructure

From lift-and-shift disasters to zero-trust architectures, I've seen it all. Let's talk about your security challenges.

Book a 15-min Call Connect on LinkedIn