SUMMARY:

• Cyber Security Analyst with 5 extensive years of experience in Analyzing Security Incidents, Vulnerability and Penetration Testing, Network Monitoring, Information Security & Network Security functions.
• Experience with industry recognized SIEM (Security Information and Event Management) solutions such as; Alien Vault, Splunk, etc.
• Knowledgeable in FEDRAMP, Risk Management Framework (RMF) Processes and Workflow. Skilled in assembling security authorization package using Confidential SP Vol 2, FIPS 199, Confidential SP 53 Rev 4, FIPS 200, Confidential SP, Confidential 53A, Confidential SP 37 and Confidential SP 137.
• Proficient in the preparation and updating of System Security Plan (SSP), Security Assessment Plan (SAP).

TECHNICAL SKILLS:

SECURITY TOOLS: MacAfee EPO, MacAfee NITRO, Splunk, Wireshark, Snort, Tenable Nessus, Service Now

FISMA ARTIFACTS: FIPS 199& 200, SORN, E: Authentication, PTA, PIA, Risk Assessment, SSP, CP, CPT, ST&E, SAR, POA&M, ATO, Confidential Series

OPERATING SYSTEMS: Windows, VMware, Windows server 2012, Kali Linux, IOS

MICROSOFT OFFICE: Excel, Word, PowerPoint, Visio, OneNote, OneDrive, Outlook 365

PROFESSIONAL EXPERIENCE:

SOC Analyst

Confidential

Responsibilities:

• Analyze firewall logs, IPS and IDS logs to uncover malicious activity going on within the network. Initiate and recommend corrective action to the CIRT team. I worked with the incident response team establishing processes and procedures that the team follows in response to incidents like data breaches, data leakage, virus outbreak and unauthorized access.
• Troubleshoot network connectivity, latency using tools Wireshark.
• Perform various functions like IP block, URL block, user agent block, application blacklisting and whitelisting using Palo Alto firewalls and Sourcefire IPS. Coordinate with the CIRT team to investigate and resolve security incidents.
• Responsible for identity and access management using Active Directory and token - based authentication (Junos pulse).
• Ensure that users are trained on PCI/DSS and HIPAA (how to securely store, access, transmit and distribute PII, PHI and credit card information). Ensure that firewalls and intrusion prevention systems are performing data filtering to comply with PCI/DSS and HIPAA regulations.
• Perform vulnerability management using McAfee Vulnerability Manager. Actively and passively scan systems to uncover vulnerabilities and generate report on various systems. Perform monthly, quarterly and ad hoc scans and generate reports. Follow up with users to ensure that remediation efforts have been undertaken. Work in a 24/7 environment to ensure timely response to various security incidents and deliver excellent customer service.
• Track firewall changes and compliance with PCI-DSS using Tufin secure track. Implement data loss prevention, data filtering to increase data security.
• Troubleshooting Juniper SSL VPN issues. Assist remote users with difficulty connecting to the network using Junos pulse.
• Patching and updating various security appliances, firewalls, Juniper SSL VPN appliances SA6500, Sourcefire IDS etc. and making sure that security appliances and antivirus have the latest signatures.
• Assist with incident management response and analysis as a member of the computer security monitoring and incident response team providing analysis for the full scope and lifecycle of incident response (i.e. identification through closure including post- mortem and lessons learned) following industry established best practices in addition to being in accordance with Company- specific policies and standards.
• Handles end users, report Incidents, problem ticketing and change management ticketing with respect to Network Security within the agreed SLA.
• Familiarity with Sarbanes-Oxley (SOX), Gramm-leach Bliley Act, PCI-DSS, FISMA, Confidential 800 Series, ISO/IEC 27000 regulatory policies and guidelines.
• Implement data filtering and application firewalls to filter credit card numbers, social security numbers to comply with PCI and HIPPA.

Information security analyst

Confidential

Responsibilities:

• Performed security control assessment using Confidential A guidance.
• Developed Security Assessment Plan in preparation for the security control assessment.
• Conducted vulnerability and compliance scans of the applications and network using Nessus.
• Developed Security Assessment Report to document vulnerabilities and findings from the system document review, interview with system personnel, and the Nessus scan.
• Reviewed the system security documents for compliance, this include the System Security Plan, Risk Assessment Report, Security Assessment Plan and Report, Contingency Plan, Incident Response Plan, Configuration Management Plan, etc.
• Developed and maintained the Plan of Action and Milestones POA&M and support remediation activities, this include review of POA&M for closure.
• Aided continuous monitoring by generating Risk Assessment (RA) and updating System Security Plan and ensured security controls and supported evidence are in place.
• Supported the System Owners and ISSO in preparing and Accreditation packages for the IT system and secured sensitive security systems complied with Confidential Special Publication requirements.

Data analyst

Confidential

Responsibilities:

• Retrieved unformatted data from third party agency and processed it into the required template suitable for the project implementation
• Analyzed data received and broke it down into meaningful and understandable formats
• Printed analyzed data into daily sales route.
• Ensured customers data in the database system has been updated according to the submission of the sales team.
• Supported backend I.T. Route to Market (RTM) Project team in preparing for sales rep and I.T Infrastructure
• Assisted in activating the route for the sales team
• Reported route update progress to the Route to Market (RTM) Implementation Executive and sales team on weekly/daily basis
• Monitored the uploaded route data for sales team to the sales system correctly in draft mode.
• Went in-field with Trade Marketing Rep to perform joint calls and access their performance
• Customer service experience.
• Installed and maintained software to ensure smooth operation of the company’s PCs and devices.
• Configured PCs and mobile devices.
• Gained in-depth knowledge of company products and software best practices to deliver exemplary troubleshooting and problem resolution for Android, iOS, and Windows.