Cyber Security Engineer Resume
2.00/5 (Submit Your Rating)
Dulles, VA
SUMMARY:
Cyber Security professional with experience in designing security solutions based on NIST SP 800s, and Risk Management Framework (RMF) that support key business processes and organizational mission.
TECHNICAL SKILLS:
Security Standards: NIST SP ( A ), NIST RMF, CDM Framework, TOGAF, FIPS (140, 199, 200, 201), CNSS 1253, ISO 2700, HIPAA, SOX, PCI DSS, FISMA, DIACAP C&A, Service Oriented Architecture (SOA), Security Control Assessments (SCAs), Network & Application Security, Firewalls, Identity Access management & Data Protection.
Risk Management Tool: Risk Radar
Network/Vulnerability Tool: Nmap, Nessus
Security/Tools: Splunk, SolarWinds
Operating System: Windows 2012/2008, Unix/Linux
Database: Oracle, Microsoft SQL, MySQL, Access
PROFESSIONAL EXPERIENCE:
Confidential, Dulles, VA
Cyber Security Engineer
Responsibilities:
- Assessed system architecture to ensure security implementations align with NIST guidelines, Risk Management Framework (RMF) and management approved System Security Plan (SSP).
- Provide support to integrate security and compliance into all enterprise information systems and projects as part of the Information Response Plan (IRP) process by working across team members.
- Create and maintain standards surrounding Authority to Operate (ATO) documentation related to security processes, procedure, POA&M updating based on vulnerability/patch mgmt. remediation.
- Developed plans for remediating findings from assessments and audits, establish threat modeling to identify, prioritize and report on cyber threats using Security Assessment Reports (SAR).
- Identify security gaps contingency, disaster and incident response plans alignment with NIST SP to mitigate threats from network, operating systems, databases and applications.
- Coordinate System Security Plan (SSP) for Identity and Access Management, Email security, SAML, OAUTH and OpenID, SSO, PKI compliance testing with NIST SP a rev4.
- Participate in system security testing, verification, simulation and post deployment and accreditation to validate risk assessment alignment with System Security test and Evaluation (ST&E)
- Work in cross - functional environment, prepare security program, and user documentation, maintain security governance and awareness of individual expectations across the organization.
Confidential, McLean, VA
Cyber Security Analyst
- Evaluate network based, system level and application layer processes monitoring, detecting threats and suspicious traffic, and troubleshooting artifacts to support assessments and audits.
- Coordinate COTS security solutions to aligned business processes and technical controls, validate activities secure information assets and mitigate risks to meet industry best practices.
- Manage vulnerability scans and penetration tests of systems; develop remediation plans, test controls, and recommends countermeasure of attack vectors and incidents response.
- Create metrics to track DLP, IDS/IPS, IAM, SIEM logs reporting to meet operational level security controls and compliance frameworks including CSA CCM, ISO 27017 best practices.
- Integrate security practices across enterprise environment including IP networking, VPNs, DNS, load balancing and firewalling solutions based set of security standards and processes.
Confidential, Woodlawn, MD
SOC Analyst
Responsibilities:
- Conduct security monitoring and analysis of exploit, classified threat to detect and respond to network, system and application layer attacks, and troubleshooting artifacts to defeat adversaries.
- Perform advanced threat hunt operations using known adversary tactics and techniques from attack indicators to detect adversaries persistent access to the enterprise firewall, web server, and DNS logs
- Provide incident response, security assessments of vulnerabilities, intrusion detection mitigation, network scanning, packet capture and logs analysis, and encryption and authentication technologies.
- Monitors, investigate, analyze and reports on security incidents and lead containment, eradicate impact of compromises with Windows, UNIX/Linux operating systems, network data and tools.
- Recommend and collect various key metrics for reporting on incident response process and support development of documented procedures, knowledge articles, and material.
Confidential, Fairfax, VA
SOC Analyst
Responsibilities:
- Provide SIEM monitoring and analyze logs and alerts, reviewing security events and incident from systems, contain malicious packet flow, proxy, antivirus, spam and spyware activities, and create and resolve tickets resulting from investigating and triaging security events.
- Assist with the development of processes and procedures to improve incident response times, analysis of incident, and overall SOC functions, Security status reports and incident reports.
- Research host content activities across wide array of platforms, detailed investigation and develop countermeasures for network traffic, IDS/IPS/DLP events, packet capture and FW logs.
- Support 24x7 cyber environment and improve operational awareness and efficiency
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
