We provide IT Staff Augmentation Services!

Cyber Security Analyst / Soc Analyst Resume

Sterling, VA

SUMMARY:

  • Disciplined and driven IT Security professional with distinguished active duty military service in the Confidential .
  • A proven record of effective planning and organizing of complex IT system design and configuration.
  • Excellent knowledge of both network infrastructure and computer security.
  • A motivated initiative taker with a customer focused, professional demeanor who excels at interpersonal communication and attention to detail.
  • Offering a well - balanced blend of practical skills, leadership, and intellectual curiosity to potential employers.
  • Strong root cause diagnosis, analysis, and troubleshooting of network and network security related disruptions. Most successful in a dynamic, challenging, and fast paced environment.
  • Emphasis on Network Infrastructure and Cyber Security.

TECHNICAL SKILLS:

SIEM tools: Splunk ES, AlienVault

Cisco Firepower: IDS/IPS, Confidential NX

Endpoint Protection: Symantec (SEP), Carbon Black, Darktrace

Vulnerability assessment: Nessus SCCV

Cisco Routers and Switches: R1841, R2960, 2950, Catalyst 3550

Windows Desktop Administration: XP, Vista, 7, 8, 8.1, 10

CND/CNE methodologies: session hijacking, DDOS, packet sniffing, ARP poisioning.

Programming Languages: Python, C++, Javascript, and HTML DNS, DHCP, SSH, SNMP, IMAP, POP3, LDAP and various other TCP/IP ports and protocols

PROFESSIONAL EXPERIENCE:

Confidential, Sterling, VA

Cyber Security Analyst / SOC Analyst

Responsibilities:

  • Monitor and analyze network traffic and security alerts.
  • Investigate intrusion attempts and perform in-depth analysis of exploits.
  • Provide network intrusion detection expertise to support timely and effective decision making of when to declare an incident.
  • Conduct proactive threat hunting a related threat research.
  • Review security events that are populated in a Security Information and Event Management (SIEM) system
  • Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident.
  • Independently follow procedures to contain analyze and eradicate malicious activity.
  • Document all activities during an incident and provide leadership with status updates during the life cycle of the incident.
  • Provide information regarding intrusion events, security incidents, and other threat indications and warning information to the client.
  • Track security trends, statistics, and key figures for each client
  • Assist with the development of processes and procedures to improve incident response times, analysis of incident, and overall SOC functions

Confidential, Manassas, VA

Cyber Security Analyst / Incident Response Analyst

Responsibilities:

  • Responsible for incident response work including analyzing security events, identifying false positives vs. real threats, identifying host involvement, comparing scan results, analyzing Splunk logs, and prioritizing incidents/events.
  • Responsible for Malware Analytics ( Confidential ) & Vulnerability Assessments (Nessus) by investigating events similar in complexity to Bash attempts and SQL injections.
  • Work with Forensic Support working with remote contractor sites to extract data requested by our government SOC counterparts.
  • Helps develop training and SOP material.
  • Using Security Tool Management, troubleshoots and supports the restoration of security tool degradation and outages.
  • Through network monitoring, works on the identification of resource management, hung processes and routing configuration issues.
  • Help resolve Tier II incidents and events.
  • Assist NOC counterparts when necessary.

Confidential, Sterling, VA

Oracle Identity Management Systems Administrator / Information Security Analyst

Responsibilities:

  • Oracle Identity and Access Management 11G PS1 administrator.
  • Lead analyst for migration of OIM related processes and procedures between vendor
  • Provisioned, revoked, and disabled access across enterprise system using OIM (Oracle Identity Manager).
  • Worked with Database, Storage, and Linux/Unix teams to resolve issues related to OIM.
  • Corrected missing feed files, monitored scheduled jobs through sysadmin console.
  • SSH to UNIX boxes in order to troubleshoot server related issues, gather log files, and reboot servers from Linux command line.
  • Worked with Oracle support vendors to optimize system performance.
  • Performed all facets of C&A (certification and accreditation) campaign for access.
  • Monitored server health of all related Oracle servers.
  • Provided regular, frequent, and concise contact with Executive level personnel throughout the enterprise.
  • Provided user training to Junior Security Analysts and Help Desk Staff on responsible systems.
  • RSA Administration:
  • Performed “SuperAdmin” tasks in RSA Console server to include:
  • System maintenance and upgrade
  • Assisted in the implementation of Web-Tier system for Multi-factor authentication and bulk provisioning of software tokens.
  • Provisioned RSA token to user profiles in accordance with company regulation.

Confidential, Sterling, VA

Senior Help Desk Analyst

Responsibilities:

  • Performed technical tasks alongside teams of Network Engineers to diagnose and troubleshoot LAN/WAN network related issues, determining root cause, facilitate, validate, and verify full system restoration.
  • Extensive experience with Active Directory account management through password reset and GPO assignment.
  • Assisted in implementation of change management for ServiceNow across enterprise IT infrastructure.
  • Remote support for clients via VDI - LanDesk Remote Management, Dameware Utilities, and Windows RDP.
  • Provided attentive and diligent customer support to internal and external clients.
  • Anticipated and identified customer needs, provided prompt resolution or escalation of issue(s) ensuring the highest satisfaction of clients.
  • Documented and maintained detailed documentation of reported network, security, hardware and software related issues.
  • Developed and presented concise, relevant, and meticulously accurate reports to management and senior leadership to evaluate help desk performance.
  • Actively responded to incoming calls, emails, and self-service tickets ensuring Service Level Agreements (SLAs) remain consistently under agreement levels.
  • Executed succinct communication giving careful consideration to technical and non-technical staff and end users to ensure seamless interactions.
  • Promoted a team environment by mentoring and training junior members of staff, in addition to being the go-to source for operational guidance throughout the department.
  • Designed training outlines and knowledge base for department in use by approximately 15 staff members.

Confidential, Winchester, VA

Network Technician

Responsibilities:

  • Installation and setup of new desktop and network equipment.
  • Windows OS upgrades from XP and Vista to Windows 7.
  • Analyzed, troubleshoot, and resolved PC and network related issues in a timely manner to reduce the amount of down-time.
  • Performed PC and laptop hardware diagnosis and repair.
  • Resolved issues related to networked computer peripherals that included printers, scanners, copiers, and fax machines.
  • Troubleshoot and resolved issues related to malware infections and educated end users with the issues surrounding computer and network security.
  • Created and maintained detailed work logs identifying user issues and problem resolution.
  • Worked alongside a team of Network Engineers to build WLANs for small businesses.
  • Assisted users with mobile device setup for both Android and Apple mobile devices.

Confidential, Harrisonburg, VA

Help Desk Specialist

Responsibilities:

  • Worked with the Global IT Asset Manager, IT Supervisor, and IT Manager to manage hardware and software assets for Confidential .
  • Verified software installations on deployed systems to accurately distribute software licenses.
  • Modified asset tracking databases to ensure software was assigned appropriately.
  • Imaged, configured, and deployed Windows and Macintosh laptops
  • Consistently delivered exceptional end user customer service and provided technical assistance to all staff members.
  • Installed and managed LANDesk to workstations and laptops to entire company.

Hire Now