SUMMARY:

• 10+ years of experience in Cyber Security and Network Administration performing variety of tasks ranging from Security Assessments using Confidential guidelines, Security Operations, Network administration and management.
• Detail - oriented individual who has extremely strong analytical and people skills.
• Adept at taking in complex business problems and help develop and deploy complete and helpful solutions.
• As a next step in my career, I am looking for a challenging position as Cyber Security Analyst at progressive organization to utilize and enhance my skills and abilities.

TECHNICAL SKILLS:

Confidential SourceFire (IDS/IPS), Tenable Security Center (Nessus), Qualys, Splunk, ArcSight, FireEye HX NX, FireEye Triage, McAfee, RSA Netwitness, SecurID (Two-Factor Authentication), Wireshark, Burp Suite, Symantec Endpoint, MS Server 2012/2008/03 , CentOS, VMware ESXi., Backup Exec 10.x/11.x/12.5, Blackberry Enterprise Server, MS SQL 2005/2008, Exchange 2003/2007, WSUS, DNS, WINS, DHCP, TCP/IP, SMTP, VLAN, VPN, FTP.

EXPERIENCE:

Threat Mitigation Incident Response Analyst

Confidential

Responsibilities:

• Monitor and analyze network traffic, security events and logs.
• Understand Incident Response processes and participate in analysis, containment, and eradication of cyber security events and incidents.
• Utilize analytic experience to address cyber-attacks and mitigate indicators and correlations to identify attribution and potential threat and impact.
• Executes the Incident Response Lifecycle to drive threat remediation and identify strategic countermeasures improving future defenses.
• Perform analysis of logs from various security controls, including, but not limited to, host intrusion prevention systems, endpoint security, application and system logs, to identify possible threats to network security.
• Apply knowledge of security-related technologies such as IPS, IDS, SIEM, DNS, encryption, HIDS, NIDS, network packet analyzers, malware analysis.
• Monitor, PhishMe Triage, and categorize events, alerts and tips for further investigation and block malicious sender.
• Document investigations using tickets, incident reports, etc.

Incident Response Analyst

Confidential

Responsibilities:

• Prioritize and differentiate between potential intrusion attempts and false alarms
• Compile detailed investigation and analysis reports for delivery to management.
• Process incident emails (spam, phishing, DLP)
• Process tickets assigned to the CIRT group and Network Operations.
• Influence and improve upon existing processes through innovation and operational change
• Ensure CIRT is providing excellent customer service and support
• Stay up-to-date with current vulnerabilities, attacks and countermeasures
• Communicate effectively and clearly to leadership with relevant level of detail
• Run vulnerability and compliance scans of IT devices and applications using SecureWorks.
• Assess organizational technical infrastructure using Confidential and Confidential a guidance.

Network Support Engineer

Confidential

Responsibilities:

• Built, configured and troubleshoot Windows Servers 2008 and 2012 in VMWare environment.
• Deployed and provided support for iOS smart phones mobility devices
• Managed various applications such as Mobile Iron, Confidential IP Phone, Routers and Switches.
• Utilized Confidential experience to troubleshoot routing protocols such as RIP, OSPF and EIGRP.
• Monitored Veritas Volume Manager, NetBackup and Cluster Server in SAN Environment.
• Installed and configure RAC on VM Virtual Box for test and development purposes.
• Responsible for imaging new machines and re-image computers as needed
• Educated users through one-on-one on various IT related tasks.
• Maintained ticketing queue through Remedy.

SOC Analyst

Confidential

Responsibilities:

• Monitored and analyzed network traffic and alerts.
• Investigated intrusion attempts and performed in-depth analysis of exploits
• Performed intrusion analysis using various tools such as Splunk, Arcsight and Confidential IDS
• Conducted threat research and blocked malicious IP addresses.
• Created and tracked tickets, assign priority, document and resolve or elevate to appropriate group(s) for resolutions in Remedy.
• Maintained knowledge of the current security threat level by monitoring related Internet postings, Intelligence reports, and other related documents as necessary.
• Indentified and take steps to investigate and resolve computer security incidents.
• Tracked the process of unresolved cases to ensure successful completion or escalation to the appropriate individuals or organizations based on established guidelines and procedures.

Technical Support Consultant

Confidential

Responsibilities:

• Deployment of Equipment Build and configure desktop and notebook systems; Configure email, network, and applications for specific user Work with the user to ensure understanding of new system operation Install and maintain peripherals and other equipment
• Troubleshoot and resolve issues with workstation hardware and software
• Maintained hardware and software inventory
• Setup and deployed IT equipment for new employees
• Worked with fellow members of the IT department to accomplish assigned projects.
• As required, train users in various software and operating system activities
• Assisted with Data backup systems (Symantec Backup Exec) as well as restoring user data as needed.

Desktop Support Specialist

Confidential

Responsibilities:

• Provide software support on desktop and laptop systems in Windows Vista environment at Fort Belvoir, Virginia, Headquarters, U.S. Army Materiel Command. Install, configure and troubleshoot Government off the Shelf ( Confidential ) and Commercial Off the Shelf (COTS) software packages.
• Troubleshoot Active client security issues with Confidential readers and cards.
• Use DSM Explorer to remotely troubleshoot PC issues and push selected software packages. Backup and restore user data on reimaged systems.
• Request creation of user accounts and troubleshoot connectivity issues with the Fort Belvoir DOIM Blackberry support group. Wipe, configure, load applications, activate and issue Blackberry’s to users. Pair the Confidential sled with Blackberry to allow users to read encrypted email.