Security Analyst Resume

SUMMARY:

Experienced Security Consultant with 6 years of IT experience with a focus on designing and developing security solutions
Knowledge and experience in standard Security and regulatory frameworks including ISO 27001/31000, NIST, HITRUST CSF and PCI DSS
Expertise in Gathering and analyzing metrics, key risk indicators and maintain scorecards defined within the area of information security to ensure our information security program is performing effectively and efficiently
Familiar with general security risk management principals and best practices
Hands on experience with security consulting and research
Responsible for working with Endpoint Management team to manage software deployment to PCs using tools such as 2008/2012 Active Directory, Microsoft WSUS patching, Anti - virus and endpoint protection. Creation and management of PC Build Images for Windows, and application for PCI security policies.
Oversee Vulnerability assessment /penetration testing of scoped systems and applications to identify system vulnerabilities.
Helped application teams in on-boarding Splunk and creating dashboards, alerts, reports etc.
Monitoring and remediating daily security alerts generated by end users and also responsible for effectiveness of tools and scans, as well as assessing and tracking risk of exposure
Provided guidance, recommendations, best practices, etc. for DLP operations, stabilize and optimize DLP system performance, including rules and reports, assist with DLP upgrades, installations and configuration
Understand PKI and SSL/TSL key management and managed PKI Remedy Que/Service now system and Help design and implements change within PKI infrastructures
Assisted in Symantec HIDS/NIDS Setup using HPSA implementation and provided status reports
Experience in security Information and Event Management Tools like IBM QRadar and RSA Archer.

PROFESSIONAL EXPERIENCE:

Security Analyst

Confidential

Responsibilities:

Evaluated enterprise risks, document processes and systems in flowchart and narrative form, and design audit requirements
Manage all repeated threats to all systems and perform vulnerability tests
Experienced on Setup Splunk Forwarders for new application tiers introduced into environment and existing applications
Worked closely with Application Teams to create new Splunk dashboards for Operation teams
Developed ISO-based controls that address regulatory requirements associated with PCI, HIPAA and SOX
Tracking the receipt, implementation, and compliance of information assurance vulnerability assessment and documenting information assurance initiatives ensure that systems, networks, and data adhere to security policies and procedures
Risk Management, Vulnerability Management, Intrusion Prevention, Incident Response
Adding new vulnerabilities to the Vulnerability Database for various platforms with proper exploits
Assist developers in remediating issues with Security Assessments with respect to OWASP standards
Support and Operational experience of GRC systems
Help lead the Risk System (GRC) development and implementation
Perform all GRC configurations for enhancements and maintenance
Implemented a new GRC system, as part of the overall project team.

Information Security Engineer

Confidential

Responsibilities:

Installed and maintained security software including, Symantec endpoint protection, Backup Exec 2015, Encryption Management, RSA Authentication manager
Installed and configured Windows 2012/2016 server
Created various policies for group access control and authentication of users; reset passwords; created Active Directory for entire network
Experienced in the escalating process of security incidents
Utilized ServiceNow ticketing system for incident and change management along with escalations
Provided remote desktop support via TeamViewer, VNC, and Skype screen share for customers to provide instant support; supported queries via phone, fax, and email.

We provide IT Staff Augmentation Services!

We'd love your feedback!

Resume Categories

Client Services

Job Seekers

Visa Sponsorship