Information Security Analyst Resume
Plano, TX
SUMMARY
- Creative and experienced information security professional with 8 years of experience across diverse industries. Proven ability to combine vision, ingenuity, and technical capabilities with well - developed project management and leadership qualities to support organization cyber security.
AREAS OF EXPERTISE
- Security Assessments
- Application Security
- Cloud Security
- Social Engineering
- Policies Development
- Threat Management
- SIEM
- Risk and Compliance Management
- Incident Response
- Vulnerability Assessments
- Penetration Tests
- Source Code Review
TECHNICAL SKILLS
Operating Systems: Windows Desktop and Server, Kali Linux, Ubuntu, Parrot OS, WIFISlax
Programming Languages: C, C++, Java
Scripting Languages: Java script, Perl, PHP, Python, Bash, Power Shell
Data Analytics: R, Python Pandas, Weka, Tableau
Networking: TCP/IP, IEEE 802.11, Wireless, Cisco Routing & Switching, IoT Protocols
Databases: My SQL, MS SQL, Mongo DB, Dynamo DB
DAST Tools: Veracode, Burpsuit, OWASP ZAP and Netsparker, IBM App Scan
SAST Tools: IBM AppScan Source, CheckmarxCxSAST, HP Fortify and SonarQube
Network Scanners: Nessus, Open Vas, Metasploit, Armitage, Nexpose, Qualys Guard, Accunetix
Penetration Testing Tools: NMAP, WIFI Phisher, AirCrack-ng, SQLMAP, PowerSploit, BeEF, Impacket, THC- Hydra, OllyDBG, Immunity Debugger, Mona py, Social Engineering Tool Kit, w3af, wireshark, TCPDump Syslog-ng, rsyslog, OWASP ZAP, multiple opensource tools
Version Control System: Git, SVN
CI/CD tools: Ansible, Bamboo, Chef, Puppet, Jenkins, AWS CodeDeploy, CodePipeline and CloudFormation and GIT lab
Cloud Computing: Amazon Web Services (AWS)
Audit Standards: PCI DSS, SSAE-16, NIST, HIPAA, HITRUST, ISO -27001 and 27002
PROFESSIONAL EXPERIENCE
Confidential, Plano, TX
Information Security Analyst
Responsibilities:
- Conducted Information Security awareness training and email phishing campaign to promote security practices for Health Care client (4000+ employees).Participated in collaborative projects with Data Mangement, Networking, Cloud Security and Development teams regarding patch management, vulnerability remediation and application source code review.
- Developed IT operational policies, processes, methodologies applicable to organizational security, management and complaince. Collaborative work with multiple teams to answer HIPAA compliance audit questionnaire for Heath Care Client.
- Developing inhouse Vulnerability Assessment plans, Penetration Testing methodologies and automation tools to achieve DevSecOps using python programming language and DevOps concepts.
Confidential
Senior Associate Security Consultant
Responsibilities:
- Designed and implemented vulnerability assessments and penetration testing for multiple clients in Western New York region to achieve SOX, ISO 27000, PCI and HIPAA Compliance.
- Conducted Web Application Scanning for multiples clients internal and external web applications, developed road maps and remediation plans following OWASP Top-10 vulnerabilities and SANS Top-25 Vulnerabilities
- Configured and Integrated SIEM into existing enterprise logging solutions and developing dashboards.
- Designed and deployed multiple security applications using AWS stack (Including EC2, Route53, S3, RDS, Dynamo DB, SNS, SQS, IAM) focused to run penetration testing on Cloud Infrastructure.
- Developed organization security awareness programs for social engineering and conducted email phishing campaigns.
- Designed, developed and implemented several IT security policies and procedures for multiple clients.
Confidential
IT Security Intern
Responsibilities:
- Configured and integrated multiple SAST and DAST tools with DevOps infrastructure for secure code reviewing and vulnerability assessment.
- Worked onSumologic, Splunk and multiple SIEM tools for internal and external network log monitoring, auditing and analysis.
- Conducted periodic penetration tests on cloud, network and web applications.
Confidential, TX
Research Assistant
Responsibilities:
- Worked on “IoT Security Analytics: DDoS Detection using Machine Learning” project with DPSL lab, TAMUC.
- Collaborated research with Trojan Hardware Research Team on Anomaly Detection Project, University of Alabama, Birmingham.
- Designed and Implemented 'Cyber Security and Project Management in STEM education' independent study course curriculum for Master’s and Bachelor’s degree graduates.
- Led TAMUC cyber security team for various collegiate and national level CTF's and Hackathons.
- Participated in Confidential &M University System 12th Annual Pathways Student Research Symposium and Annual Research Symposium, 2016, Presented Poster on Security Analytics to Detect DoS and DDoS Attacks.
- Participated in Inclass Kaggle competition, to predict League of Legends winner and stood first with 63.65% accuracy.
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
