TECHNICAL SKILLS:

Software: MS Office (Word, Excel, Outlook, PowerPoint, Access); VMware applications; Salesforce; Semantec, anti - virus programs; McAfee

Browsers: Chrome; Safari; Firefox; MS Edge; IE; Sea Monkey Navigator; Opera

Hardware: PCs, Laptops, Telephony Systems, Printers, Routers, Modems

Networking: LAN & VPN/Remote Connectivity, TCP/IP

Platforms: Windows, NetWare Servers Windows Server, Firewalls, Cisco VPN, Active Directory, IDS, IPS, SIEM

WORK EXPERIENCE:

Security Analyst

Confidential

Responsibilities:

• Perform research on current vulnerabilities, support Incident Response, McAfee and SOC functions as related to vulnerabilities.
• Knowledge of Security Information and Event Management (SIEM), Intrusion Detection & Prevention (IDS /IPS), Firewalls, (DLP), sniffers and malware analysis tools, Semantec.
• Monitor alerts from endpoint protection tools and analyze for proper routing and action.
• Analyze reports from vulnerability scanning tools, prioritize critical risks identified and follow up with respective teams for closure, experience with O365
• Analyze phishing, spam emails and suggest remedial steps for settings, tolls and processes
• Execute Vulnerability Scans and conduct vulnerability assessments of IT systems.
• Experience working on threat detection and threat hunting
• Knowledge of packet capture and security products,
• Worked on Incident Response, detect, contain, and remediate incidents of varying severities
• Handle user reported cases of potential security incidents and security events in accordance with SOC processes and procedures.
• Review and update required security documentation including but not limited to System Security Plans (SSPs), Contingency Plans (CP), Plan of Action and Milestones (POA&Ms), Security Assessment reports (SARs).
• Analyzed vulnerability scanning results.
• Experience working with IT industry best practices, standards, Policies and procedures such as ISO- 27000, NIST, Semantec, HIPAA etc, McAfee.

Cyber Security Analyst

Confidential- Fairfax, VA

Responsibilities:

• Assist in the development of new security operations policies as well as the refinement or improvement of existing policies
• Create and maintain operational reports for Key Performance Indicators and weekly and Monthly Metrics
• Analyze network flow data for anomalies and detect malicious network activity
• Assist with the development and maintenance of a weekly brief that captures all of the cyber events.
• Report common and repeat problems (trend analysis) to management and propose process and technical improvements
• Assist in the preparation and submission of monthly error logs and virus removals to management.
• Worked across several platforms to detect significant network issues and breaches. Oversee hardware infrastructure and keep up with the latest technology updates.
• Ensure software is patched and able to protect from threats. Monitored live systems to discover real-time threats
• Utilized Security Information and Event Management (SIEM), Intrusion Detection & Prevention (IDS /IPS), Firewalls, Data Leakage Prevention (DLP), sniffers and malware analysis tools.
• Participate in all the phases of incident response process, including detection, containment, eradication, and post-incident reporting
• Identified and evaluated potential threats and vulnerabilities, make recommendations for mitigating identified risks
• Confirm threat classification of case assignments; escalate according to standard operating procedures, demonstrated effectiveness of security controls, Conduct vendor analysis.

SOC Analyst

Confidential - Fairfax, VA

Responsibilities:

• Identified vulnerabilities, recommend corrective measures and ensure the adequacy of existing information security controls.
• Prepared detail practices and procedures on technical processes
• Monitored events, responded to incidents, and reported findings.
• Utilized Security Information and Event Management (SIEM), Intrusion Detection & Prevention (IDS /IPS), Firewalls, Data Leakage Prevention (DLP), sniffers and malware analysis tools.
• Assist analyst investigation and ticket creation efforts. Assist with daily monitoring and alerting of events that occur within the near real time environment
• Manage the SOC mailbox, and monitor and analyze the emails for threats including phishing and malware, and escalates per procedure
• Monitor, evaluate, and assist with the maintenance of assigned security systems in accordance with industry best practices to safeguard internal information systems and databases
• Stay informed of current events in the security industry including the latest exploits and threats as well as preventative measures, remediation, and restoration techniques
• Oversee and ensure P1 and P2 incidents are handled according to operational procedures. Document areas of improvement through after action reports and work with necessary parties to resolve any findings
• Identify improvements within processes, procedures, policies, staffing,, and tools to improve efforts and daily operations

Senior Desktop Support Analyst

Confidential- Oakton, VA

Responsibilities:

• Ensure the functionality of all of PC/MAC desktops
• Configure, Trouble Shoot and Provide help desk related support to employees
• Assist the Systems Administrator as needed
• Provide extensive printers support
• Lead the help desk process and request system as needed.
• Direct and resolve local server issues when they arise
• Oversee proper storage of tapes backups/restores
• Delegate duties as assigned which are inherent to the position