Information Security Analyst, Senior, (lead Siem Engineer ) Resume
Kansas City, MO
SUMMARY:
- Strong knowledge of multiple Microsoft products including Exchange, SQL Server, and Office.
- Experienced network engineer with a strong background in Cisco and Palo Alto equipment.
- Outside of the box thinker with the constant desire to improve the functions and processes used to achieve the goals of the department, the user, and the company.
- Willingness to experiment with new avenues to find ways to cut costs and improve performance.
- ISC2 Certified Information Systems Security Professional
- Experience with LogRhythm and Splunk for SIEM needs and data analytics.
- Certified in Nexpose, Sumo Logic, Splunk and Cybereason security solutions
PROFESSIONAL EXPERIENCE:
Information Security Analyst, Senior, (Lead Siem Engineer )
Confidential, Kansas City, MO
Responsibilities:
- Lead engineer for SIEM migrations from Qradar - >Sumologic->Splunk which required the creation of new alerts, playbooks and SOAR automation(Demisto)Example of Soar (Demisto) Automation with Proofpoint,Outlook and Service Now
- Phishing email is alerted/detected through hyperlink. Change Password Disable user Notify Manager Send ticket to service now for IT help desk remediation
- Use of Python scripting to manage log sources for API connections.
- Manage purple team brute force attacks with Kali Linux and 3rd party vendors
- Lead Tabletop exercises to prioritize action plans, impact and ROI .
- Mentor and establish new Jr. analysts into the security environment, 5 total in incident response.
Technologies: Qradar, Sumologic, Splunk, Proofpoint, Demisto, Kali Linux, Service now, Python(scripting)
Senior Cybersecurity Analyst
Confidential , Kansas City, MO
Responsibilities:
- Monitor, triage, and implement remediation plans to mitigate security vulnerabilities.Resolve and patch OS or software vulnerabilitiesIdentify and analyze potential security vulnerabilities and emerging threats
- Document and contain security incidents detected on the networkExecute incident response process when a security incident has been declaredDocument and present findings to management suitable for customer consumptionResearch external trusted intelligence sources and leverage knowledge to detect events of interest
IT Director/Online Media Marketing Manager
Confidential , Overland Park, KS
Responsibilities:
- This includes all Point - of-Sale equipment, back-office computers, phone systems, security alarm systems, and digital video recorders.Worked to develop a plan to upgrade all systems to meet PCI compliance at all our locations.
Responsible for the design and implementation of all online media presence.Worked with store managers to develop and present a common unified message across both the online presentation and in store promotions.
- Deployment of internet service and back-office software to thirty-six locations during an abbreviated schedule.
- Upgraded Digital Surveillance Equipment at all sites to allow the managers and office staff to remotely monitor the stores.
- Saw an opportunity to grow sales by implementing a roller grill program at a site where it had a demographically fit. The site subsequently became one of the top five sellers.
Senior Systems/Network Engineer
Confidential, Kansas City, Mo
Responsibilities:
- Acting IT Director for a convenience store chain with over a hundred stores.
- Installed and configured the Windows Deployment Services role to provide a quicker and more consistent method to upgrade the Windows XP back-office PCs to Windows 7 with all the necessary software to communicate with the register systems.
- Oversaw the deployment of an MPLS network at nearly fifty geographically diverse sites.
- Developed a multiyear plan to create a more efficient and streamlined telecommunication layout in order to save thousands of dollars in monthly recurring charges.
- Designed and implemented an in house “Cloud” based backup system using an open-source project named ownCloud to backup store back-office data to the corporate headquarters. This saved the company roughly seven thousand dollars in licensing fees and several hundred dollars in MRC fees. This also had the added benefit of creating a streamlined process for corporate to push site level information and human resources forms to the store level.
Systems Administrator
Confidential, Kansas City, Mo
Responsibilities:
- Oversaw a massive printer deployment to reduce a fleet of 86 MFPs to 36 at eight different geographical locations.
- Worked with team mates to implement a PXE based clone server to provide quicker and more consistent response to hardware emergencies and the deployment of new hardware.
- Worked with our Advertising Photography department to streamline ancillary IT functions so that they could devote more time to their primary job functions.
- Daily I work with advertising executives to help IT help them.