KEY SKILLS:

• Customer service professional offering diversified experience with excellent communication
• Strong networking and security skills
• Able to multitask in fast - paced work environments and meet critical deadlines.
• Highly motivated self-starter and home learner 
• Security policies and implementation strategies 
• Hands-on skills in incident handling related to hacking 
• Hands-on skills securing Windows and Linux OS environments 
• Experience with StealthWatch Management Console Lancope, FireEye, McAfee NSM, RSA Security Analytics, Dragon, Fidelis XPS, NetWitness and Niksun Net Detector devices
• HP TippingPoint (IPS), BlueCoat Reporter (IPS), WebSense (IPS)
• SIEM - ArcSight ESM, Splunk, ArcSight Logger, SourceFire Defense Center
• DHS(Enterprise Operations Center Portal), RSA Archer
• Host-Based Assessment (Tenable Security Center/Nessus, ePO, Invencia)
• Web-Based Assessment (HP Webinspect)
• Database Assessment (AppSecInc/AppDetective)
• Process Explorer, Network Miner, OutterBand Network Analysis (OOB), Network Miner, WireShark, BinText, Windows (2000, XP, Vista, 7), MS Office 2007, 2010, Microsoft Outlook Exchange, IE, Firefox, Macintosh OSX, Linux Environment

EXPERIENCE:

Shift Lead/Incident Response Analyst

Washington, DC

Responsibilities:

• Conduct research on emerging security threats; Provide correlation and trending of cyber incident activity.
• Analyze vulnerability assessment results and provide subsequent reports.
• Monitor security events via ArcSight ESM/Fidellis/FireEye
• Perform WebRequest access for all DHS Components for access needed to different platforms
• Escalate Security Event Notification to Incidents (IDC Kill Chain Process)
• Worked on the Email Security Team, Implement EOP (Exchange Office Protection) Rules
• Extract files via PCAP/FireEye to perform further MAS (Malware Analysis System) Analysis
• Conduct regular research on current vulnerabilities and exploits using publicly available, trusted resources.
• Brief management on current vulnerabilities and provide countermeasure recommendations.
• Monitoring and analyzing network traffic, Intrusion Detection Systems (IDS), security events and logs;
• Prioritizing and differentiating between potential intrusion attempts and false alarms via full packet capture and splunk log analysis.
• Creating and tracking security investigations to resolution.
• Composing security alert notifications and other communications.
• Advising junior incident responders in the steps to take to investigate and resolve computer security incidents.
• Creating SEN (Security Event Notification) with detailed analysis
• Staying up to date with current vulnerabilities, attacks, and countermeasures.
• Create test for junior analyst as a training before they are put on shift to perform work

Arlington, VA

Computer Network Defense (CND)/IDS Analyst

Responsibilities:

• Utilize ArcSight ESM to monitor unclassified networks of various Department of Defense agencies, recognize anomalous activity and escalate events of interest accordingly
• Perform email analysis using Fidelis for any possible spillages
• Monitor and defend against various threats for multiple customers utilizing ArcSight ESM/Logger, FireEye, NetDetector, Fidelis, Lancope, and other tools traffic analysis tools
• Maintain and upgrade defensive tools including FireEye & TippingPoint (update digital vaccines)
• Shadow senior analyst in pulling memory dumps using tools like Encase & FTK Imager
• Review open and closed source information for new and future threat indicators
• Keep upper management updated on the latest traffic that was seen at the Pentagon CERT and provide feedback on what actions should be taken to better protect from future attacks on different computerized systems.
• Conducted the IT risk assessment and documented the control, Conducted meetings with the IT client team to gather evidence, developed test plans, testing procedures and documented test results and exceptions.
• Write up critical weekly reports for upper management and PentCERT Chief to review

Arlington, VA

Systems Administrator

Responsibilities:

• Supervised operation of help desk and served as focal point for customer concerns at the Pentagon and along the National Capital Region
• Document, tracked, monitored the problems that were faced by the DoD Army personnel’s
• Install, configure, or re-image, and maintain desktop operating systems consistent with ITA guidance on desktop and notebook computer systems as required.
• Ensured technical security and maintenance to proved user access to electronic mail, applications, and user data
• Respond to telephone, electronic mail, and/or walk-in requests for support for all systems and equipment within the National Capital Region Information Technology environment
• Provided Government Furnished Equipment CCL support to National Capital Region customers to include, Common Access Card (CAC) pin resets, provisioning of CAC on-site
• Perform back-ups as required; i.e. back up the customer’s hard drive when performing operations that could result in the loss of data or back up the customer’s files when re-imaging a machine.
• Technical support for remote access i.e., CITRIX/ Virtual Private Network (VPN), Juniper VPN systems operated under Network Enterprise Centers
• Provided solutions to issue caused on both NIPER-NET & SIPR-NET, from troubleshooting to providing support to SECRET peripherals and also WYSE Terminal thin-client systems.

Church, VA

Senior Geek Squad Agent

Responsibilities:

• Promoted to Senior, handling escalation processes and mentoring other support professionals while working via phone, email, and chat.
• Promoted from frontline support professional to second-tier technical support manager
• Meeting and exceeding sales commission goals based on a weekly basis to meet monthly goal for incentive
• Implement effective customer satisfaction strategies by identifying and eliminating the root causes of customer problems.
• Provide comprehensive System & Network support, configuration, maintenance, and training for Business Clients and promoted value by adding products and services for existing clients.
• Identify, isolate and repair computer equipment showing wear and tear