Architect and run security detection and response program to protect the firms Data and IP from both internal and external threats. Hunt for, detect, and respond to malicious activity and anomalous events on company devices and networks. Develop tools to automate this detection and automatically find and address future vulnerabilities. Collaborate closely with end user support team on investigations, vulnerability scanning across endpoints, responding to end user issues, and responding to software approval requests. 5+ years of experience in cyber security, with specific experience in security operations and vulnerability management. Linux experience. Python Experience.
Jul. 2022 - Aug. 2023Analyzed security events and logs. Advising incident responders in the steps to take to investigate and resolve computer security incidents. Differentiate between true security events and false positives. Performed skilled analysis to determine root cause. Created and tracked security investigations to resolution. Processed and conveyed technical details clearly to a range of audiences, both in writing and verbally. Communicated effectively and clearly to leadership with relevant level of detail. Looked for process improvements and long-range issues and escalated those to Team Leads. Worked independently, delivering timely solutions without direct supervision.
Jun. 2021 - Aug. 2022Provided IDS monitoring and analysis, network traffic and log analysis, prioritization and differentiation between potential intrusion attempts, determination of false alarms, insider threat and APT detection, and malware analysis/forensics. Advised incident responders in the steps to take to investigate and resolve computer security incidents.
Oct. 2019 - Jun. 2021Studied Cyber Security at Western Governors University, persuing a Masters in Cyber Security.
Jan. 2019Active participant in both public and private bug bounty programs through responsible disclosure of application security vulnerabilities (Web & mobile) to high-profile organizations using HackerOne platform.
Dec. 2016Provided both strategic analysis and near real-time auditing, investigating, reporting, coordinating and tracking of security-related activities for the AT&T SOC.
Jan. 2019 - Jul. 2019Provided both strategic analysis and near real-time auditing, investigating, reporting, coordinating and tracking of security-related activities for the USAF SOC.
Oct. 2017 - Jan. 2019Maintained AWS Cloud Server’s performance and uptime by determining the best, easily deployable, least intrusive security solutions necessary to satisfy FedRAMP security requirements.
Jan. 2016 - Apr. 2017GitHub
© 2023 c0defire